cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
90
Views
0
Helpful
1
Replies

client and server network segmentation

hmc250000
Beginner
Beginner

What would be the best way to segment clients from servers across several departments (Lan and WAN) globally? Would vrf's be any helpful? What hardware would be recommended? I would assume traditional firewalls are too slow?

1 Reply 1

Rob Ingram
VIP Expert VIP Expert
VIP Expert

@hmc250000 assuming you are using Cisco equipment, you should look at TrustSec and SDA.

VRF's are used within SDA, then TrustSec SGT (Scalable/Security Group Tags) are used further within the VRF for microsegmentation.

https://www.cisco.com/c/en_uk/products/security/network-visibility-segmentation/index.html#~stickynav=2
https://www.cisco.com/c/en/us/solutions/enterprise-networks/trustsec/design-guide-listing.html

TrustSec SGT's can be used on most Cisco solutions:- switches, routers, WLC, firewall, WSA, stealthwatch etc.

 

 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers