Networking Intermediate

What is Network Segmentation?

The practice of dividing a network into isolated segments to improve security, performance, and management.

Network segmentation limits the blast radius of security breaches by isolating different parts of the network. If an attacker compromises one segment, they cannot easily move to others. This is a fundamental security practice.

Implementation methods include VLANs, subnets, firewalls, and micro-segmentation (per-workload isolation). Common segments separate DMZ (public-facing servers), internal networks, guest WiFi, IoT devices, and database servers. Zero Trust networks take segmentation to the extreme.

Learn More About This Topic

Network Security Basics

Closely related

Linux Networking Fundamentals

Related reading

Network Fundamentals

Related reading

Related Terms

The fundamental communication protocol suite of the internet that defines how data is packaged, addressed, transmitted, and received.

QoS (Quality of Service)

A set of techniques for managing network traffic to prioritize certain types of data and ensure performance for critical applications.

A server that sits between clients and backend servers, forwarding client requests and returning server responses on their behalf.

A logical division of an IP network into smaller segments to improve performance, security, and management.

Two transport layer protocols: TCP provides reliable, ordered delivery while UDP provides fast, connectionless delivery without guarantees.

HTTPS Everywhere

The practice of securing all web traffic with TLS encryption, ensuring data integrity and privacy between browsers and servers.

View All Networking Terms →