VMware vcloud Networking and Security Overview
|
|
- George Dawson
- 7 years ago
- Views:
Transcription
1 VMware vcloud Networking and Security Overview Networks and Security for Virtualized Compute Environments WHITE PAPER
2 Overview Organizations worldwide have gained significant efficiency and flexibility as a direct result of deploying virtualization solutions from VMware. As more business-critical applications are virtualized, administrators are increasingly confronting the challenges of deploying and managing networks and security to keep pace with data center innovation. VMware vcloud Networking and Security provides essential networking and security functionality for virtualized compute environments built using VMware vcloud Suite. Challenges Stifle IT Productivity Today, a virtual machine can be provisioned in a matter of minutes, but surrounding it with all the necessary network and security services still takes days or weeks. Operational costs rise as manual provisioning, dedicated physical appliances and fragmented management interfaces reduce efficiency and limit IT s ability to support business needs. Networking and security constructs tied to rigid dedicated hardware increase data center cost and complexity. Underutilized server capacity due to network constraints prevents IT from pooling, moving or scaling across noncontiguous clusters. IT is further constrained by labor-intensive network operations caused by the complexity of VLAN provisioning and management. Even routine tasks, such as rack maintenance or upgrade, that require workloads to move to different hosts or clusters can take weeks of planning and testing. The rigidity of physical networks and manual operations inhibits the responsiveness of IT teams, preventing them from adapting to dynamic business needs. Without visibility into how traffic flows in a virtual environment, IT faces the increasing possibility of policy violations, slowing security policy implementation and management. Businesses now need rapid access to IT resources to support faster time to market. IT needs to deliver this access while ensuring that the data center is fully managed and secured. With vcloud Networking and Security, enterprises can virtualize businesscritical applications with confidence, secure VMware Horizon View deployments, and build secure and agile private clouds based on VMware vcloud Suite. VMware vcloud Networking and Security vcloud Networking and Security provides networking and security capabilities for virtualized compute environments that are built with vcloud Suite technologies. It provides a broad range of services delivered through virtual appliances (see Figure 1), such as a virtual firewall, virtual private network (VPN), load balancing, network address translation (NAT), DHCP and VXLAN-extended networks, while also providing a comprehensive framework to integrate third-party solutions. These foundational networking and security capabilities of the vcloud Suite enhance operational efficiency, improve agility with control and enable extensibility to partner solutions. Management integration with VMware vcenter Server and VMware vcloud Director reduces the cost and complexity of data center operations. Figure 1. vcloud Networking and Security Solution Overview Key Capabilities of vcloud Networking and Security Firewall Stateful inspection firewall that can be applied either at the perimeter of the virtual data center or at the virtual network interface card (vnic) level directly in front of specific workloads. The firewall-rule table is designed for ease of use and automation with VMware vcenter objects for simple, reliable policy creation. Stateful failover enables high availability for business-critical applications. VPN Industry-standard IPsec and SSL VPN capabilities that securely extend the virtual data center. Site-to-site VPN support links virtual data centers and enables hybrid cloud computing at low cost. The SSL VPN capability delivers remote administration into the virtual data center through a bastion host, the method favored by auditors and compliance regulators. Load balancer A virtual-appliance based load balancer to scale application delivery without the need for dedicated hardware. Placed at the edge of the virtual data center, the load balancer supports Web-, SSL- and TCP-based scale-out for high-volume applications. VXLAN Technology that, along with VMware vsphere Distributed Switch, creates Layer 2 logical networks across noncontiguous clusters or pods without the need for VLANs (multicast required). This enables you to scale your applications across clusters and pods and improve compute utilization. WHITE PAPER / 2
3 Instrumentation Granular network traffic telemetry that enables rapid troubleshooting and incident response. Traffic counters for sessions, packets and bytes provide visibility into the virtual network and streamline firewall-rule creation. Management Integrates with vcenter Server and vcloud Director to provide separation of duties with role- based access control (RBAC) while providing a central point of configuration and control for network and security services. vcloud Ecosystem Framework Integrates partner services at either the vnic or the virtual edge using REST APIs. The complete set of vcloud Networking and Security features (see Table 1) is available in all vcloud Suite editions. vcloud Networking and Security is available only within vcloud Suite editions and is not sold as a standalone product. Features Firewall VPN VXLAN vcloud Ecosystem Framework NAT DHCP High availability (HA) Load balancing Data Security Endpoint vcloud Suite Standard Table 1. vcloud Networking and Security Features Architecture vcloud Suite Advanced vcloud Suite Enterprise (Bundled in VMware vsphere 5.1 or later) vcloud Networking and Security is built with virtual appliances. Network traffic from virtual workloads is passed through these appliances, which apply services such as firewalls and load balancing. Third-party services from integration partners also have access to network traffic through these appliances. There are two vcloud Networking and Security virtual-appliance types. The Edge Gateway appliance establishes a perimeter gateway for network traffic to enter and leave a virtual data center. It provides a wide range of services, including a highly available stateful inspection firewall, IPsec site-to-site VPN, a server-load balancer, NAT, and network services such as static routing, DHCP and domain name system (DNS). A second type of virtual appliance, App Firewall, provides protection directly in front of one or more specific workloads (e.g., virtual machines). This firewall flexibility is a key advantage of the vcloud Networking and Security architecture (see Figure 1). For example, if IT wants to help protect a specific workload from attack, deploying a firewall immediately in front of that workload may be most appropriate because IT can then ensure that all