Filter
Top Products
Chapter 3. Component structure 65
corporate network through what are considered
external networks, such as the
DMZ and intranet zones.
Details of resources that are generally deployed in the various security zones,
the possible access methods by which network clients access these enterprise
resources, and the zones from which clients would access are discussed here
and depicted in Figure 3-9. This discussion can help customers visualize the
practical deployment scenarios of the IBM Integrated Security Solution for Cisco
Networks in their organization.
Figure 3-9 Client access to enterprise with zone details
Uncontrolled zone - Internet, external networks
The Internet has become a major business driver for many organizations, but it
can be considered completely
uncontrolled. Client machines use the Internet for
the following means:
Remote users can use the Internet as an access method and connect to
enterprise resources using VPN technology from across the globe.
Production
Servers
Core
WAN
LAN
Branch
Office
DMZ –2
VPN & R-access
ACS
DMZ –3
Ext network
DMZ –1
Server
Compliance
& Remediation
Internet
Partner
WAN
Dialup
Client
VPN
Client
Branch
Office
SCMTPM
External Network
DMZ
Production
Network
Management
Network
NMS
Intranet
LAN
LAB