Home > Blogs > The Network Virtualization Blog

Cross vCenter Networking & Security with VMware NSX

NSX 6.2 was released on August 20, 2015. One of the key features in NSX 6.2 is Cross vCenter Networking and Security. This new capability scales NSX vSphere across vCenter boundaries. Now, one can span logical networking and security constructs across vCenter boundaries irrespective of whether the vCenters are in adjacent racks or across datacenters (up to 150ms apart). This enables us to solve a variety of use cases including:

  • Capacity pooling across vCenters
  • Simplifying data center migrations
  • Cross vCenter and long distance vMotion
  • Disaster recovery

With Cross vCenter Networking & Security one can extend logical switches (VXLAN networks) across vCenter boundaries enabling a layer 2 segment to span across VCs even when the underlying network is a pure IP / L3 network. However, the big innovation here is that with NSX we can also extend distributed routing and distributed firewalling seamlessly across VCs to provide a comprehensive solution as seen in the figure below. Continue reading

VMware NSX – It’s About the Platform Ecosystem

The basis of competition has shifted from individual products and technologies to platforms,

Best-In-Class Partners

Best-In-Class Partners

but with everyone aspiring to be a platform the bar is set high. A platform must be a value-creation entity, underpinned by a robust architecture that includes a set of well-integrated software artifacts and programming interfaces to enable reuse and extensibility by third parties. Platforms must support an ecosystem that can function in a unified way, foster interactions among its members and orchestrate its network of partners. And finally, platforms must adhere to the network effect theory which asserts that the value of a platform to a user increases as more users subscribe to it, in effect, creating a positive feedback loop.

The VMware NSX network virtualization platform meets this criteria resoundingly. NSX is specifically designed to provide a foundation for a high-value, differentiated ecosystem of partners that includes some of the networking industry’s most significant players.  The NSX platform leverages multi-layered network abstractions, an extensible and distributed service framework with multiple entry points, and transparent insertion and orchestration of partner services. What distinguishes NSX from other platforms is its inherent security constructs which partner solutions inherit, and a context sharing and synchronization capability that allows partners to fine-tune the delivery of their services on the NSX platform inside the data center in a closed feedback loop. Continue reading

VMware NSX 6.2: Enterprise Automation, Security and Application Continuity

VMworld 2015 in San Francisco marks the two-year anniversary of the launch of VMware VMware NSX LogoNSX. Since we originally launched, we have taken the promise of NSX and turned it into a platform that customers around the world are using to transform the operations of their data center networks and security infrastructure – in fact, more than 700 customers have chosen NSX. We also have more than 100 production deployments, and more than 65 customers have invested more than $1M of their IT budgets in NSX. We’ve trained more than 3,500 people on NSX, and we have more than 20 interoperable partner solutions generally available and shipping today.

Perhaps what’s most exciting is that at this year’s show, we will have more than two dozen NSX customers represented in various forums throughout the event. Organizations such as Baystate Health, City of Avondale, ClearDATA, Columbia Sportswear, DirecTV, FireHost, George Washington University, Heartland Payment Systems, IBM, IlliniCloud, NovaMedia, Rent-A-Center, Telstra, Tribune Media, United Health Group, University of New Mexico…the list goes on. Continue reading

VMworld 2015 Networking and Security Sessions – Part II

Earlier this week we outlined #VMworld sessions on networking and security that are appropriate for attendees who are just starting down the path to virtualizing their networks with NSX. You can read that blog here in Part I.

The beauty of having a solution that has been shipping for nearly two years to more than 700 customers is that we have tons of advanced topics that we can now cover as part of the show program. So take a look at the list of sessions below, and then check out the schedule builder on VMworld.com to organize your week. We’re looking forward to seeing you at VMworld US 2015.

vmworld2015-logo-black

Sunday, August 30

Time

Session ID Session Title

2:00 PM – 2:30 PM

NET6614-QT

Implementation of NSX: Decisions and Outcomes

3:00 PM – 3:30 PM

NET6615-QT

Extending the Power of Software Defined Networking to the Retail Branch

4:00 PM – 4:30 PM

NET6616-QT

Creating the SDDC for Healthcare

 Monday, August 31

Time

Session ID Session Title

9:00 AM – 10:30 AM

General Session

Keynote

10:30 AM – 12:30 PM

SPL-SDC-1624

Hands on Labs:

VMware NSX and the vRealize Suite

12:30 PM – 1:30 PM

NET6053

The Case for Network Virtualization:

Customer Case Study

1:30 PM – 2:30 PM

NET5187

What’s New in Operations Management for Networking with NSX and others

2:00 PM – 3:00 PM

NET4989

The Future of Network Virtualization with

VMware NSX

2:00 PM – 3:00 PM

NET5529

The Practical Path to NSX

3:00 PM – 4:00 PM

NET4933

vSphere Distributed Switch Best Practices for NSX

3:30 PM – 4:30 PM

NET5082

How to Deploy VMware NSX with

Cisco Nexus and UCS

4:30 PM – 5:30 PM

NET4941

VMware NSX – Deep Dive

5:00 PM – 6:00 PM

SEC5071

NSX – AirWatch: Micro-segmentation for

Enterprise and Mobile Apps

Tuesday, September 1

Time

Session ID Session Title

9:00 AM – 10:30 AM

General Session

Keynote

11:00 AM – 12:00 PM

NET5488

Troubleshooting Methodology for VMware NSX

11:30 AM – 12:30 PM

NET6639-S

Spotlight Session: The Next Horizon for Cloud Networking and Security

1:00 PM – 2:00 PM

SEC6640-S

Spotlight Session: The Software Defined Data Center: Security for the new battlefield

1:00 PM – 2:00 PM

NET6605-GD

NSX & Physical Network Integration

2:30 PM – 3:30 PM

NET5469

VMware on VMware – How VMware IT Uses

NSX for Micro-Segmentation, &

Large Scale Private Cloud

4:00 PM – 5:00 PM

NET5212

NSX Performance

5:00 PM – 6:00 PM

NET5213

Operational Best Practices for VMware NSX

Wednesday, September 2

Time

Session ID Session Title

8:00 AM – 9:00 AM

SEC5170

Micro-Segmented Applications and Services: Enabling The Future of Security

10:00 AM – 11:00 AM

NET5989

Multi-vCenter Solutions with VMware NSX

10:00 AM – 11:30 AM

ELW-SDC-1625

Expert led Lab: VMware NSX Advanced

11:30 AM – 1:00 PM

Solutions Exchange

Partners to visit: Arista, Check Point, Dell, F5, Intel Security, Palo Alto Networks, Trend Micro

1:00 PM – 2:00 PM

NET4995

Integrating Physical Workloads and Infrastructure with a NSX Virtual Network

1:00 PM – 2:00 PM

NET5770

Reference Design for SDDC with NSX & vSphere – Part 1

2:00 PM – 3:00 PM

NET5252

NSX Management Pack for vRealize Operations Manager

2:30 PM – 3:30 PM

NET5792

Reference Design for SDDC with NSX & vSphere – Part 2

*note – NET5770 is a pre-requisite for this session

2:30 PM – 3:30 PM

NET5560

Bridging Virtual and Physical in NSX with OVSB Standard Based Hardware VTEP Integration

3:30 PM – 4:30 PM

NET5395

Technical Deep Dive into Desktop-As-A-Service (DAAS) Deployments with NSX

 Thursday, September 3

Time

Session ID Session Title

9:00 AM – 10:00 AM

General Session

Closing Keynote

10:30 AM – 11:30 AM

NET5826

NSX for vSphere Logical Routing Deep Dive

10:30 AM – 11:30 AM

SEC5589

NSX Distributed Firewall Deep Dive

12:00 PM – 1:00 PM

NET5612

NSX for vSphere Logical Load Balancing Deep Dive

1:30 PM – 2:30 PM

NET4907

Turning Disaster Recovery into a Reality with NSX

 

VMworld 2015 Networking and Security Sessions – Part I

vmworld2015-logo-black

At VMworld 2014 we focused on the basics of network virtualization. What VMware NSX is, what it does, and how network virtualization would change datacenter networking.  We shared the many benefits of virtualizing networks and you caught on.

Just one year later, network virtualization is going mainstream. So at VMworld 2015, have nearly 100 sessions that are guaranteed to fit your needs, whether you’re an #NSXninja or a network virtualization newbie.

Thinking about virtualizing the network at your company or organization? Want to see how others have done it? We’ve got 20 VMware NSX customers ready to share their learnings and insights and talk about how they’ve virtualized their networks.

Curious about how VMware is collaborating with industry leaders and emerging startups to solve customer problems around security, operations, and integration between the physical and virtual worlds? We’ve got sessions on those topics, too. Our partner ecosystem is growing and our partners will share the benefits of their integrated offerings.

But that’s not all! We will be highlighting proven VMware NSX use cases that will teach you all you need to know about a whole range of topics—from micro-segmentation to IT automation, multi-tenancy, application continuity, and security for VDIs.

So take a look at the list of sessions below, and then check out the schedule builder on VMworld.com to organize your week.

Also, if you’re looking for more advanced sessions, check out Part II of this series here.

We’re looking forward to seeing you at VMworld US 2015.

Sunday, August 30

Time

Session ID

Session Title

12:00 PM – 1:30 PM

ELW-SDC-1603

Expert Led Workshop: VMware NSX Introduction

2:00 PM – 2:30 PM

NET6614-QT

Implementation of NSX: Decisions and Outcomes

3:00 PM – 3:30 PM

NET6615-QT

Extending the Power of Software Defined Networking to the Retail Branch

4:00 PM – 4:30 PM

NET6616-QT

Creating the SDDC for Healthcare

 Monday, August 31

Time

Session ID

Session Title

8:00 AM – 9:00 AM

NET4860

VMware NSX Business Case: A Guided Journey of High-Value IT Outcomes for the SDDC

9:00 AM – 10:30 AM

General Session: Keynote

12:30 PM – 1:30 PM

NET6053

The Case for Network Virtualization: Customer Case Study

2:00 PM – 3:00 PM

NET5529

The Practical Path to NSX

3:30 PM – 4:30 PM

NET5082

How to Deploy VMware NSX with Cisco Nexus and UCS

4:30 PM – 5:30 PM

NET4941

VMware NSX – Deep Dive

 Tuesday, September 1

Time

Session ID

Session Title

9:00 AM – 10:30 AM

General Session

Keynote

11:30 AM – 12:30 PM

NET6639-S

Spotlight Session: The Next Horizon for Cloud Networking and Security

11:30 AM – 12:30 PM

OPT4953

Operationalizing VMware NSX: Practical Strategies and Lessons from Real-World Implementations

1:00 PM – 2:00 PM

SEC6640-S

Spotlight Session: The Software Defined Data Center: Security for the new battlefield

1:00 PM – 2:00 PM

NET6605-GD

NSX & Physical Network Integration

2:30 PM – 3:30 PM

STO 6328

What’s New in Disaster Recovery with VMware Site Recovery Manager and VMware NSX

3:30 PM – 5:00 PM

Solutions Exchange

Partners to visit: Arista, Check Point, Dell, F5, Intel Security, Palo Alto Networks, Trend Micro

5:00 PM – 6:00 PM

NET5213

Operational Best Practices for VMware NSX

Wednesday, September 2

Time

Session ID

Session Title

8:30 AM – 9:30 AM

CTO6632

VMware R&D CTO Panel

10:00 AM – 1:00 PM

SPL-SDC-1603

Hands On Labs: VMware NSX Introduction

1:00 PM – 2:00 PM

NET6056

VMware NSX: A User’s Experience

2:00 PM – 4:00 PM

Solutions Exchange or Hang Space

4:00 PM – 5:00 PM

EUC5067

Your Desktops Secured: What Can NSX do for you?

Thursday, September 3

Time

Session ID

Session Title

9:00 AM – 10:00 AM

General Session

Closing Keynote

10:30 AM – 11:30 AM

NET6610-GD

Operationalizing NSX

1:30 PM – 2:30 PM

MGT5360

Introducing Application Self-service with Networking and Security using vRealize Automation and NSX

 

 

 

3 Months on the Road: What I heard from VMware NSX Customers

After three consecutive months attending 75 customer meetings throughout the U.S., Europe and Asia, I came away Around-The-Worldwith plenty of frequent flyer miles and, more importantly, tons of insight to share with you.

What I learned from customers is that VMware NSX is truly a game-changer. And as we exit the second quarter, the list of customers excited about NSX is only getting bigger. We recently announced that we have grown from more than 150 VMware NSX customers a year ago, to more than 700 customers today. These customers are setting the stage for others to follow. They are providing best practices that we are feeding back to others, and giving us valuable insight into challenges they encounter along the way.

So as I promised, I’ve pulled together highlights from these meetings and condensed them into three key themes that emerged.  For you IT pros out there reading this, let me know if any of this sounds familiar. Continue reading

VMware and Docker Deliver Greater Speeds through the Right Controls

This post was co-authored by Guido Appenzeller, CTSO of Networking and Security (@appenz), and Scott Lowe, Engineering DockerArchitect, Networking and Security Business Unit (@scott_lowe)

In today’s business environment, companies are being asked to go faster than ever before: faster time to market, faster response to customers, faster reactions to market shifts. Having a good idea isn’t enough; companies not only need to have a good idea, but they need get it to market fast, and quickly iterate on improvements to that idea. Speed is a competitive advantage.

The phenomenal success of the open source Docker project is a reflection of the pressure on companies to go faster. Companies across all industries have recognized that successful development teams can be a competitive differentiator. However, developers needed a way to simplify and accelerate the development and deployment of applications and code, and found Docker was one way to help accomplish that. Docker has won a place in the hearts and minds of many developers for its ability to help simplify the development and deployment of many different types of applications. Continue reading

VCDX-NV Interview: Nemtallah Daher Discusses VMware NSX Certification

Nemtallah Daher is Senior Network Delivery Consultant at the consulting firm AdvizeX Technology. Recently he took some time out of his day to talk with us about why, as a networking guy, he thinks learning about network virtualization is critical to further one’s career. 

***

I’ve been at AdvizeX for about a year now. I do Cisco, HP, data center stuff, and all sorts of general networking things: routing, switching, data center, UCS. That kind of stuff. Before coming to AdvizeX, I was a senior network specialist at Cleveland State University for about 20 years.

I started at Cleveland State in 1988 as a systems programmer, working on IBM mainframe doing CICS, COBOL and assembler. About 2 years after I started at Cleveland State, networking was becoming prevalent, and the project I was working on was coming to an end, so they asked me if I would help start a networking group. So from a small lab here, a building here, a floor there, I built the network at Cleveland State. We applied for a grant to get some hardware, applied for an IP address, domain name, all these things. There was nothing at the time, so we did everything. We incorporated wireless about 10 years in. Over time it became a ubiquitous, campus-wide network. So that’s my brief history. Continue reading

On a Journey with VMware NSX Customers

Playing a part in the transformation of the networking industry has been one of the most rewarding opportunities of Unstoppable Momentummy career. On top of that I get the privilege of leading a team that continues to amaze me in their ability to execute. You’ve heard us talk about the more than 400 VMware NSX customers we have to date, 70+ of which are in production. You can safely assume that number is even higher today. Even more impressive is the fact that customers are making significant financial commitments to the architectural changes they are embarking on. In fact, as of last quarter we counted more than 50 organizations that have invested more than $1 million in NSX.

Now, it’s never easy for IT organizations to talk publicly about technologies they’ve purchased or deployed. This is all the more reason why I’m very grateful that VMware NSX customers have made time to speak publicly about the value they are deriving from VMware NSX to the financial community, at events such as RSA Conference, Palo Alto Networks Ignite and OpenStack Summit, and of course, to the press. No other vendor can claim more customers that are publicly discussing their investment, adoption or deployment of their SDN solution than VMware. Continue reading

Using VMware NSX, Log Insight, and vRealize Orchestator to Improve Security

This post was written by Hadar Freehling, Security & Compliance Systems Engineer Specialist at VMware. The post originally appeared here on the dfudsecurity blog

***

There is a lot of power in having security controls in software.  This is what I tell my customer, not just because I work for VMware. Why is that? The reason I find it so powerful is that I can now automate a lot of the security actions that use to be very manual. No more opening tickets to get a SPAN setup on the switch. No more waiting for a firewall change window to lock down a port. Not only that, I have visibility into the VM, like what apps are running and who started them, and what’s on the wire. I can protect different assets with different policies, and these polices can be dynamic.

With the help of my good friend John Dias (vRealize Orchestrator master), we created the follow video to show some of the potential of having everything in software.

Here is the scenario of the workflow.  You are a security person and want to stop all server admins and users from launching a putty session once they have RDPed into a server since they should only be doing this from approved jump boxes or desktops. Basically, I want to stop all intra-data center putty ssh sessions. I am actually looking for putty, the application, not just ssh. This could be any application or port, but I wanted to target a specific application for this demo. Continue reading