Networking

Network segmentation for organizations that have never done it

Editorial Team March 31, 2026 · 1 min read

Network segmentation sounds expensive. Done right, it is mostly a matter of configuration on equipment you already own.

The four-VLAN minimum

  • Workstations. Where user laptops and desktops live.
  • Servers. Workstations may reach servers; servers do not initiate connections back to workstations.
  • IoT and printers. Cameras, printers, smart sensors, the conference room TV. Talks out to the internet and to specific server endpoints. That is it.
  • Guest. Internet only. Cannot see anything else on the network. Ever.

The staged rollout

Do not do it all at once. Roll out the guest VLAN first, then IoT, then split workstations from servers. Each phase is a discrete project with discrete acceptance criteria.

Tagged Networking Cybersecurity How-to
— Keep reading

Related posts.

Networking
December 18, 2025 · 1 min read

Wireless that works: ten lessons from a hundred deployments

Wireless is the most-used and least-understood part of most networks. Lessons from a hundred deployments across offices, warehouses, and government facilities.

Alebrije Admin
Networking
February 6, 2025 · 1 min read

Switching out a switch without taking down the office

A practical guide to replacing a network switch in production with minimal disruption. Preparation matters more than the swap itself.

Alebrije Admin
Networking
October 24, 2024 · 1 min read

Picking a managed firewall vendor

Firewall vendor marketing is a sea of acronyms. Here is what to actually evaluate.

Alebrije Admin