u/NightmareMoose

The good idea fairy has come knocking at work and wants to implement microsegmentation via vCenter. The easy way would be NSX, but I wouldn't be here if there was budget.

The request is for systems on 3 or 4 VLANs to go direct to the F5 router. I don't know if should use:

• Private VLANs?
• Traffic tagging?
• Something else?

My biggest concern is making sure these systems can still talk to domain services on a normal VLAN after implementation. I know it will be an administrative headache for little gain, but appreciate any help you can provide.