Create a network design communications document that includes identified hardware components, connections to the outside world, identified physical layer connectivity (media), and addresses.
We can see an isolated network segment for our public infrastructure that hosts our web page, DNS, and much more. Next, we have our internal network slipt into three different segments using VLAN. One flaw to this network design would be there isn't enough redundancy (too many points of single failure)
|
Again we can see our isolated network segment hosting our webpage, DNS, etc. This time we can see that we have added an IDS which is out of line to the switch. We can also see that this network is much more redundant and has backup routes if something fails. We can again see our networks being segmented this time by HR, Financial, and IT. We also have a VPN connection to our cloud infrastructure, only from IT devices.
|