Network Segmentation / Virtualization

Network segmentation and virtualization technologies logically divide networks to enhance security, performance, and administrative control across enterprise and cloud infrastructures.

Technology	Description	Use Case
VLAN (Virtual Local Area Network)	Logical segmentation of a Layer 2 network into separate broadcast domains. Enhances security and isolates traffic between devices.	Isolating departments (e.g., HR, Finance), reducing broadcast traffic.
VPC (Virtual Private Cloud)	Virtual network in cloud environments that mimics traditional networking. Supports routing, security groups, subnets, and gateways.	Deploying secure cloud applications with private subnets.

VLAN (Virtual Local Area Network)

IEEE Standard: IEEE 802.1Q

Main Features:

• Segments a physical network into multiple logical networks

• Reduces broadcast domain size

• Each VLAN acts like a separate Layer 2 network

• Traffic tagging allows VLANs across trunk links

• VLANs help enforce policy and isolate traffic

Use Cases:

• Isolating sensitive traffic (e.g., finance vs. guest Wi-Fi)

• Improving network performance and organization

• Simplifying security enforcement and policy application

Alternative Technologies:

• VXLAN – Extends VLANs over Layer 3 networks

• PVLAN – Private VLANs for micro-segmentation

• SDN – Virtual segmentation using software-defined networking

Let us learn more about VLANs:

• Learnings in this section

• Terminology

• Version Info

• VLAN Version&RFC Details

• VLAN Basic Setup on Ubuntu using IPv4

• VLAN Basic Setup on Ubuntu using IPv6

• VLAN Protocol Packet Details

• VLAN Usecases

• VLAN Basic Features

• VLAN Feature : Logical Segmentation

• VLAN Feature : Broadcast Control

• VLAN Feature : Improved Security

• VLAN Feature : Traffic Management

• VLAN Feature : Simplified Administration

• VLAN Feature : Scalability

• VLAN Feature : Quality of Service (QoS)

• VLAN Feature : Support for Multi-Tenancy

• VLAN Feature : Dynamic Assignment

• :ref VLAN Feature : Integration with STP <VLAN_step18>

• Reference links

Jump to “VLAN”

VPC (Virtual Private Cloud)

Used By: AWS, GCP, Azure, Oracle Cloud

Main Features:

• Virtualized network within cloud provider infrastructure

• Includes subnets, route tables, firewalls, and NAT gateways

• Supports public and private IP address ranges

• Fine-grained control over routing and connectivity

• Enables secure and isolated cloud workloads

Use Cases:

• Hosting cloud-native or hybrid applications securely

• Isolating environments (e.g., dev, test, prod)

• VPN and Direct Connect for hybrid cloud access

• Applying firewall and security group policies per subnet

Alternative Technologies:

• On-premises VLANs and VRFs

• SDN – Software-defined overlay networks

• NSX, Azure Virtual Network, GCP VPC Peering

Let us learn more about VPCs:

• Learnings in this section

• Terminology

• Version Info

• VPC Version&RFC Details

• VPC Basic Setup on Ubuntu using IPv4

• VPC Basic Setup on Ubuntu using IPv6

• VPC Protocol Packet Details

• VPC Usecases

• VPC Basic Features

• VPC Feature : Private IP Addressing

• VPC Feature : Subnetting

• VPC Feature : Route Tables

• VPC Feature : Security Groups

• VPC Feature : Network ACLs

• VPC Feature : Elastic IP Support

• VPC Feature : NAT Gateway Integration

• VPC Feature : Internet Gateway Access

• VPC Feature : DNS Resolution

• VPC Feature : IPV6 Support

• Reference links

Jump to “VPC”