Uncontrolled zone - internet, external networks, External networks, Uncontrolled – IBM Tivoli and Cisco User Manual

Chapter 3. Component structure

65

corporate network through what are considered

external networks

, such as the

DMZ and intranet zones.

Details of resources that are generally deployed in the various security zones,
the possible access methods by which network clients access these enterprise
resources, and the zones from which clients would access are discussed here
and depicted in Figure 3-9. This discussion can help customers visualize the
practical deployment scenarios of the IBM Integrated Security Solution for Cisco
Networks in their organization.

Figure 3-9 Client access to enterprise with zone details

Uncontrolled zone - Internet, external networks

The Internet has become a major business driver for many organizations, but it
can be considered completely

uncontrolled

. Client machines use the Internet for

the following means:

Remote users can use the Internet as an access method and connect to
enterprise resources using VPN technology from across the globe.

Production

Servers

Core

WAN

LAN

Branch

Office

DMZ –2

VPN & R-access

ACS

DMZ –3

Ext network

DMZ –1

Server

Compliance

& Remediation

Internet

Partner

WAN

Dialup

Client

VPN

Client

Branch

Office

SCM

TPM

External Network

DMZ

Production

Network

Management

Network

NMS

Intranet

LAN

LAB