We are moving to a VDI solution with zero clients and Nutanix Servers with VMware. We are going with a default deny policy on our intranet in which we will only allow a whitelist of urls outbound to the trusted business partners we deal with.
When we implement that, it will break internet browsing so we would have another VLAN or security zone that is less restrictive to be used by everyone for internet browsing.
My question is how do I achieve this without putting two zero-clients and having 2 VM's for every user???
THis is probably simple but I am brain frozen....