Tech moves fast! Stay ahead of the curve with Techopedia!
Join nearly 200,000 subscribers who receive actionable tech insights from Techopedia.
A demilitarized zone (DMZ) refers to a host or network that acts as a secure and intermediate network or path between an organization's internal network and the external, or non-propriety, network.
A DMZ serves as a front-line network that interacts directly with the external networks while logically separating it from the internal network.
A demilitarized zone may also be known as a network perimeter or perimeter network.
DMZ is primarily implemented to secure an internal network from interaction with and exploitation and access by external nodes and networks. DMZ can be a logical sub-network, or a physical network acting as a secure bridge between an internal and external network. A DMZ network has limited access to the internal network, and all of its communication is scanned on a firewall before being transferred internally. If an attacker intends to breach or attack an organization’s network, a successful attempt will only result in the compromise of the DMZ network - not the core network behind it. DMZ is considered more secure, safer than a firewall, and can also work as a proxy server.