Networking Intermediate

What is Network Segmentation?

The practice of dividing a network into isolated segments to improve security, performance, and management.

Network segmentation limits the blast radius of security breaches by isolating different parts of the network. If an attacker compromises one segment, they cannot easily move to others. This is a fundamental security practice.

Implementation methods include VLANs, subnets, firewalls, and micro-segmentation (per-workload isolation). Common segments separate DMZ (public-facing servers), internal networks, guest WiFi, IoT devices, and database servers. Zero Trust networks take segmentation to the extreme.

Related Terms

Network Monitoring

The practice of continuously observing network infrastructure to detect failures, performance degradation, and security threats.

A device or software that distributes network traffic across multiple servers to ensure reliability and performance.

A numbered endpoint (0-65535) that identifies specific processes or services on a networked computer for communication.

HTTPS Everywhere

The practice of securing all web traffic with TLS encryption, ensuring data integrity and privacy between browsers and servers.

VPN (Virtual Private Network)

A technology that creates an encrypted tunnel between your device and a remote server, securing internet traffic.

A protocol that automatically assigns IP addresses and network configuration to devices on a network.

View All Networking Terms →