On Tue, Jul 26, 2005 at 03:20:05PM +0200, Jurjen Oskam wrote: snip
> It does look like the "before" situation in the article is one where there > is only one firewall that separates the LAN from the Internet, and > everything on the LAN is treated equally, workstations and servers alike. > > Generally, that is a bad situation. So, the advice to put different types > of machines into different (protected) networks is good. I only have one firewall but it is three legged, the DMZ box and the LAN are seperate. Is this what you mean by "different (protected) networks"? Terry
