Network Topology and Zones
Build a dynamic model of your network topology and define network zones.
The next step is to render a clear visual model of the network topology — what the devices are and where they are (i.e., specific IP addresses), the options for routing traffic throughout the network, how various points are connected, and so on. This model must be dynamic because your network is in a state of constant change. For example, your model might show that the enterprise application that serves electronic payment processing is on the same network segment as another business application. This is a direct conflict with PCI DSS requirements, which mandate that applications for processing credit card payments be completely isolated from all other applications on the network.