Chapter 1
Overview
Enterprise Zone
The enterprise zone comprises the centralized IT systems and functions. Wired and wireless access is
available to enterprise network services, such as enterprise resource management, business-to-business,
and business-to-customer services.The basic business administration tasks, such as site business
planning and logistics, are performed here and rely on standard IT services. Guest access systems are
often located here, although it is not uncommon to find them in lower levels of the framework to gain
flexibility that might be difficult to achieve at the enterprise level.
Demilitarized Zone
The demilitarized zone (DMZ) provides a buffer for sharing of data and services between the enterprise
and manufacturing zones. The DMZ maintains availability, addresses security vulnerabilities, and
abiding by regulatory compliance mandates. The DMZ provides segmentation of organizational control,
for example, between the IT and production organizations. Different policies for each organization can
be applied and contained. For example, the production organization might apply security policies to the
manufacturing zone that are different than those applied to the IT organization.
Manufacturing Zone
The manufacturing zone comprises the cell networks and site-level activities. All the systems, devices,
and controllers that monitor the plant operations are in this zone. The cell zone is a functional area within
a production facility.
The cell zone is a set of devices, controllers, and so on, that provide the real-time control of a functional
aspect of the automation process. They are all in real-time communication with each other. This zone
requires clear isolation and protection from the other levels of plant or enterprise operations.
Figure 1-1
OL-13018-03
shows the EttF architecture.
Network Configuration Examples
Cisco IE 3000 Switch Software Configuration Guide
1-15