When considering the security implications within a network design, what is the BEST method for reducing the risk of lateral movement if a host is compromised in a datacenter environment?
Using Network Address Translation (NAT) between network segments
Applying network segmentation with strict Access Control Lists (ACLs)
Implementing VLANs for each department
Deploying a Network Intrusion Prevention System (NIPS) at the datacenter perimeter