Dear guys
hi
i have a question about service layer in datacenter
as i see, servers that want to get services to Internet (out of DC block) placed in service layer and behind the WAF/IDS/IPS, and other servers that just get service to DC block, placed in Access (server farm) layer.
tell me plz, this type of design is accurate or not?
because i heard, all servers should stay in Access (server farm) layer and those should get service to Internet (out of DC block), should be place behind another firewall.
Best Regatds
Reza