How does subnetting improve security

You can subnet to ease troubleshooting. Tracing a problem on a network segment is easier if the network has been cut into halves through subnetting; you're dealing with fewer hosts at a time. Though at one time subnetting implied breaking your network down into shorter physical segments, today subnetting is not necessarily tied to the physical world.

You can subnet simply because you want each department or remote office, or floor in your highrise, or building on your campus, or You can decide, for example, that anything beginning with You can make wireless addresses instantly recognizable to you, so you can keep an eye on them in your logs easily. Or whatever -- use your imagination! Note that even though there are possible addresses when we use one byte 0 through , you will only be able to use This is because an address of all ones, or in this case, is reserved for the broadcast address and an address of all zeroes is reserved for the network address.

The broadcast address means "Send to all hosts on this network segment," so it obviously cannot be used as an individual host address. The network address is reserved for more traditional reasons. Dividing the possible addresses in a Class C network by 4 tells us each subnet can have 64 addresses. However, for the reasons I just cited, only 62 of those addresses can be used for hosts. Instead of using a Class C subnet mask of This works because it leaves six bits out of the 32 bits in an IP address for addressing hosts.

In Part 1, I pointed out that an IP address is two addresses in one: a network address, and a host address. When you specify a subnet mask, you could say that the portion that defines the subnet has been "borrowed" out of the host address portion and added to the network portion.

Thus, the router that connects your subnets can determine which addresses belong to which subnet by considering the first two bits of what was the host address as being part of the newly changed network address. But in the case of Subnetting four steps are required for Inter-Network Communication. Hence, it increases Time complexity.

In the case of Subnet, more time is required for communication or data transfer. Network Id for S1: Cost of the overall Network also increases. Subnetting requires internal routers, Switches, Hubs, Bridges etc. Skip to content. This becomes particularly apparent when a network becomes large enough to support an organisation, where network performance becomes more of an issue. Subnets help to solve this problem by breaking up the network into smaller parts, reducing congestion as a result.

Data packets are then able to flow directly to their destination and avoid any individual bottlenecks. An organisation can use IP subnets to divide larger networks for logical reasons firewalls, etc , or physical requirements smaller broadcast domains, etc. In other words, routers use subnets to make routing choices. Subnetting is also used to improve network security , as the divisions between each subnet allow organisations to enforce access controls - which also helps to contain any security incidents.

As with an IP address, a subnet mask comprises four bytes 32 bits and is written in the same notation as an IP address, typically this is The subnet mask complements an IP address and by applying it to the IP address and it determines what subnet an IP address belongs to.

An IP address has two components, the network address and the host address. Subnetting further divides the host part of an IP address into a subnet and host address if additional subnetworks are needed. In effect, it masks an IP address and divides the IP address into network address and host address. When a computer on one network needs to communicate with a computer on another, it uses a router.

When placing a router to properly route traffic between each subnet, the router would not route any broadcast traffic, nor would it route any information that did not need to be routed to the other subnet.

As a result, the speed of each subnetwork would increase because the level of traffic within each subnetwork is lower, therefore increasing overall network performance and reducing network congestion. The ability to divide a large network into smaller networks is a valuable skill that will benefit you immensely. If you want to work with large networks or learn a technique that will help grow your networking skill set, subnetting can do the trick.

A page guide to every Cisco, Juniper, F5, and NetApp certification, and how they fit into your career. By submitting this form you agree that you have read, understood, and are able to consent to our privacy policy. Learn anytime anywhere with our mobile apps.

I have read and understood the privacy policy and am able to consent to it. CBT Nuggets uses cookies to give you the best experience on our website. You can read more about our use of cookies , or just continue to use the site as you normally would if you agree. First Name. Last Name. What is your job role? I'm an IT pro looking to sharpen my skills or earn a certification I lead an IT team and am looking for training solutions I'm not an IT pro, but interested in entering the field Other.