Network Segmentation

The need to segment the various devices into many LANs or networks is core
regardless of the vendor or type of industrial Ethernet network you deploy.
The differences will be mostly on how they will be interconnected. In most
cases, there will be a combination of different types of segmentation. A layer
3 switch, often referred to as a router, is the primary method for creating
connectivity between LANs.

LAN 1
LAN 2

Layer 3
HMI Workstation Switch
LAN 3
LAN 4

Layer 2 Switches

While vendors may promote the latest technology and methods based on
quality of service “QoS” or routing/firewall capabilities, many plants may
not have the budget or support staff to make these types of deployments.
Network upgrades are occurring in which installed LANs are being connected
to routers to improve inter-communications and access.

The basic segmentation used before Ethernet is often referred to as “air-

gapped” where there is no physical connection to other networks.

LAN 1 LAN 2

PLC
HMI Workstation
LAN 4
LAN 3

2021 I Practical Guide for Remote Access to Plant Equipment 46