FortiGate Firewall DMZ







----------------------------------------------------------
DMZ Attack
----------------------------------------------------------

DMZ Demilitarized Zone 2 different types of servers Servers Publish Web, Email and FTP . Servers Active Directory Server, SQL Server, DB Server For Security Reasons.

- :
2 different types Firewalls
Firewall Single Firewall.

- Physical Firewall
- 3 Network Interfaces network architecture DMZ.

- Interface WAN.
- Interface Internal Data Center.
- Interface DMZ.
.
- DMZ zone servers publish servers Destination NAT 443 & 80.

- web server .
- DMZ.

- server publish Servers Servers For Security Reasons attack published Server Attacker Internal Data Center Servers.

... ... .

Attack
.

- Firewall NGF
- NGF

= configuration .


- Configuration attack
- Web Site
- code code Vulnerability
- Firewall .

= DMZ !

- Attack compromised Server Firewall Configuration Web Site Vulnerability ... attacker DMZ !!
- attack server DMZ !!
- attacker take over Servers DMZ.
- Large Attack Zone.

- communication Web Server DMZ APP Server or Data base Server Internal Data Center Server Zone !!
Data Base Server Server Internal Server Zone !!
Traditional DMZ Secure (DMZ Anywhere).