I'm looking to implement a NOC for a data centre and there are obviously several design decisions to be taken relating to the connectivity and operation of the data centre. One of the options available is an air gap network, i.e. disconnected from all but the managed networks, and then all back-end connectivity will be firewalled. I was wondering if anyone had any experience of working in or deploying this environment and if so were the security benefits, i.e. not connected to the Internet, outweighed by the operational difficulties, e.g. no direct access to email etc. For example did a NOC start off as an air gap network and then migrate to a non air gap network due to issue of working with this model?
Any thoughts or comments would be appreciated.