John Harrington of The Network Sherpa comments:
In a typical workflow, the network engineer will ask the service owner which ports they require open, and they often don’t know. A wasteful and extended back-and-forth debate continues until the rule is deployed. The key challenge here is that the service owner owns the requirement but doesn’t know what their service does at the network layer. The temptation is to insert wide rules, but the network engineer is accountable for the ruleset when the auditor knocks on the door.
Great perspective on a great Cisco Live Berlin presentation. John has some thoughts about how important microsegmentation can be for edge networking devices.
Read more at: East West Segmentation With ACI
- Making Encryption Easy with StrongSalt’s New API - December 12, 2019
- Stopping vMotion Roulette with Virtana - December 12, 2019
- BGP and Car Safety - December 11, 2019
- Rethinking Networking Architecture with Arrcus - December 9, 2019
- Intro to NetworkMiner - December 6, 2019
- On The Hunt with Confluera - December 4, 2019
- How Difficult Is SD-WAN? - December 4, 2019
- Letting Go of the Digital Hoard - December 2, 2019
- Tackling Troublesome IoT with Fortinet - November 26, 2019
- Technology and Policymakers - November 26, 2019