Please enable JavaScript.
Coggle requires JavaScript to display documents.
Network Security - Coggle Diagram
Network Security
Security Zones
What is Security Zones?A Security Zone is a portion of a network that has specific security requirements set. Each zone consists of a single interface or a group of interfaces, to which a security policy is applied. These zones are typically separated using a layer 3 device such as a firewall.
Zone Filtering Policies
Inside to outside and inside to DMZ :Traffic originating from the inside is inspected as it travels toward either the outside or the DMZ. Examples include an employee requesting a webpage from a public web server or accessing any resource within the DMZ. This type of traffic is allowed with very few restrictions, if any.
Outside-to-Inside: Traffic originating from outside and traveling toward the inside is blocked completely, unless the traffic is in response to a request from an inside resource.
DMZ to Inside: Traffic originating from the DMZ and traveling toward the inside is also blocked completely, unless the traffic is a response to a legitimate request from inside.
Outside to DMZ: Traffic originating from the outside and traveling toward the DMZ is inspected by the firewall and selectively permitted or denied. Specific types of traffic may be passed through, such as email, HTTP, HTTPS, or DNS traffic.
DMZ to Outside: Traffic originating from the DMZ and traveling toward the outside is selectively permitted based on the service requirements and firewall rules.
Security Model
:check: In an information security environment, Security model is a collection of methods and techniques to authenticate security policies of an enterprise. Security Model provides precise controls to enforce the fundamental security concepts and monitors the processes.
:check: Considering the need of a security model, an organization can apply existing security models, or make explicit changes in it to create new customized model based on their particular requirements. These models can be abstract or intuitive.
-
-
-