traffic directed at the workload is protected by a firewall, regardless of its source. In contrast, if a virtual domain is being created for a lab environment, IT may choose to deploy a firewall at the edge of the domain. In this case, the lab team could do what it wants inside its domain, and IT would simply control access to the corporate network from outside the domain. vcloud Networking and Security is built on top of vsphere Distributed Switch, available in VMware vsphere Enterprise Plus Edition. vsphere Distributed Switch provides high-performance virtual networking across clusters. Integrated management with vcenter and vcloud Director provides centralized control and visibility down to the virtual port level. vcloud Networking and Security Services vcloud Networking and Security delivers networks and security with a broad range of services in a single solution. Firewall Services VMware vcloud Networking and Security Edge and VMware vcloud Networking and Security App firewalls are tightly integrated into vsphere and rely heavily on vcenter objects in policy creation (see Figure 2). For example, you can use the firewall-rule table to directly select vcenter objects such as workloads, port groups and virtual networks. This integration makes rule creation faster and less error prone than legacy approaches that require administrators to manually create and maintain IP address based objects. Once defined, rules can be enforced at either the perimeter of the virtual data center with vcloud Networking and Security Edge, or directly in front of a workload at the vnic level with the vcloud Networking and Security App firewall. Regardless of the enforcement point, vcloud Networking and Security firewall services perform stateful packet inspection at improved performance and low latency. Figure 2. Intuitive Firewall Rules with vcenter and vcloud Director Objects WHITE PAPER / 3
4 vcloud Networking and Security Edge includes multiple virtual network interfaces that give security architects much more flexibility in designing software-defined networks (see Figure 3). These interfaces can segment virtual networks and provide connectivity to multiple VLANs deployed on the physical network. Figure 3. Multiple Interfaces for Network Segmentation NAT vcloud Networking and Security Edge incorporates a flexible NAT engine that can map network and port addresses using a familiar configuration model (see Figure 4). Administrators can deploy protected zones, also known as demilitarized zones (DMZs), without needing to manually change addresses for servers and applications. Application-layer gateways for common protocols enable applications to function in NAT environments. Figure 4. Flexible NAT Engine VPN vcloud Networking and Security Edge IPsec VPN provides secure site-to-site connectivity using widely supported standards such as Internet Key Exchange (IKE) with 256-bit Advanced Encryption Standard (AES-256) for strong encryption (see Figure 5). This capability enables you to interconnect virtual data centers securely to physical firewalls from a variety of vendors. Figure 5. Secure IPsec Site-to-Site VPN Connectivity SSL vcloud Networking and Security also incorporates SSL remote access to give administrators access to the virtual data center. SSL is implemented on the Edge Gateway virtual appliance and enables administrators to perform remote configuration, troubleshooting and other routine management tasks. The vcloud Networking and Security implementation resembles administrative remote access through a JumpBox or Bastion host, the method preferred by most security specialists and auditors. This approach minimizes the attack surface of the virtual domain and makes auditing administrative activity easier and more robust. Load Balancer vcloud Networking and Security provides powerful serverload balancing capabilities to increase availability and performance of business-critical applications (see Figure 6). Several load-balancing algorithms are supported, including round-robin, cookie-based and session-based alternatives. Figure 6. vcloud Networking and Security Server Load Balancing WHITE PAPER / 4
5 Edge High Availability vcloud Networking and Security enables stateful high-availability (HA) firewalls for virtual data centers (see Figure 7). With vcloud Networking and Security Edge HA, active firewall connections can be continuously synchronized between an active/standby pair of Edge virtual appliances. If a failure occurs in the active Edge appliance, sessions are not lost, and the standby unit resumes the passing of traffic in less than 10 seconds. With this level of availability, administrators gain the confidence to virtualize business-critical applications. clusters and Layer 3 segments of the data center. Moreover, unlike VLANs, which are limited to 4,096 segments, VXLAN scales to 16 million segments without requiring a large upgrade to existing physical switching infrastructure. Administrators use vcenter Server or vcloud Director to define VXLAN segments (see Figure 8), enabling efficiency and single pane of glass management of the network. vcloud Networking and Security Edge performs VXLAN-to-VLAN gateway translations to allow simple migration. In addition, VMware has enhanced the vsphere Distributed Switch component of vsphere Enterprise Plus Edition to provide troubleshooting and traffic statistics about VXLAN encapsulated traffic. Figure 8. VXLAN Software-Defined Networking vcloud Ecosystem Framework vcloud Networking and Security includes standards-based APIs that enable third-party solution providers to integrate products into the virtual environment. As part of vcloud Ecosystem Framework (see Figure 9), the APIs allow network-level access to data flows at either the vnic or the virtual data center edge level. Network traffic can be redirected to flow through a third-party product, or packets can simply be copied. For example, a thirdparty intrusion prevention system (IPS) should be placed in line with traffic flows, whereas a pure monitoring tool (e.g., a packet capture tool) requires only a copy of the traffic. The framework supports third-party products implemented as either hardware or virtual appliances. Figure 7. Edge Stateful HA Firewall Data Security The solution also includes VMware vcloud Networking and Security Data Security for Microsoft Windows. This feature scans Windows (Common Internet File System, or CIFS) file servers for sensitive data that matches predefined templates, such as credit card or social security numbers. The templates provide a wide variety of international sensitive data formats. vcloud Networking and Security Data Security is typically used to locate data that has been stored on file servers without proper access controls or auditing. VXLAN The VXLAN protocol leverages user datagram protocol (UDP) encapsulation to enable networks to stretch across multiple Figure 9. vcloud Ecosystem Framework for Inserting Third-Party Services WHITE PAPER / 5
