December 23, 2021 by Admin
The BEST reason for an organization to have two discrete firewalls connected directly to the Internet and to the same DMZ would be to:
- provide in-depth defense.
- separate test and production.
- permit traffic load balancing.
- prevent a denial-of-service attack.
Having two entry points, each guarded by a separate firewall, is desirable to permit traffic load balancing. As they both connect to the Internet and to the same demilitarized zone (DMZ), such an arrangement is not practical for separating test from production or preventing a denial-of-service attack.