D-Link DSR-150N DSR-150 User Manual - Page 30

Unified Services Router Figure 11 : VLAN Configu rat ion User Manual 2.3 Configurable Port: DMZ Setup  DSR-150/150N/250/250N does not have a configurable port - there is no DMZ s u p p o rt . This router s upports one of the physical ports to be configured as a s econdary W A N Et h ern et p o rt o r a d ed icated DM Z p o rt . A DM Z is a s u b n et wo rk t h at is o p en t o t h e public but behind the firewall. The DMZ adds an additional layer of s ecurity to the LA N, as s p ecific s erv ices/p ort s t h at are exp o s ed t o t h e in t ern et o n t h e DM Z d o n o t h av e t o b e exp o s ed o n t he LA N. It is reco mmen d ed t h at h osts t h at mu s t b e exp o sed t o t h e in t ern et (s u ch as web o r email s erv ers ) b e p laced in t h e DM Z n et wo rk. Firewall ru les can b e allo wed t o p ermit acces s s p ecific s erv ices / p o rt s t o t h e DM Z fro m b o t h t h e LA N o r W A N. In t h e ev en t o f an at t ack t o an y o f t h e DM Z n o d es , t h e LA N is n o t neces s arily vulnerable as well. Setup > DMZ Setup > DMZ Setup Configuration DM Z co n fig u ratio n is id en tical t o t h e LA N co n fig u ratio n. Th ere are n o rest rictio ns on the IP addres s or s ubnet as signed to the DMZ port, other than the fact that it cannot b e id en t ical t o t h e IP ad d res s g iv en t o t h e LA N in t erface o f t h is g at eway . 28