6 This approach means that companies can protect their investments in existing hardware and can easily transition to virtual appliances over time using a consistent operational model. Key Benefits vcloud Networking and Security lowers operational costs, increases agility and flexibility, and extends to include third-party services. Lower Costs by Improving Efficiency and Utilization Allocate compute resources elastically across clusters and pods with VXLAN-based networks..simplify provisioning and lower operational costs while reducing the need for specialized devices by using virtual appliances to provide integrated gateway services. Manage and allocate compute resources across clusters and pods. Reduce dependence specialized devices. Take advantage of vcenter or vcloud Director integration. Adapt to Business Needs with Virtual Workload Agility Create networks that scale with applications and apply security services exactly where needed without hardware upgrades. vcloud Networking and Security delivers higher application availability and improved network performance. Deploy, move or scale virtual workloads across clusters or pods (see Figure 10). Automate provisioning and scale-out of networking and security services. Gain greater visibility into virtual traffic flows. Figure 10. Workload Mobility Across Clusters and Pods Use Best-of-Breed Security Solutions Across Your Infrastructure Take advantage of the latest third-party innovations while leveraging your existing networking and security investments. REST APIs allow service insertion at the vnic and the virtual edge, with support for both hardware and software solutions. Leverage the open architecture and industry-standard APIs. Enable consistent support across hardware and softwarebased solutions. Protect your existing networking and security investments. How to Use vcloud Networking and Security Using vcloud Networking and Security, enterprises can virtualize business-critical applications with confidence, build secure and agile private clouds, and protect their virtual desktop solutions. Protect Business-Critical Applications with Lower Cost and Complexity As organizations virtualize more business-critical applications, they need to protect and isolate them from less secure systems. They need greater visibility into virtual traffic flows so that they can enforce policies and implement compliance controls on in-scope systems. vcloud Networking and Security provides robust security and isolation for business-critical applications. Isolating these applications used to require physical VLANs and firewalls, but now it requires only logical groupings and virtual firewall rules with vcloud Networking and Security. Not only are the security rules simpler to implement, but they also are easier to manage and do not require dedicated physical appliances. Adaptive security travels with virtual machines as they migrate from host to host in a dynamic cloud environment. vcloud Networking and Security also provides increased visibility and control over inter virtual-machine communication for faster policy enforcement. The benefits of using vcloud Networking and Security to protect and isolate business-critical applications include Protection and isolation of critical applications with virtualization-aware firewall and adaptive trust zones Increased visibility and control over inter virtual-machine communication Optimized resource utilization across clusters and pods Identification and protection of sensitive business information Build Agile and Secure Private Clouds vcloud Networking and Security delivers an operationally efficient, simple, cost-effective networking and security solution delivered through vcloud Suite. Because VXLANbased networks can be deployed and scaled across physical boundaries, organizations can optimize management and use of compute resources across clusters and pods. Integrated firewall and gateway services secure the perimeter of the virtual data center and provide services such as firewalls, NAT, load balancing, VPN and DHCP, reducing the need for dedicated physical appliances. Because vcloud Networking and Security is fully integrated with vcenter Server and vcloud Director, it reduces manual operations and simplifies deployment and management. vcloud Networking and Security is also WHITE PAPER / 6
7 designed to work seamlessly with the existing enterprise IT infrastructure and provides APIs for customized integration of third-party services. With vcloud Networking and Security secure private clouds, IT teams can Reduce manual networking provisioning and simplify deployment by eliminating VLANs Optimize management and consumption of compute resources across clusters and pods Secure the edge of the virtual data center with integrated firewall and gateway services Manage inbound Web traffic across virtual-machine clusters with load-balancing capabilities Maximize performance by integrating best-of-breed thirdparty solutions Secure Virtual Desktop Infrastructure Deployments vcloud Networking and Security enables granular and efficient access control in virtual desktop infrastructure (VDI) environments, such as Horizon View. vcloud Networking and Security can create logical security perimeters around individual virtual desktops or around the entire virtual desktop infrastructure. This capability ensures that VDI users can access only the applications and data they are authorized to use and also prevents unauthorized access to the broader virtual data center (see Figure 4). Visibility into VDI traffic enables rapid troubleshooting and policy creation. The benefits of using vcloud Networking and Security to secure virtual desktops include Better protection of virtual desktops from neighbor attacks More controlled access from virtual desktops to applications Improved isolation of the VDI environment from the rest of the virtual data center Protection of sensitive data from access by unauthorized staff members or hackers Streamlined security management and prevention of performance bottlenecks Find Out More For information or to purchase VMware products, call VMWARE (outside North America, ), visit or search online for an authorized reseller. WHITE PAPER / 7
8 VMware, Inc Hillview Avenue Palo Alto CA USA Tel Fax Copyright 2013 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. Item No: VMW3905-WP-vCLD-NETWORK-SECURITY-USLET /13
VMware vcloud Networking and Security
VMware vcloud Networking and Security Efficient, Agile and Extensible Software-Defined Networks and Security BROCHURE Overview Organizations worldwide have gained significant efficiency and flexibility
VMware vcloud Air. Enterprise IT Hybrid Data Center TECHNICAL MARKETING DOCUMENTATION
TECHNICAL MARKETING DOCUMENTATION October 2014 Table of Contents Purpose and Overview.... 3 1.1 Background............................................................... 3 1.2 Target Audience...........................................................
Expert Reference Series of White Papers. vcloud Director 5.1 Networking Concepts
Expert Reference Series of White Papers vcloud Director 5.1 Networking Concepts 1-800-COURSES www.globalknowledge.com vcloud Director 5.1 Networking Concepts Rebecca Fitzhugh, VMware Certified Instructor
vcloud Air - Virtual Private Cloud OnDemand Networking Guide
vcloud Air - Virtual Private Cloud OnDemand Networking Guide vcloud Air This document supports the version of each product listed and supports all subsequent versions until the document is replaced by
VMware vcloud Air Networking Guide
vcloud Air This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition. To check for more recent editions of this document,
vcloud Networking and Security Sales and Partner Use Only What is the VMware vcloud Networking and Security Product?
CHEAT SHEET INTERNAL USE ONLY VMware vcloud Networking and Security Sales and Partner Use Only What is the VMware vcloud Networking and Security Product? VMware has combined its security and advanced networking
Virtualization Essentials
Virtualization Essentials Table of Contents Introduction What is Virtualization?.... 3 How Does Virtualization Work?... 4 Chapter 1 Delivering Real Business Benefits.... 5 Reduced Complexity....5 Dramatically
VMware Solutions for Small and Midsize Business
SOLUTION BRIEF VMware Solutions for Small and Midsize Business Protect Your Business, Simplify and Save on IT, and Empower Your Employees AT A GLANCE VMware is a leader in virtualization and cloud infrastructure
Mobile Secure Desktop Maximum Scalability, Security and Availability for View with F5 Networks HOW-TO GUIDE
Mobile Secure Desktop Maximum Scalability, Security and Availability for View with F5 Networks HOW-TO GUIDE Solution Overview The VMware View Mobile Secure Desktop solution is a powerful architecture intended
Keith Luck, CISSP, CCSK Security & Compliance Specialist, VMware, Inc. kluck@vmware.com
1 Keith Luck, CISSP, CCSK Security & Compliance Specialist, VMware, Inc. kluck@vmware.com Agenda Cloud Computing VMware and Security Network Security Use Case Securing View Deployments Questions 2 IT consumption
VMware vcloud Air Security TECHNICAL WHITE PAPER
TECHNICAL WHITE PAPER The Shared Security Model for vcloud Air The end-to-end security of VMware vcloud Air (the Service ) is shared between VMware and the customer. VMware provides security for the aspects
VM-Series for VMware. PALO ALTO NETWORKS: VM-Series for VMware
VM-Series for VMware The VM-Series for VMware supports VMware NSX, ESXI stand-alone and vcloud Air, allowing you to deploy next-generation firewall security and advanced threat prevention within your VMware-based
Business Process Desktop
Maximum Scalability, Security, and Availability for VMware View with F5 Networks HOW-TO GUIDE Solution Overview The VMware View solution is a powerful architecture intended to serve the needs of non-mobile
vshield Administration Guide
vshield Manager 5.1 vshield App 5.1 vshield Edge 5.1 vshield Endpoint 5.1 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by
VMware Hybrid Cloud. Accelerate Your Time to Value
VMware Hybrid Cloud Accelerate Your Time to Value Fulfilling the Promise of Hybrid Cloud Computing Through 2020, the most common use of cloud services will be a hybrid model combining on-premises and external
Helping Customers Move Workloads into the Cloud. A Guide for Providers of vcloud Powered Services
Helping Customers Move Workloads into the Cloud A Guide for Providers of vcloud Powered Services Technical WHITE PAPER Table of Contents Introduction.... 3 About VMware vcloud Connector.... 3 Use Cases....
STRATEGIC WHITE PAPER. Securing cloud environments with Nuage Networks VSP: Policy-based security automation and microsegmentation overview
STRATEGIC WHITE PAPER Securing cloud environments with Nuage Networks VSP: Policy-based security automation and microsegmentation overview Abstract Cloud architectures rely on Software-Defined Networking
Security in the Software Defined Data Center
Security in the Software Defined Data Center Francesco Vigo Senior Systems Engineer, VMware fvigo@vmware.com Ugo Piazzalunga Technical Manager, SafeNet ugo.piazzalunga@safenet-inc.com Agenda Software Defined
White Paper. Juniper Networks. Enabling Businesses to Deploy Virtualized Data Center Environments. Copyright 2013, Juniper Networks, Inc.
White Paper Juniper Networks Solutions for VMware NSX Enabling Businesses to Deploy Virtualized Data Center Environments Copyright 2013, Juniper Networks, Inc. 1 Table of Contents Executive Summary...3
Monitoring Hybrid Cloud Applications in VMware vcloud Air
Monitoring Hybrid Cloud Applications in ware vcloud Air ware vcenter Hyperic and ware vcenter Operations Manager Installation and Administration Guide for Hybrid Cloud Monitoring TECHNICAL WHITE PAPER
5 Key Reasons to Migrate from Cisco ACE to F5 BIG-IP
5 Key Reasons to Migrate from Cisco ACE to F5 BIG-IP With support for Cisco ACE load balancer ending, organizations need to find an alternative. Contents Introduction 3 Advanced Architecture 3 Ease of
VMware vcloud Director for Service Providers
Architecture Overview TECHNICAL WHITE PAPER Table of Contents Scope of Document....3 About VMware vcloud Director....3 Platform for Infrastructure Cloud...3 Architecture Overview....3 Constructs of vcloud
How To Protect Your Virtual Infrastructure From Attack From A Cyber Threat
VMware Integrated Partner Solutions for Networking and Security VMware Integrated Partner Solutions for Security and Compliance VMware vcloud Networking and Security is the leading networking and security
Why Choose VMware vsphere for Desktop Virtualization? WHITE PAPER
Why Choose VMware vsphere for Desktop Virtualization? WHITE PAPER Table of Contents Thin, Legacy-Free, Purpose-Built Hypervisor.... 3 More Secure with Smaller Footprint.... 4 Less Downtime Caused by Patches...
Software-Defined Storage: What it Means for the IT Practitioner WHITE PAPER
What it Means for the IT Practitioner WHITE PAPER Extending the Power of Virtualization to Storage Server virtualization has changed the way IT runs data centers across the world. According to Gartner,
How Network Virtualization can improve your Data Center Security
How Network Virtualization can improve your Data Center Security Gilles Chekroun SDDC, NSX Team EMEA gchekroun@vmware.com 2014 VMware Inc. All rights reserved. Security IT spending Security spending is
On-Demand Call Center with VMware View
On-Demand Call Center with VMware A VMware 5 and Mitel Unified Communication Practice KEY BENEFITS Leverage infrastructure consolidation and desktop virtualization to deliver instant call center architecture.
A Guide to Hybrid Cloud for Government Agencies An inside-out approach for extending your data center to the cloud
A Guide to for Government Agencies An inside-out approach for extending your data center to the cloud Inside INTRODUCTION CHAPTER 1 CHAPTER 2 CHAPTER 3 CONCLUSION Transform the Government IT Environment
What s New with VMware vcloud Director 5.1
What s New with VMware vcloud Director 5.1 Feature Overview TECHNICAL WHITE PAPER JULY 2012 Table of Contents What s New with VMware vcloud Director 5.1.... 3 Software-Defined IaaS.... 3 Hardware and OS
VMware vcloud for Healthcare and HIPAA/HITECH. White paper
ware vcloud for Healthcare White paper Table of Contents Executive Summary............................................................ 3 Examining Virtualization, Cloud and Healthcare IT................................
VMware vcloud Powered Services
SOLUTION OVERVIEW VMware vcloud Powered Services VMware-Compatible Clouds for a Broad Array of Business Needs Caught between shrinking resources and growing business needs, organizations are looking to
vcloud Director User's Guide
vcloud Director 5.5 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new edition. To check for more recent editions of
Virtualization, SDN and NFV
Virtualization, SDN and NFV HOW DO THEY FIT TOGETHER? Traditional networks lack the flexibility to keep pace with dynamic computing and storage needs of today s data centers. In order to implement changes,
VMware vsphere with Operations Management and VMware vsphere
VMware vsphere with Operations Management and VMware vsphere Licensing, Pricing and Packaging WHITE PAPER Table of Contents Executive Summary.... 3 VMware vsphere with Operations Management Overview....
Unlock the full potential of data centre virtualisation with micro-segmentation. Making software-defined security (SDS) work for your data centre
Unlock the full potential of data centre virtualisation with micro-segmentation Making software-defined security (SDS) work for your data centre Contents 1 Making software-defined security (SDS) work for
Vyatta Network OS for Network Virtualization
Complete Security and Compliance for Virtual Environments Vyatta takes the concept of virtualization beyond just applications and operating systems and allows enterprise IT to also virtualize network components
VMUG - vcloud Air Deep Dive. 2014 VMware Inc. All rights reserved.
VMUG - vcloud Air Deep Dive 2014 VMware Inc. All rights reserved. Agenda 1 Overview of vcloud Air 2 Advanced Networking Capabilities 3 Use Cases 4 Overview of Disaster Recovery Service 5 Questions 2 VMware
Reducing the Cost and Complexity of Business Continuity and Disaster Recovery for Email
Reducing the Cost and Complexity of Business Continuity and Disaster Recovery for Email Harnessing the Power of Virtualization with an Integrated Solution Based on VMware vsphere and VMware Zimbra WHITE
Advanced Security Services with Trend Micro Deep Security and VMware NSX Platforms
A Trend Micro Technical White Paper June 2015 Advanced Security Services with Trend Micro and VMware NSX Platforms >> This document is targeted at virtualization, security, and network architects interested
Implementing a Hybrid Cloud Strategy
Implementing a Hybrid Cloud Strategy Using vcloud Air, VMware NSX and vrealize Automation TECHNICAL WHITE PAPER Table of Contents Purpose and Overview.... 3 Executive Summary.... 3 The Conceptual Architecture....
What s New in VMware Site Recovery Manager 6.1
What s New in VMware Site Recovery Manager 6.1 Technical Overview AUGUST 2015 Table of Contents Introduction... 2 Storage profile based protection... 2 Stretched Storage and Orchestrated vmotion... 5 Enhanced
Architecting and Building a Secure and Compliant Virtual Infrastructure and Private Cloud
Architecting and Building a Secure and Compliant Virtual Infrastructure and Private Cloud Rob Randell, CISSP Principal Systems Engineer Security Specialist Agenda What is the Cloud? Virtualization Basics
Top 10 Reasons to Virtualize VMware Zimbra Collaboration Server with VMware vsphere. white PAPER
Top 10 Reasons to Virtualize VMware Zimbra Collaboration Server with VMware vsphere white PAPER Email outages disrupt a company s ability to conduct business. Issues as diverse as scheduled downtime, human
What s New in VMware vsphere Flash Read Cache TECHNICAL MARKETING DOCUMENTATION
What s New in VMware vsphere TECHNICAL MARKETING DOCUMENTATION v 0.1/September 2013 Table of Contents Introduction.... 3 1.1 Software-Defined Datacenter... 3 1.2 Software-Defined Storage... 3 1.3 What
Securely Architecting the Internal Cloud. Rob Randell, CISSP Senior Security and Compliance Specialist VMware, Inc.
Securely Architecting the Internal Cloud Rob Randell, CISSP Senior Security and Compliance Specialist VMware, Inc. Securely Building the Internal Cloud Virtualization is the Key How Virtualization Affects
Virtualized Network Services SDN solution for enterprises
Virtualized Network Services SDN solution for enterprises Nuage Networks Virtualized Network Services (VNS) is a fresh approach to business networking that seamlessly links your enterprise s locations
Netzwerkvirtualisierung? Aber mit Sicherheit!
Netzwerkvirtualisierung? Aber mit Sicherheit! Markus Schönberger Advisory Technology Consultant Trend Micro Stephan Bohnengel Sr. Network Virtualization SE VMware Agenda Background and Basic Introduction
Deployment Guide. Deploying F5 BIG-IP Global Traffic Manager on VMware vcloud Hybrid Service
Deployment Guide Deploying F5 BIG-IP Global Traffic Manager on VMware vcloud Hybrid Service A. Introduction VMware vcloud Hybrid Service is an effective, flexible and reliable platform for enterprise customers
vshield Quick Start Guide
vshield Manager 5.0 vshield App 5.0 vshield Edge 5.0 vshield Endpoint 5.0 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by
SINGLE-TOUCH ORCHESTRATION FOR PROVISIONING, END-TO-END VISIBILITY AND MORE CONTROL IN THE DATA CENTER
SINGLE-TOUCH ORCHESTRATION FOR PROVISIONING, END-TO-END VISIBILITY AND MORE CONTROL IN THE DATA CENTER JOINT SDN SOLUTION BY ALCATEL-LUCENT ENTERPRISE AND NEC APPLICATION NOTE EXECUTIVE SUMMARY Server
What s New in VMware vsphere 5.5 Networking
VMware vsphere 5.5 TECHNICAL MARKETING DOCUMENTATION Table of Contents Introduction.................................................................. 3 VMware vsphere Distributed Switch Enhancements..............................
Business Values of Network and Security Virtualization
Business Values of Network and Security Virtualization VMware NSX in the context of the Software Defined Data Center Klaus Jansen Virtual Networks Sales Specialist VMware NSBU 2014 VMware Inc. All rights
VMware Workspace Portal Reference Architecture
VMware Workspace Portal 2.1 TECHNICAL WHITE PAPER Table of Contents Executive Summary.... 3 Overview.... 4 Hardware Components.... 5 VMware vsphere.... 5 VMware Workspace Portal 2.1.... 5 VMware Horizon
VMware vsphere 4. Pricing, Packaging and Licensing Overview W H I T E P A P E R
Pricing, Packaging and Licensing Overview W H I T E P A P E R Table of Contents Introduction to VMware vsphere 4..................................... 3 Pricing, Packaging and Licensing Overview..............................
Network Segmentation in Virtualized Environments B E S T P R A C T I C E S
Network Segmentation in Virtualized Environments B E S T P R A C T I C E S ware BEST PRAC TICES Table of Contents Introduction... 3 Three Typical Virtualized Trust Zone Configurations... 4 Partially Collapsed
Cisco Virtual Security Gateway for Nexus 1000V Series Switch
Data Sheet Cisco Virtual Security Gateway for Nexus 1000V Series Switch Product Overview Cisco Virtual Security Gateway (VSG) for Nexus 1000V Series Switch is a virtual appliance that provides trusted
VMware NSX Network Virtualization Design Guide. Deploying VMware NSX with Cisco UCS and Nexus 7000
VMware NSX Network Virtualization Design Guide Deploying VMware NSX with Cisco UCS and Nexus 7000 Table of Contents Intended Audience... 3 Executive Summary... 3 Why deploy VMware NSX on Cisco UCS and
Microsegmentation Using NSX Distributed Firewall: Getting Started
Microsegmentation Using NSX Distributed Firewall: VMware NSX for vsphere, release 6.0x REFERENCE PAPER Table of Contents Microsegmentation using NSX Distributed Firewall:...1 Introduction... 3 Use Case
Software-Defined Networks Powered by VellOS
WHITE PAPER Software-Defined Networks Powered by VellOS Agile, Flexible Networking for Distributed Applications Vello s SDN enables a low-latency, programmable solution resulting in a faster and more flexible
Symantec and VMware: Virtualizing Business Critical Applications with Confidence WHITE PAPER
Symantec and VMware: Virtualizing Business Critical Applications with Confidence WHITE PAPER Challenges of Using Traditional High-Availability Solutions Business-critical applications and the systems they
VMware Horizon 7. End-User Computing Today. Horizon 7: Delivering Desktops and Applications as a Service
DATASHEET 7 AT A GLANCE Extend the power of virtualization from the data center to devices. 7 delivers virtualized or hosted desktops and applications through a single platform to end users. These desktop
VMware vsphere with Operations Management and VMware vsphere
VMware vsphere with Operations Management and VMware vsphere Licensing, Pricing and Packaging WHITE PAPER Table of Contents Executive Summary.... 3 VMware vsphere with Operations Management Overview....
DMZ Virtualization Using VMware vsphere 4 and the Cisco Nexus 1000V Virtual Switch
DMZ Virtualization Using VMware vsphere 4 and the Cisco Nexus 1000V Virtual Switch What You Will Learn A demilitarized zone (DMZ) is a separate network located in the neutral zone between a private (inside)
The Technical Differential: Why Service Providers Choose VMware for Cloud-Hosted Desktops as a Service
The Technical Differential: Technical WHITE PAPER Table of Contents Executive Summary...3 Partnering With VMware Makes Business Sense...3 The VMware DaaS Blueprint...3 The VMware Technology Advantage...4
Cisco Nexus 1000V Switch for Microsoft Hyper-V
Data Sheet Cisco Nexus 1000V Switch for Microsoft Hyper-V Product Overview Cisco Nexus 1000V Switches provide a comprehensive and extensible architectural platform for virtual machine and cloud networking.
Installing and Configuring vcloud Connector
Installing and Configuring vcloud Connector vcloud Connector 2.7.0 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new
Whitepaper. NexentaConnect for VMware Virtual SAN. Full Featured File services for Virtual SAN
Whitepaper NexentaConnect for VMware Virtual SAN Full Featured File services for Virtual SAN Table of Contents Introduction... 1 Next Generation Storage and Compute... 1 VMware Virtual SAN... 2 Highlights
VMware vsphere 4.1. Pricing, Packaging and Licensing Overview. E f f e c t i v e A u g u s t 1, 2 0 1 0 W H I T E P A P E R
VMware vsphere 4.1 Pricing, Packaging and Licensing Overview E f f e c t i v e A u g u s t 1, 2 0 1 0 W H I T E P A P E R Table of Contents Executive Summary...................................................
Introduction to VMware EVO: RAIL. White Paper
Introduction to VMware EVO: RAIL White Paper Table of Contents Introducing VMware EVO: RAIL.... 3 Hardware.................................................................... 4 Appliance...............................................................
Cisco Intercloud Fabric Security Features: Technical Overview
White Paper Cisco Intercloud Fabric Security Features: Technical Overview White Paper May 2015 2015 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public Information. Page 1 of
AlwaysOn Desktop Implementation with Pivot3 HOW-TO GUIDE
Implementation with Pivot3 HOW-TO GUIDE Solution Overview Highly available servers and storage are critical components of the architecture and must be designed into the VDI clusters at each site. Desktop
Securing the Virtualized Data Center With Next-Generation Firewalls
Securing the Virtualized Data Center With Next-Generation Firewalls Data Center Evolution Page 2 Security Hasn t Kept Up with Rate Of Change Configuration of security policies are manual and slow Weeks
HAWAII TECH TALK SDN. Paul Deakin Field Systems Engineer
HAWAII TECH TALK SDN Paul Deakin Field Systems Engineer SDN What Is It? SDN stand for Software Defined Networking SDN is a fancy term for: Using a controller to tell switches where to send packets SDN
Tufin Orchestration Suite
Tufin Orchestration Suite Security Policy Orchestration across Physical Networks & Hybrid Cloud Environments The Network Security Challenge In today s world, enterprises face considerably more network
Optimizing Cloud Efficiency Through Enhanced Visibility and Control. business White paper
Optimizing Cloud Efficiency Through Enhanced Visibility and Control business White paper If You Can t See the Problem, You Can t Fix the Problem and the More Accurate and Detailed Your View, the Better
How To Build A Software Defined Data Center
Delivering the Software Defined Data Center Georgina Schäfer Sr. Product Marketing Manager VMware Calvin Rowland, VP, Business Development F5 Networks 2014 VMware Inc. All rights reserved. F5 & Vmware
Cisco Virtual Network Management Center
Data Sheet Cisco Virtual Network Management Center Introduction The dynamic nature of the cloud paradigm introduces new needs for automation, but it also facilitates new types of automation due to the
WHITE PAPER. IT in the Cloud: Using VMware vcloud for Reliable, Flexible, Shared IT Resources
WHITE PAPER IT in the Cloud: Using VMware vcloud for Reliable, Flexible, Shared IT Resources Table of Contents IT in the Cloud: Using VMware vcloud for Reliable, Flexible, Shared IT Resources... 3 Cloud
VMware vsphere 5.0 Evaluation Guide
VMware vsphere 5.0 Evaluation Guide Auto Deploy TECHNICAL WHITE PAPER Table of Contents About This Guide.... 4 System Requirements... 4 Hardware Requirements.... 4 Servers.... 4 Storage.... 4 Networking....
Getting the Most Out of VMware Mirage with Hitachi Unified Storage and Hitachi NAS Platform WHITE PAPER
Getting the Most Out of VMware Mirage with Hitachi Unified Storage and Hitachi NAS Platform WHITE PAPER Getting the Most Out of VMware Mirage with Hitachi Unified Storage and Hitachi NAS Platform The benefits
Oracle SDN Performance Acceleration with Software-Defined Networking
Oracle SDN Performance Acceleration with Software-Defined Networking Oracle SDN, which delivers software-defined networking, boosts application performance and management flexibility by dynamically connecting
Installing and Configuring vcloud Connector
Installing and Configuring vcloud Connector vcloud Connector 2.0.0 This document supports the version of each product listed and supports all subsequent versions until the document is replaced by a new
SoLuTIoN guide. CLoud CoMPuTINg ANd ThE CLoud-rEAdy data CENTEr NETWork
SoLuTIoN guide CLoud CoMPuTINg ANd ThE CLoud-rEAdy data CENTEr NETWork Contents BENEfITS of ThE CLoud-rEAdy data CENTEr NETWork............................3 getting ready......................................................................3
Intro to NSX. Network Virtualization. 2014 VMware Inc. All rights reserved.
Intro to NSX Network Virtualization 2014 VMware Inc. All rights reserved. Agenda Introduction NSX Overview Details: Microsegmentation NSX Operations More Information SDDC/Network Virtualization Security
What s New in VMware vcloud Director 1.5
vcloud Director 1.5 Technical WHITE PAPER Table of Contents Introduction.... 3 Improving Agility in the Cloud.... 4 Fast Provisioning Using Linked Clones... 4 Behind the Scenes.... 5 Cross Datastore Linked
Potecting your business assets in The Cloud, with. Secure Multitency Environment from CloudHPT.
Potecting your business assets in The Cloud, with Secure Multitency Environment from CloudHPT. Whitepaper 1 Introduction Goal of This Document To provide a guide to the security features of CloudHPT. CloudHPT
How To Extend Security Policies To Public Clouds
What You Will Learn Public sector organizations without the budget to build a private cloud can consider public cloud services. The drawback until now has been tenants limited ability to implement their
Virtualized Network Services SDN solution for service providers
Virtualized Network Services SDN solution for service providers Nuage Networks Virtualized Network Services (VNS) is a fresh approach to business networking that seamlessly links your enterprise customers
VMware vshield App Design Guide TECHNICAL WHITE PAPER
ware vshield App Design Guide TECHNICAL WHITE PAPER ware vshield App Design Guide Overview ware vshield App is one of the security products in the ware vshield family that provides protection to applications
(R)Evolution im Software Defined Datacenter Hyper-Converged Infrastructure
(R)Evolution im Software Defined Datacenter Hyper-Converged Infrastructure David Kernahan Senior Systems Engineer VMware Switzerland GmbH 2014 VMware Inc. All rights reserved. Agenda 1 VMware Strategy
Hybrid Cloud for Development and Testing with VMware vcloud Air
Hybrid Cloud for Development and Testing with VMware vcloud Air January 2015 White paper Introduction Organizations struggle to meet the demand for scalable and resilient infrastructure to develop and
VMware Cloud Automation Design and Deploy IaaS Service
DATASHEET VMware Cloud Automation AT A GLANCE The VMware Cloud Automation Design and Deploy IaaS Service expands the power of virtualization and moves IT services away from existing infrastructure delivery
How To Control Vcloud Air From A Microsoft Vcloud 1.1.1 (Vcloud)
SOC 1 Control Objectives/Activities Matrix goes to great lengths to ensure the security and availability of vcloud Air services. In this effort, we have undergone a variety of industry standard audits,
VMware Network Virtualization Design Guide. January 2013
ware Network Virtualization Technical WHITE PAPER January 2013 ware Network Virtualization Table of Contents Intended Audience.... 3 Overview.... 3 Components of the ware Network Virtualization Solution....
Mitigating Information Security Risks of Virtualization Technologies
Mitigating Information Security Risks of Virtualization Technologies Toon-Chwee, Wee VMWare (Hong Kong) 2009 VMware Inc. All rights reserved Agenda Virtualization Overview Key Components of Secure Virtualization
F5 PARTNERSHIP SOLUTION GUIDE. F5 and VMware. Virtualization solutions to tighten security, optimize performance and availability, and unify access
F5 PARTNERSHIP SOLUTION GUIDE F5 and VMware Virtualization solutions to tighten security, optimize performance and availability, and unify access 1 W H AT 'S INS I DE Data Center Virtualization 3 Enterprise
Secure Segmentation of Tier 1 Applications in the DMZ
Secure Segmentation of Tier 1 Applications in the DMZ VMware vshield App 5.0 TECHNICAL MARKETING DOCUMENTATION V 1.0/ UPDATED JULY 2012 Table of Contents Introduction... 4 Virtualized DMZ Design... 4 Fully
Increase Simplicity and Improve Reliability with VPLS on the MX Series Routers
SOLUTION BRIEF Enterprise Data Center Interconnectivity Increase Simplicity and Improve Reliability with VPLS on the Routers Challenge As enterprises improve business continuity by enabling resource allocation
Meeting the Challenges of Virtualization Security
Meeting the Challenges of Virtualization Security Coordinate Security. Server Defense for Virtual Machines A Trend Micro White Paper August 2009 I. INTRODUCTION Virtualization enables your organization
VIRTUALIZED SERVICES PLATFORM Software Defined Networking for enterprises and service providers
VIRTUALIZED SERVICES PLATFORM Software Defined Networking for enterprises and service providers Why it s unique The Nuage Networks VSP is the only enterprise and service provider-grade SDN platform that: