DMZ

Stands for "Demilitarized Zone." In computing, a DMZ is a section of a network that exists between the intranet and a public network, such as the Internet. It may contain a single host or multiple computer systems.

The purpose of a DMZ is to protect an intranet from external access. By separating the intranet from hosts that can be accessed outside a local network (LAN), internal systems are protected from unauthorized access outside the network. For example, a business may have an intranet comprised of employee workstations. The company's public servers, such as the web server and mail server could be placed in a DMZ so they are separate from the workstations. If the servers were compromised by an external attack, the internal systems would be unaffected.

A DMZ can be configured several different ways, but two of the most common include single firewall and dual firewall architectures. In a single firewall setup, the intranet and DMZ are on separate networks, but share the same firewall, which monitors and filters traffic from the ISP. In a dual firewall setup, one firewall is placed between the intranet and the DMZ and another firewall is placed between the DMZ and the Internet connection. This setup is more secure since it provides two layers of defense against external attacks.

NOTE: The term "DMZ" or "Demilitarized Zone" comes from a military term used to describe a neutral area where military operations are not allowed to take place. These areas typically exist along the border between two different countries. They serve as a buffer and are designed to prevent unnecessary escalations of military action. Similarly, a DMZ is a neutral area within a computer network that can be accessed by both internal and external computer systems.

Updated September 26, 2014 by Per C.

quizTest Your Knowledge

Which of the following is a valid IPv4 address?

A
123.456.789.0
0%
B
234.234.234.234
0%
C
56.273.155.20
0%
D
101.202.303.4
0%
Correct! Incorrect!     View the IPv4 definition.
More Quizzes →

The Tech Terms Computer Dictionary

The definition of DMZ on this page is an original definition written by the TechTerms.com team. If you would like to reference this page or cite this definition, please use the green citation links above.

The goal of TechTerms.com is to explain computer terminology in a way that is easy to understand. We strive for simplicity and accuracy with every definition we publish. If you have feedback about this definition or would like to suggest a new technical term, please contact us.

Sign up for the free TechTerms Newsletter

How often would you like to receive an email?

You can unsubscribe or change your frequency setting at any time using the links available in each email.

Questions? Please contact us.