well IKnowNot I think all other sites were also trying to tell the same thing. they only missed on the subtle detail that they act as a medium layer between the interanl network and external ones. Else...everything else was OK...as far as the point of INTIALIZING connections is concerned, it should have been ( and I did ) understand that by default because if it can't access the internal network AT ALL, how will it REPLY or ACK the packets sent by the internaL NETWORK??? So the meaning was quite clear that it is not allowed to INITIALIZE the connections.
Even then...thanks a lot...all you people helped me solidify my concept about the DMZ....I still welcome any additional info on DMZ.
Thanks a lot Guys.
