Avaya 3.7 User Manual
Preparing to configure your network
Issue 4 May 2005
25
●
Public-backup zone. Public-backup zone is the backup interface to the primary public
interface for use when Failover is configured.
interface for use when Failover is configured.
●
Semiprivate zone. Semiprivate zone is used for media such as wireless LAN, where the
network is considered part of the protected network, but the media may be vulnerable to
attack. The semi-private zone provides the additional security measure of IPSec
encryption to prevent compromise to the network, for example, VPN over wireless
protection.
network is considered part of the protected network, but the media may be vulnerable to
attack. The semi-private zone provides the additional security measure of IPSec
encryption to prevent compromise to the network, for example, VPN over wireless
protection.
●
DMZ zone. DMZ (Demilitarized zone) is used for an area in the company network that
needs to be accessible from the public networks, for example, email, FTP, and Web
servers, but the area is not considered part of the internal private network. Servers in the
DMZ typically have publicly routable IP addresses or should use advanced NAT within the
security gateway.
needs to be accessible from the public networks, for example, email, FTP, and Web
servers, but the area is not considered part of the internal private network. Servers in the
DMZ typically have publicly routable IP addresses or should use advanced NAT within the
security gateway.
●
Management zone. Management zone is used to simplify network deployments, to
eliminate enterprise network dependencies on switches or routers. The management
network interface is usually used as an access point for a dedicated VPNmanager
management station or as a dedicated interface for dumping log messages to a syslog
server.
eliminate enterprise network dependencies on switches or routers. The management
network interface is usually used as an access point for a dedicated VPNmanager
management station or as a dedicated interface for dumping log messages to a syslog
server.
Table 1: Network zones
Media type
SG5 and SG5X
SG200
SG203
SG208
Ethernet0
Public
Public
Private
Private
Ethernet1
Private
Private
Public
Public
Ethernet2
NA
●
Unused
●
Public backup
●
Private
●
Semiprivate
●
DMZ
●
Management
●
Unused
●
Public backup
●
Private
●
Semiprivate
●
DMZ
●
Management
Ethernet3 to
Ethernet5
Ethernet5
NA
NA
●
Unused
●
Public backup
●
Private
●
Semiprivate
●
DMZ
●
Management
●
Unused
●
Public backup
●
Private
●
Semiprivate
●
DMZ
●
Management