cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
232
Views
0
Helpful
1
Replies

client and server network segmentation

hmc250000
Level 1
Level 1

What would be the best way to segment clients from servers across several departments (Lan and WAN) globally? Would vrf's be any helpful? What hardware would be recommended? I would assume traditional firewalls are too slow?

1 Reply 1

@hmc250000 assuming you are using Cisco equipment, you should look at TrustSec and SDA.

VRF's are used within SDA, then TrustSec SGT (Scalable/Security Group Tags) are used further within the VRF for microsegmentation.

https://www.cisco.com/c/en_uk/products/security/network-visibility-segmentation/index.html#~stickynav=2
https://www.cisco.com/c/en/us/solutions/enterprise-networks/trustsec/design-guide-listing.html

TrustSec SGT's can be used on most Cisco solutions:- switches, routers, WLC, firewall, WSA, stealthwatch etc.

 

 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: