Securely provisioning the BinderHub

Dear All,
I wanted to see if I can get some insight on how your BinderHub is securely provision within DMZ?

Is it a shared DMZ with other organizational resources?
Is it in an isolated logical network segment within the DMZ?
Do you have any addition open source software installed to monitor pods security posture etc?

Any information will be highly appreciated.

Thank you,

Hi Tahir,

have you seen Bindehub federation - network architecture best practices - #3 by labg11 which answers some of your questions