Skip to content

mpamposd/Security-Network-Diagram

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

Β 

History

5 Commits
NetworkDiagram.png
NetworkDiagram.png
Β 
Β 
README.md
README.md
Β 
Β 

Repository files navigation

Enterprise Network Security Architecture

The network is divided into three main zones:

1. DMZ (Demilitarized Zone)

  • WAF (Web Application Firewall)
  • Public-facing Web Server
  • Segregated from the internal network using firewall rules

2. Internal Network (Trusted Zone)

  • Directory Server (authentication)
  • File Server (internal storage)
  • Only partially reachable from the DMZ

3. Restricted Area (Sensitive Zone)

  • Database Server
  • FTP Server (secured)
  • Only reachable from internal services
  • Strongest segmentation policies

Security Controls Implemented

  • Firewall protecting external perimeter
  • WAF filtering malicious HTTP/S traffic
  • Network Segmentation into DMZ / Internal / Restricted
  • Least Privilege flow (DMZ β†’ Internal β†’ Restricted)
  • SIEM for log collection and monitoring
  • No direct access from Internet or DMZ to the Restricted Area
  • Separation of duties between servers

πŸ“‘ Network Flow

Internet β†’ Firewall β†’ WAF β†’ Web Server β†’ Internal Network β†’ Restricted Area ↓ SIEM

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published