Don't miss an insight. Subscribe to Techopedia for free.


Demilitarized Zone

What Does Demilitarized Zone Mean?

A demilitarized zone (DMZ) refers to a host or network that acts as a secure and intermediate network or path between an organization’s internal network and the external, or non-propriety, network.


A DMZ serves as a front-line network that interacts directly with the external networks while logically separating it from the internal network.

A demilitarized zone may also be known as a network perimeter or perimeter network.

Techopedia Explains Demilitarized Zone

DMZ is primarily implemented to secure an internal network from interaction with and exploitation and access by external nodes and networks. DMZ can be a logical sub-network, or a physical network acting as a secure bridge between an internal and external network. A DMZ network has limited access to the internal network, and all of its communication is scanned on a firewall before being transferred internally. If an attacker intends to breach or attack an organization’s network, a successful attempt will only result in the compromise of the DMZ network – not the core network behind it. DMZ is considered more secure, safer than a firewall, and can also work as a proxy server.


Related Terms