What would be the best way to segment clients from servers across several departments (Lan and WAN) globally? Would vrf's be any helpful? What hardware would be recommended? I would assume traditional firewalls are too slow?
@hmc250000 assuming you are using Cisco equipment, you should look at TrustSec and SDA.
VRF's are used within SDA, then TrustSec SGT (Scalable/Security Group Tags) are used further within the VRF for microsegmentation.
TrustSec SGT's can be used on most Cisco solutions:- switches, routers, WLC, firewall, WSA, stealthwatch etc.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: