vcloud Networking and Security Sales and Partner Use Only What is the VMware vcloud Networking and Security Product?



Similar documents
VMware vcloud Networking and Security Overview

VMware vcloud Networking and Security

Enterprise Desktop Solutions: VMware View 4.5

VMware vsphere 4.1. Pricing, Packaging and Licensing Overview. E f f e c t i v e A u g u s t 1, W H I T E P A P E R

VMware vshield App Design Guide TECHNICAL WHITE PAPER

VMware Solutions for Small and Midsize Business

VMware vcloud Air. Enterprise IT Hybrid Data Center TECHNICAL MARKETING DOCUMENTATION

VMware vsphere 4. Pricing, Packaging and Licensing Overview W H I T E P A P E R

VMware vsphere with Operations Management and VMware vsphere

Virtualization Essentials

Mobile Secure Desktop Maximum Scalability, Security and Availability for View with F5 Networks HOW-TO GUIDE

VMware vcloud Air Networking Guide

Expert Reference Series of White Papers. vcloud Director 5.1 Networking Concepts

How To Protect Your Virtual Infrastructure From Attack From A Cyber Threat

VMware EVO SDDC. General. Q. Is VMware selling and supporting hardware for EVO SDDC?

AlwaysOn Desktop Implementation with Pivot3 HOW-TO GUIDE

Keith Luck, CISSP, CCSK Security & Compliance Specialist, VMware, Inc. kluck@vmware.com

vcloud Air - Virtual Private Cloud OnDemand Networking Guide

VMware vsphere with Operations Management and VMware vsphere

On-Demand Call Center with VMware View

WHITE PAPER. VMware vsphere 4 Pricing, Packaging and Licensing Overview

VXLAN: Scaling Data Center Capacity. White Paper

Network Virtualization Solutions

VXLAN Performance Evaluation on VMware vsphere 5.1

VMware vcloud Powered Services

VMware Horizon 7. End-User Computing Today. Horizon 7: Delivering Desktops and Applications as a Service

VMware vcloud Air Security TECHNICAL WHITE PAPER

VMware Workspace Portal Reference Architecture

Security in the Software Defined Data Center

What s New in VMware Site Recovery Manager 6.1

What s New with VMware vcloud Director 5.1

VMware Cloud Automation Design and Deploy IaaS Service

Cisco Nexus 1000V Switch for Microsoft Hyper-V

Introduction to VMware EVO: RAIL. White Paper

VMware Virtualization and Cloud Management Solutions. A Modern Approach to IT Management

SINGLE-TOUCH ORCHESTRATION FOR PROVISIONING, END-TO-END VISIBILITY AND MORE CONTROL IN THE DATA CENTER

Why Choose VMware vsphere for Desktop Virtualization? WHITE PAPER

vcloud Suite Licensing

White Paper. Juniper Networks. Enabling Businesses to Deploy Virtualized Data Center Environments. Copyright 2013, Juniper Networks, Inc.

Virtualization, SDN and NFV

What s New in VMware vsphere 5.5 Networking

A Guide to Hybrid Cloud for Government Agencies An inside-out approach for extending your data center to the cloud

Helping Customers Move Workloads into the Cloud. A Guide for Providers of vcloud Powered Services

Microsegmentation Using NSX Distributed Firewall: Getting Started

SOFTWARE DEFINED NETWORKING

Transform Your Business and Protect Your Cisco Nexus Investment While Adopting Cisco Application Centric Infrastructure

Visibility into the Cloud and Virtualized Data Center // White Paper

VMware Hybrid Cloud. Accelerate Your Time to Value

Securing Virtual Applications and Servers

Why Software Defined Networking (SDN)? Boyan Sotirov

vcloud Suite Architecture Overview and Use Cases

Cisco Prime Network Services Controller. Sonali Kalje Sr. Product Manager Cloud and Virtualization, Cisco Systems

Configuration Maximums

Zenoss for Cisco ACI: Application-Centric Operations

Top 10 Reasons to Virtualize VMware Zimbra Collaboration Server with VMware vsphere. white PAPER

vshield Administration Guide

Installing and Configuring vcloud Connector

White Paper. SDN 101: An Introduction to Software Defined Networking. citrix.com

Simplifying. Single view, single tool virtual machine mobility management in an application fluent data center network

VIRTUALIZED SERVICES PLATFORM Software Defined Networking for enterprises and service providers

Leveraging NIC Technology to Improve Network Performance in VMware vsphere

vcloud Automation Center Support Matrix vcloud Automation Center 5.1

Securing the Virtualized Data Center With Next-Generation Firewalls

VM-Series for VMware. PALO ALTO NETWORKS: VM-Series for VMware

Cisco ASA 1000V Cloud Firewall

Optimizing Virtualization Management with Automated Application Discovery

WHITE PAPER. IT in the Cloud: Using VMware vcloud for Reliable, Flexible, Shared IT Resources

Public Cloud Service Definition

How Network Virtualization can improve your Data Center Security

VMware vcloud Director for Service Providers

IT Infrastructure Services. White Paper. Utilizing Software Defined Network to Ensure Agility in IT Service Delivery

Unlock the full potential of data centre virtualisation with micro-segmentation. Making software-defined security (SDS) work for your data centre

Esri ArcGIS Server 10 for VMware Infrastructure

Cisco Virtual Network Management Center

VMware vsphere 5.0 Evaluation Guide

How to Create a Simple Content Management Solution with Joomla! in a vcloud Environment. A VMware Cloud Evaluation Reference Document

What s New in VMware vcenter 5.0

Management of VMware ESXi. on HP ProLiant Servers

Your Guide to VMware Lab Manager Replacement

Software Defined Environments

How to Use a LAMP Stack on vcloud for Optimal PHP Application Performance. A VMware Cloud Evaluation Reference Document

(R)Evolution im Software Defined Datacenter Hyper-Converged Infrastructure

VMware Trademark Guide

What s New in VMware vsphere 4.1 VMware vcenter. VMware vsphere 4.1

Managing the Business of IT in the Cloud Era. VMware vrealize Business

Implementing Cloud Solutions Within Your Existing IT Environment. White paper

What s New in VMware vsphere 5.0 Networking TECHNICAL MARKETING DOCUMENTATION

The Technical Differential: Why Service Providers Choose VMware for Cloud-Hosted Desktops as a Service

VMware Network Virtualization Design Guide. January 2013

Monitoring Hybrid Cloud Applications in VMware vcloud Air

HAWAII TECH TALK SDN. Paul Deakin Field Systems Engineer

A Guide to Disaster Recovery in the Cloud. Simple, Affordable Protection for Your Applications and Data

Reducing the Cost and Complexity of Business Continuity and Disaster Recovery for

vcloud Automation Center Support Matrix vcloud Automation Center 5.2

vsphere Networking ESXi 5.0 vcenter Server 5.0 EN

REMOVING THE BARRIERS FOR DATA CENTRE AUTOMATION

Transcription:

CHEAT SHEET INTERNAL USE ONLY VMware vcloud Networking and Security Sales and Partner Use Only What is the VMware vcloud Networking and Security Product? VMware has combined its security and advanced networking capabilities into a single product: VMware vcloud Networking and Security. vcloud Networking and Security includes the products originally known as VMware vshield App and vshield Edge, and the new networking technology called VXLAN. Note that vcloud Networking and Security does not include VMware vshield Endpoint or the Virtual Distributed Switch (VDS). As of vsphere 5.1, Endpoint is now included in vsphere, while the VDS remains in vsphere Enterprise Plus, as before. What is the vcloud Networking and Security Elevator Pitch? vcloud Networking and Security is the leading software-defined networking (SDN) and security solution that enhances operational efficiency, unlocks agility and enables extensibility to rapidly respond to business needs. It provides a broad range of services in a single solution, including virtual firewall, VPN, load balancing and VXLAN extended networks. Management integration with VMware vcenter and vcloud Director reduces the cost and complexity of datacenter operations and unlocks the operational efficiency and agility of private cloud computing. vcloud Networking and Security Product Family There are two editions of the vcloud Networking and Security product. vcloud Networking and Security Standard includes the following features: VXLAN, NAT, DHCP, Edge virtual Firewall, VPN and vcloud Ecosystem Framework for third-party integration. vcloud Networking and Security Advanced is a superset of the standard edition. Extra features include: Load Balancing, Edge high Available Virtual Firewall, Data Security, and industry certifications. vcloud Networking and Security is available either stand-alone, or as part of the vcloud Suites. The vcloud Networking and Security editions are licensed on a per virtual machine basis when sold stand-alone, and on a per-processor basis when sold as part of a VMware vcloud Suite. vcloud Networking and Security vcloud Networking and Security Standard vcloud Networking and Security Advanced Pricing and Licensing Price per VM $150 $250 List Price (license only) $3,750 $6,250 Included Licenses 25 VMs 25 VMs Products and Features Firewall* Virtual Private Network (VPN) VXLAN vcloud Ecosystem Framework Network Address Translation (NAT) Dynamic Host Configuration Protocol High Availabiity (HA) Load Balancing Sensitive Data Discovery Endpoint (Bundled in vsphere 5.1) * Includes Edge and Application firewall CHEAT SHEET / 1

Relationship to vcloud Suite Packaging and Pricing The vcloud Networking and Security Standard edition is included in vcloud Standard Suite, while vcloud Networking and Security Advanced is in the vcloud Advanced and Enterprise suites. The vcloud Suites are licensed on a per-processor basis. What is VXLAN? As IT organizations to move to a converged infrastructure and service-oriented model, many are finding that current datacenter networking architectures are a limiting factor. VLAN-based switching models have a long history, but suffer from the following challenges in the datacenter: Inflexibility: VLAN and switching boundaries are not flexible nor easily extensible. As requirements grow or shrink, compute and storage resources need to be allocated without major operational overhead. Fault Tolerance: High-availability technologies such as VMware vsphere Fault Tolerance work best with flat Layer 2 networks, but creating and managing this architecture can be operationally difficult, especially at scale. VLAN and IP Address Management: IP address maintenance and VLAN limits become challenges as the datacenter scales, particularly when strong isolation is required or in service provider environments. VXLAN can solve these challenges. VXLAN is a method for floating virtual domains on top of a common networking and virtualization infrastructure. By leveraging industry-standard Ethernet technology, large numbers of virtual domains can be created above an existing network, with complete isolation from each other and the underlying network. VXLAN offers the following benefits: Flexibility: Datacenter server and storage utilization is maximized through the support of stretched clusters that cross switching and pod boundaries. Streamlined Network Operations: VXLAN runs on standard Layer 3 IP networks, eliminating the need to build and manage a large Layer 2 underlying transport layer. Investment Protection: VXLAN runs over standard switching hardware, with no need for software upgrades or special code versions on the switches. VXLAN should be targeted at large enterprises and service provides. It is implemented using a combination of new software integrated in vsphere 5.1, and requires the VDS in vsphere Enterprise Plus. Primary Sales Motions vcloud Networking and Security can be sold as a standalone product or as a component of a vcloud Suite. In general, try to sell as part of a suite, using the following justifications: 1. The vcloud suites enable both IT operational efficiency and private cloud computing in a single package. 2. Suite pricing is per-processor. This is easier for the customer to deal with, and also provides increased value and predictable costs the greater their consolidation ratio. 3. The suites provide a lower-cost method to purchase the products in the suite as compared to buying them individually. As a rule, fall back to selling stand-alone vcloud Networking and Security only if you are unable to close the suite sale. Example Sales Scenarios and Selling Tips Sales Scenario Key Buyers Selling Tips Information Security raising concerns about security or audit/compliance of the VMware infrastructure Public Cloud Threat IT group concerned about loss of relevance of enterprise data center: Execs and lines of business are debating the benefits of moving to public cloud Enterprise customer interested in building a secure private cloud quickly IT Operations Info Sec CIO, VP of IT Operations, CFO CIO, VP of IT Operations Carve out $$ from compliance and security budget: vcloud Networking and Security provides workload isolation, visibility, and insertion of third-party security products such as IPS. vcloud Networking and Security is a better choice than traditional security solutions because of its tight integration with vcenter and vcd management IT Infrastructure team can justify the enterprise datacenter based on security and compliance that may not be available in public cloud offerings. vcloud Networking and Security enables consistent security and compliance controls Focus on vcloud Suite provides vcd integration and third- party integration with security and scalable LANs for features such as vmotion and vsphere Fault Tolerance CHEAT SHEET / 2

