any articles discussion about security design elements (DMZs, VPNs, VLANs, trunks, Remote Access, NATs, etc.)
DMZ is the method with which we can have great level of security. This is called the demilitarized zone, a logically different network which is separated from the untrusted networks and servers. So in this, there are very limited servers which are accessible from the outside but the internal LAN will remain disconnected from the other untrusted networks.
VPN's: This is another way to work with security, this creates a tunnel between the host and the server and thus there could be no hacker present between them both and the content sent across the tunnel is sent after encryption. Thus if someone got some packets, one is not able to retrieve the information out of it. Thus this could be a helpful method for secure connections.
VLAN's: This is called virtual local network, this basically divides the local area network into more discrete small networks, Thus if we want to not share information between some set of endpoints then we can put them to other VLAN's in order to make them not connect to some.
Remote Access: This is another security method to connect to a computer which is present at some other place. This also creates a VPN tunnel between two machines and let one connect to other machines remotely and can control it from other location.
NAT's: This is another method which can help to provide the same set of IP addresses to computers connected to a network. With this, there could be the same IP address PC present in two different networks. But due to this NAT i.e network address translation, we are able to convert the addresses while sending a packet from the network or receiving.
Thus above are some of the security design elements.
Thanks
Get Answers For Free
Most questions answered within 1 hours.