Ask the Expert

Making DMZ isolated networks safe

My question concerns security around DMZ isolated networks. If the DMZ(s) are connected to a centralized storage device -- SAN or NAS -- what are the security implications? Would we be bridging the FW?

    Requires Free Membership to View

Based on the little information you have provided, yes, the NAS/SAN are in effect providing a bypass to the firewall. There are two aspects to consider here:

1. Separating the SANs between the one in DMZ and one in the backend network.

2. Improving security of the NAS/SAN so it does not become the path of least resistance for attacks.

Editor's note: Do you agree with this expert's response? If you have more to share, post it in one of our .bphAaR2qhqA^0@/searchstorage>discussion forums.

This was first published in April 2004

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: