Smart campus energy management network spanning three tiers—access, distribution, and core—with segregated VLANs for smart meters, environmental sensors, motion detectors, LPWAN gateways, and Wi-Fi access points. Traffic flows through a DMZ perimeter with WAF, Shield, and Core Firewall before routing to AWS IoT Core, IoT Greengrass, and a full analytics stack including Kinesis, S3, RDS, DynamoDB, Glue, EMR, and SageMaker. This architecture demonstrates defense-in-depth with IAM/Auth, KMS encryption, CloudTrail audit logging, and EventBridge-driven automation for real-time alerts and predictive maintenance. Fork this diagram to customize VLANs, add additional sensor types, or integrate with your existing AWS account topology. The design balances on-premises edge processing via Greengrass with centralized cloud analytics, ideal for large-scale IoT deployments requiring low-latency local control and long-term data science.