-1

Subnets are managed at the VM level. A compromised VM can change it's subnet to loop through all the possibilities. By their very nature, surely they cannot be considered secure?

Note: I'm not a networking guru - so I may have missed something blindingly obvious...

Michael Cropper
  • 382
  • 2
  • 5
  • 13

1 Answers1

3

Subnets are a layer 3 division of network addresses. To prevent network traffic from reaching another subnet by changing the IP address to one in the other subnet you should consider 802.1q (VLAN tagging) which is a layer 2 separation of data.

user5870571
  • 3,094
  • 2
  • 12
  • 35