Back to Glossary
Networking
What is Network Segmentation?
Dividing a network into separate zones to contain breaches and limit lateral movement by attackers.
Network segmentation limits the damage an attacker can do after gaining initial access.
How It Works
- Network is divided into isolated segments (VLANs, subnets)
- Each segment has its own access controls
- Traffic between segments passes through a firewall
- Sensitive systems are isolated from general-purpose systems
Home Network Segmentation
- Main network: Computers and phones
- IoT network: Smart home devices (these are often insecure)
- Guest network: Visitors (no access to your devices)
Privacy Benefit
- IoT devices can't snoop on your main network traffic
- A compromised smart TV can't access your computer's files
- Guest devices can't see your network activity
Related Terms
NAT (Network Address Translation)
A technique that maps multiple private IP addresses to a single public IP address, providing a basic layer of privacy by hiding internal network structure.
Zero-Trust Architecture
A security model that assumes no user, device, or network is inherently trusted, requiring continuous verification for every access request.
Have more questions?
Use our guided flow to get the right next privacy step for Network Segmentation.
Open Guided Flow