What are the two main types of policies in Illumio?

The two main types of policies in Illumio are Application Policies and Infrastructure Policies.

Application Policies focus on defining the security and communication requirements for specific workloads or applications within an organization. These policies dictate how applications communicate with each other and what resources they can access, enhancing security postures by controlling traffic at the application layer.

Infrastructure Policies, on the other hand, are concerned with the broader network environment in which applications operate. They regulate traffic flow between various infrastructure components, such as virtual machines and physical servers, and can apply to both east-west (lateral) and north-south (incoming/outgoing) traffic. This ensures that the security protocols are enforced across all elements of the infrastructure, thereby reinforcing the overall security framework.

The distinction between these two types of policies is fundamental to effective policy management in Illumio, as they target different aspects of an organization’s security requirements. The other options presented do not encapsulate both the application-centric and infrastructure-centric views that Illumio employs for its policy framework.