Network Infrastructure - 3.1

Physical Isolation

  • Air-gapped: physical separation of hardware to ensure it is not connected to other systems or networks.

Logical Segmentation

  • VLANs (Virtual Local Area Networks): Used to segment network traffic logically.
  • Logically separated vs. physically separated: Refers to the distinction between segmenting networks via software (logical) or physical hardware separation (physical).
  • Sharing the same hardware but separated via software: VLANs allow multiple networks to share the same physical hardware while keeping the traffic logically isolated.

Software-Defined Networking (SDN)

  • SDN breaks up traditional network functions (like routing and switching) into software components, allowing for easier replication and management in cloud environments.
  • Data: Handles traffic flow between devices and networks.
  • Control: Responsible for routing traffic, deciding how and where to send data.
  • Management: Manages the overall network, including application updates, security policies, and configuration changes.