Sales Scenario Key Buyers Selling Tips Enterprise customer interested in protecting business critical applications deployed on vsphere Enterprise customer interested in protecting View deployments on vsphere Enterprise customer interested in scalable Layer 2 datacenter networking within the datacenter or metro cluster CIO, VP of Infrastructure CIO, VP of IT Operations VP of Infrastructure VP/Director of Networking CIO vcloud Networking and Security provides a virtualization aware firewall to protect business critical applications. Security policies can be applied at a container or VM level vcloud Networking and Security firewall can protect VMware View desktops from internal and external threats, as well as limit access to internal resources by remote View users (e.g. outsource partners) Discuss VXLAN as an emerging industry standard to build such constructs. Emphasize ease of administration through vcd and vcenter integration, as well as Cisco support for validation How to Qualify an Opportunity Customer Challenge Sales Triggers Stakeholders Qualify In Qualify Out High network and security hardware and operations costs due to VLAN complexity, purpose-built appliances and fragmented management interfaces High operational cost Manual processes Network boundaries (e.g. between data center pods) cause inefficient allocation of resources Infrastructure team Virtual infrastructure admins Target companies that have more than 20% virtualized resources Datacenter networking under the control of DC infrastructure team, not Networking team Requires deep packet inspection firewall Inability to quickly respond to dynamic business needs due to constraints of networking and security topologies Spending a lot of time and money provisioning network and security infrastructure Planning scale out of the datacenter to accommodate cloud-bursting or cyclical demand VI admins Companies considering private clouds to improve agility Companies building trusted private clouds, e.g. banking, online trading, healthcare providers Companies unwilling to modify existing networking and security architecture Organizations moving to public clouds to improve agility and flexibility Lack of choice and flexibility, leading to vendor lock-in and degraded levels of service and performance Customer planning a costly rip-and-replace of NW and security infrastructure Customer wants to maintain physical and virtual infrastructure parity with preferred security or NW partner Network and Security Team Virtual infrastructure team Companies considering private clouds with applications that may be accessed by partners or customers Companies considering building hybrid clouds * Companies unwilling to modify existing architecture CHEAT SHEET / 3

vcloud Networking and Security Benefits Lowers operational cost Optimizes utilization of resources Delivers On-demand adaptive networks without physical network reconfiguration Simplifies provisioning by reducing VLAN related operations and management overhead Improves agility and flexibility Ability to deploy and move virtual workloads without physical network re-configuration Ability to scale applications across clusters, pods and metro-clusters Ability to easily add capacity to adapt to business and workload changes and unexpected demands Provides extensibility and choice Flexibility to include 3rd party hardware and software services Easily take advantage of latest innovations in technology ecosystem Leverage existing investments Competitive Landscape Overview Feature VMware vcloud Networking and Security advanced Microsoft HV3 Citrix Xenserver Cisco N1k w/vsg Switch Distributed Switch X Network Service Insertion X VXLAN X X Firewall X X VPN X X X NAT X X X DHCP X X X Active/Standby HA X X X Traffic Load Balancing X X X Workload Isolation and Segmentation X X X CHEAT SHEET / 4

Competitive Positioning for Network and Security Virtualization Products Competitor Strengths Weaknesses VMware Differentiation Status Quo: Traditional Hardware or Software-based Firewalls Cisco, Checkpoint, Juniper, Fortinet Standard technology in use: Security teams mandate installation of firewalls (typically hardware appliances), connected to virtual infrastructure by VLANs Expensive, dedicated hardware/ software solution High Operational Costs: Expensive and slow to configure to respond to dynamic virtual infrastructure Poor security if the reality is that the firewalls cannot be applied where they are really needed in the virtual infrastructure ( Doesn t matter how good it is if you can t operationalize it! ) vcloud Networking and Security delivers operationally efficient security for the virtual datacenter or private cloud. It will be much easier to deploy and maintain. It will also result in more effective security because it can easily be configured where security is needed. What used to require physical VLANs and firewalls to isolate critical applications and data, now only requires logical groupings and virtual firewall rules with vcloud Networking and Security. Not only are these security rules simpler to implement, they are easier to manage and do not required dedicated physical appliances. And the vcloud Networking and Security support for security ecosystem partners means that preferred security vendors can be supported where needed Virtual Security Firewalls/Gateways Juniper Virtual Gateway (vgw) (Former Altor virtual firewall) Juniper is a trusted brand in security Juniper vgw is not feature equivalent to their SRX Firewall appliances Juniper vgw cannot be managed by the security manager which manages the SRX Firewall appliances (so customer will not have consistent firewall management) VMware networking and security delivers robust gateway security services seamlessly integrated with vcenter server and vcloud Director. vcloud Ecosystem Framework for third-party security and networking insertion Expensive Cisco Virtual Services Gateway (VSG) Cisco is the trusted brand in networking N1Kv and VSG require a separate management console (VNMC), vcenter, and CLI configurations in order to operate. VSG policy model is unique and not user friendly VMware networking and security delivers robust gateway security services seamlessly integrated with vcenter server and vcloud Director vcloud Ecosystem Framework for third- party security and networking insertion Cisco ASA 1000v (shipping 2H2012) Cisco is the trusted brand in networking Nexus 1000V virtual switch and ASA 1000v require a separate management console (VNMC), vcenter, and CLI configurations in order to operate Enterprise security customers manage ASA with Cisco Security Manager (CSM). CSM does not support ASA 1000v VMware networking and security delivers robust gateway security services seamlessly integrated with vcenter server and vcloud Director. vcloud Ecosystem Framework for third- party security and networking insertion CHEAT SHEET / 5

Comparison of Network Virtualization Protocols Competitor Backers Strengths Weaknesses VXLAN VMware, Cisco, Citrix, Red Hat, Arista, Brcoade, Broadcom, Dell, Emulex, Intel Supported by Cisco Supported by many hypervisor payers Dependency on multicast unattractive to some customers (but objection can be overcome most of the time) Ability to load balance on standard protocol headers due to use of UDP Plans to support gateway in hardware by major vendors for cloud scale adoption NVGRE (aka Microsoft Network Virtualization) Microsoft, HP, Dell, Intel, Arista, Emulex Supported by major server players primarily due to Microsoft relationship No Cisco support Totally unproven Microsoft has terrible track record for driving networking solutions (e.g. Domain Isolation) VMware, Inc. 3401 Hillview Avenue Palo Alto CA 94304 USA Tel 877-486-9273 Fax 650-427-5001 www.vmware.com Copyright 2012 VMware, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property laws. VMware products are covered by one or more patents listed at http://www.vmware.com/go/patents. VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. Item No: VMW-CHS-vCLOUD-NETWORKING-SECURITY-USLET-105 08/12

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information