Skip to content

12Port for Microsegmentation

The Microsegmentation module of the 12Port platform provides organizations with complete control over internal network traffic between managed assets. By utilizing endpoint-native firewalls and dynamic, context-aware policies, The Microsegmentation module empowers you to visualize, monitor, and enforce microsegmentation policies without disrupting your existing network infrastructure.

This portal serves as your go-to resource for deploying, configuring, and managing the module in your environment. Whether you are looking to improve visibility, optimize segmentation policies, or scale secure traffic control across your network, you'll find everything you need here to get started.

What Microsegmentation Does

Microsegmentation enables you to control East-West traffic in your network with full visibility and security. The module leverages endpoint-native firewalls to enforce segmentation directly on assets, providing:

  • Asset-level network visibility for full transparency into internal traffic.
  • Dynamic policy enforcement that adapts to your environment as it changes.
  • Real-time connection mapping to visualize communication between assets.
  • Simulated policy testing to ensure smooth rollouts.
  • Comprehensive reporting for compliance and auditing.

Key Features Overview

Comprehensive Asset-Level Network Visibility

Understanding network behavior is the first step to effective segmentation. Microsegmentation gives you complete visibility into your internal traffic:

  • Collects data directly from endpoints for real-time insight into network and firewall states.
  • View interfaces, workloads, active connections, and firewall rules for every asset.
  • Track enforcement statuses of current firewall policies to stay compliant.

Endpoint-Native Firewall Management

Microsegmentation simplifies the enforcement of microsegmentation policies by leveraging native firewalls already present in your endpoints. No additional appliances or agents are required:

  • Add or delete firewall rules directly on the endpoint.
  • Enable or disable rule enforcement per asset, based on your specific needs.
  • Support for multiple operating systems such as Linux (iptables), Windows Defender Firewall, Oracle Solaris Packet Filtering, and IBM AIX IP Security.

Interactive Asset Connection Mapping

Visualize your entire network's behavior with the Microsegmentation module's interactive connection map:

  • Map inbound and outbound connections between assets and nodes.
  • Navigate through your infrastructure’s hierarchy with zoom and container filtering.
  • Aggregate and manage IP lists for granular control and management.

Dynamic Policy Control with Tags and Selectors

Policies in the module are designed to evolve as your network changes. You can:

  • Build policies using selectors, services, and asset tags.
  • Use tag-based logic to apply policies across workloads and services.
  • Apply policies dynamically based on asset changes or selector updates, ensuring automatic adaptation.

Simulate Policies Before Full Enforcement

Ensure smooth policy rollouts without risking disruptions. Microsegmentation allows you to simulate policies in a monitor-only mode:

  • Monitor the effects of microsegmentation policies before full enforcement.
  • Detect violations without impacting live traffic.
  • Refine policy strategies using observed network behavior.

Segmentation Insights and Automated Suggestions

The Microsegmentation module helps you fine-tune your segmentation strategy with its built-in analytics engine:

  • Receive segmentation suggestions based on traffic patterns and observed connections.
  • Understand model density and how asset tags influence segmentation decisions.
  • Adjust your policies using real-world data, ensuring the segmentation is both effective and scalable.

Built-in Exception Management Workflows

Not every use case fits within a strict policy. Microsegmentation includes service request workflows for secure exception management:

  • Request temporary, time-based exceptions for access needs.
  • Enforce approval cycles and audit logging for all exception requests.
  • Maintain granular control over exceptions without compromising security.

Comprehensive Reporting and Compliance

The module's reporting features provide detailed insights into your segmentation and traffic management:

  • Generate reports by space, container, or individual asset.
  • Visual and table-based reports for comprehensive views on firewall rules, active connections, and asset states.
  • Detailed status reports for endpoints, workloads, interfaces, and active policies.

Getting Started

To get the most out of Microsegmentation, begin with the following resources:

  • Installation and Setup
    Learn how to deploy the module and integrate it with your existing infrastructure.

  • Network Visibility
    Understand how to collect and analyze asset-level network data.

  • Policy Creation and Management
    Set up dynamic segmentation policies based on your organization’s needs.

  • Simulating Policies
    Test policies in a monitor-only mode to refine your strategy before enforcement.

  • Reporting and Compliance
    Generate actionable reports for audits and compliance tracking.

Need Assistance?

Explore the Getting Started section to deploy Microsegmentation in your network, or dive into advanced features like policy automation and visualization tools. This documentation is designed to ensure you have everything you need to deploy the module effectively and keep your network traffic secure.

Need more help? Contact support@12port.com at anytime.