Dmz host, Dmz host -17 – Carrier Access Multi-Service Router (MSR) Card MSR/Adit 3K GUI User Manual

Adit 3000 (Rel. 1.6) and MSR Card (Rel 2.0) GUI

4-17

Security

DMZ Host

DMZ Host

The DMZ (Demilitarized Zone) Host feature allows one local computer to be exposed to the Internet.
Designate a DMZ host when:

Using a special-purpose Internet service, such as a video-conferencing program, that is not
present in the Local Servers list and where no port range information is available.
You are not concerned with security and choose to expose one computer to all services without
restriction.

The DMZ host is an NAPT function. It only applies to packets whose destination address is the Adit's
own WAN IP address. It only is utilized when there are no matching Local Servers or Remote
Administration matches. When the DMZ Host configuration is applied, packets are redirected from the
Adit WAN IP address to the DMZ host's IP address. Note: The DMZ Host is only active if the firewall
is enabled on the WAN interface, regardless of whether the WAN interface routing type is set for NAPT
or Routing.

WARNING!

A DMZ

HOST

IS

NOT

PROTECTED

BY

THE

F

IREWALL

AND

MAY

BE

VULNERABLE

TO

ATTACK

. I

T

MAY

ALSO

PUT

OTHER

COMPUTERS

IN

THE

NETWORK

AT

RISK

. W

HEN

DESIGNATING

A

DMZ

HOST

,

YOU

MUST

CONSIDER

THE

SECURITY

IMPLICATIONS

AND

PROTECT

IT

IF

NECESSARY

.

An incoming request for access to a service at the Adit WAN IP address, such as a Web-server, is fielded
by the Adit and forwarded to either:

a matching configured Local Server, or
a permitted Remote Management session, or
the DMZ host (if one is designated)