A demilitarized zone (DMZ) refers to a host or network that acts as a secure and intermediate network or path between an organization's internal network and the external, or non-propriety, network.
A DMZ serves as a front-line network that interacts directly with the external networks while logically separating it from the internal network.
A demilitarized zone may also be known as a network perimeter or perimeter network.
DMZ is primarily implemented to secure an internal network from interaction with and exploitation and access by external nodes and networks. DMZ can be a logical sub-network, or a physical network acting as a secure bridge between an internal and external network. A DMZ network has limited access to the internal network, and all of its communication is scanned on a firewall before being transferred internally. If an attacker intends to breach or attack an organization’s network, a successful attempt will only result in the compromise of the DMZ network - not the core network behind it. DMZ is considered more secure, safer than a firewall, and can also work as a proxy server.
Synonyms
Network Perimeter, Perimeter Network
Share this Term
Tech moves fast! Stay ahead of the curve with Techopedia!
Join nearly 200,000 subscribers who receive actionable tech insights from Techopedia.
Latest Articles
By: Claudio Buttice | Data Analyst, Contributor
By: Dr. Tehseen Zia | Assistant Professor at Comsats University Islamabad
By: Matthew Parsons | Director of Network and Security Product Management
