Traffic Flows

Question 1

East-West Traffic

Answer 1

Where traffic moves laterally between servers within a datacenter within a data, control, and management plane or between geo dispersed locations. In other words, trusted nodes and networks. Access controls, micro segmentation and isolation policies raise security here.

Question 2

North-South Traffic

Answer 2

Where traffic moves to/from endpoints on internal network to nodes on the public cloud/internet. Data flows up and down the stack of data/control/management planes. Data flows from the organization to external destinations (northbound) or into the org from external sources (southbound). Includes untrusted networks. Brings security concerns like data compromise, DDoS attacks, and inadequate authentication.

Question 3

Reasons for Network Segmentation

Answer 3

1 Boosting Performance through on orgs scheme in which systems that often communication are located on the same segment
2 Reducing Communication Problems by reducing congestion and contains communication problems such as broadcast storms, to individual subsections of the network
3 Providing Security by isolating traffic and user access to those segments where they are authorized

Question 4

Intranet

Answer 4

a private network that is designed to host the same information services found on the internet

Question 5

Extranet

Answer 5

a section of an organization’s network that has been sectioned off to act as an intranet for the private network but also serves information to the public internet. A cross between internet and intranet

Question 6

Demilitarized Zone (DMZ)

Answer 6

An extranet for public consumption is typically labeled a perimeter network.

Question 7

Network Segmentation

Answer 7

Used to control traffic and isolate static/sensitive environments.