Policies

A segmentation policy refers to a set of rules and configurations that dictate how network or application traffic is controlled and segmented within an environment. This approach enhances security by dividing the network into smaller, isolated segments, each with its own set of access controls and security measures.

Policies create granular security boundaries within a network. Instead of relying on traditional perimeter-based defenses, micro-segmentation restricts communication between network segments based on defined policies that are applied to assets using tags. Each segment created by a policy operates by controlling east-west traffic thus minimizing the surface by which a malicious attack can spread.

A 12Port segmentation policy is constructed using a combination of factors such as selectors, services, and source criteria built using common tags. These criteria specify which types of traffic are allowed, enforced, or monitored between different segments of the network.