ฝัง
- เผยแพร่เมื่อ 30 ก.ย. 2014
- Network Segmentation: Lesson 1
In this lesson, Professor Wool presents a simple yet highly effective strategy to help you future proof your network segmentation policy against future changes. Using the concept of a diamond, Professor Wool shows how you can define very specific rules at each end point of the diamond and broader policies in the middle. This will significantly reduce the time and effort needed to work on change requests-without compromising on security in any way.
Learn more about AlgoSec at www.algosec.com and read Professor Wool's blog posts at blog.algosec.com - วิทยาศาสตร์และเทคโนโลยี
Excellent series , segmentation is used over all networks ,
Thanks alot for sharing this. A very well explained concept
Excellent video that simply explains a complex subject.
Fantastic video, very basic, but perfect explanations, great job sir!
that is very fine explanation on security segmentation
I hope if you have added also the dst port or app id parameter within the explanation and how it will affect the segmentation on each firewall
Very good!
What I do not understand: Next to what is given in the video: (10.3.1.4 may access 172.1.1.3) additionally 10.3.1.5 may only access 172.1.1.4. Given the current setup 10.3.1.4 would also be allowed to access 172.1.1.4. How would you prevent this?
handy - but 172.1.1.0 isn't a private IP range?