08 - Segment and Separate

Segment and separate information based on sensitivity of information

IBM Cloud encourages network segmentation and seperation in various deplyment models.

An example of segmented network zones in IBM Cloud

GUARDRAIL Steps:

Run the script that lists all the resources and the VLAN/Subnet they are a part of.
The evidence/proof: the listing should align with the architectural diagram (eg: you example architecture). See example below.

Output:

VLAN/Subnet	Resource
224.221.1.1	ServerA
224.221.1.1	ServerB
224.226.19.41	ServerC
224.226.19.41	ServerD

Expectations: Architecture diagram should reflect that ServerA & ServerB are related to each other (and are visible to each other), but are not visible to ServerC & ServerD (which are on another Subnet).

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

guardrail-8-segment-separate.md

guardrail-8-segment-separate.md

08 - Segment and Separate

Segment and separate information based on sensitivity of information

Files

guardrail-8-segment-separate.md

Latest commit

History

guardrail-8-segment-separate.md

File metadata and controls

08 - Segment and Separate

Segment and separate information based on sensitivity of information