John Harrington of The Network Sherpa comments:
In a typical workflow, the network engineer will ask the service owner which ports they require open, and they often don’t know. A wasteful and extended back-and-forth debate continues until the rule is deployed. The key challenge here is that the service owner owns the requirement but doesn’t know what their service does at the network layer. The temptation is to insert wide rules, but the network engineer is accountable for the ruleset when the auditor knocks on the door.
Great perspective on a great Cisco Live Berlin presentation. John has some thoughts about how important microsegmentation can be for edge networking devices.
Read more at: East West Segmentation With ACI
- Tomversations: Episode 5 – End-to-End Encryption - July 9, 2020
- Cisco Live Interview with Khalid Raza - July 2, 2020
- The New Branch with Riverbed SD-WAN - June 30, 2020
- AI Can’t Do Much for WiFi - June 30, 2020
- Tomversations: Episode 4 – Edge Computing - June 25, 2020
- Go Time With PathSolutions - June 25, 2020
- A Tale of Scale in Three Parts with Broadcom - June 23, 2020
- Assuring Identity with ForgeRock - June 18, 2020
- Encryption is Ruining Network Security - June 16, 2020
- Cisco Live Virtual Keynote Live Blog - June 15, 2020