In this post, I will give you a business requirements and information about the business of a fictitious company,together we will try to find an optimal solution for the given questions.
There will be many valid solution as you will see from the comments, we will have to make tradeoffs between each design goals while selecting one design vs another.
Company has 15 different business units and want to provide end to end segmentation.
Company has 500 remote offices and only the 2 business units employees are working in the remote offices. They are planning to expand their locations at least 10% every 6 months.
Confidentiality of their data is highly critical due to regulatory reason.
Business units will not communicate with each other. They have HQ which is connected to their datacenter through WAN over a service provider.
Engineers of the company are highly skilled since most of them are orhanergun.net readers ! 🙂
Which service Company should receive from the service provider ?
How would you provide end to end segmentation ?
Will your choice provide confidentiality ?