PrepAway - Latest Free Exam Questions & Answers

Which of the following statements are TRUE about Demilitarized zone (DMZ)?

Which of the following statements are TRUE about Demilitarized zone (DMZ)?
Each correct answer represents a complete solution. Choose all that apply.

PrepAway - Latest Free Exam Questions & Answers

A.
The purpose of a DMZ is to add an additional layer of security to the Local Area Network of an
organization.

B.
Hosts in the DMZ have full connectivity to specific hosts in the internal network.

C.
Demilitarized zone is a physical or logical sub-network that contains and exposes external
services of an organization to a larger un-trusted network.

D.
In a DMZ configuration, most computers on the LAN run behind a firewall connected to a public
network like the Internet.

Explanation:

A demilitarized zone (DMZ) is a physical or logical subnetwork that contains and exposes external
services of an organization to a larger network, usually the Internet. The purpose of a DMZ is to
add an additional layer of security to an organization’s Local Area Network (LAN); an external
attacker only has access to equipment in the DMZ, rather than the whole of the network. Hosts in
the DMZ have limited connectivity to specific hosts in the internal network, though communication
with other hosts in the DMZ and to the external network is allowed. This allows hosts in the DMZ
to provide services to both the internal and external networks, while an intervening firewall controls
the traffic between the DMZ servers and the internal network clients. In a DMZ configuration, most
computers on the LAN run behind a firewall connected to a public network such as the Internet.


Leave a Reply