Home > Blogs > The Network Virtualization Blog > Category Archives: VMware NSX

Category Archives: VMware NSX

Cross vCenter Networking & Security with VMware NSX

NSX 6.2 was released on August 20, 2015. One of the key features in NSX 6.2 is Cross vCenter Networking and Security. This new capability scales NSX vSphere across vCenter boundaries. Now, one can span logical networking and security constructs across vCenter boundaries irrespective of whether the vCenters are in adjacent racks or across datacenters (up to 150ms apart). This enables us to solve a variety of use cases including:

  • Capacity pooling across vCenters
  • Simplifying data center migrations
  • Cross vCenter and long distance vMotion
  • Disaster recovery

With Cross vCenter Networking & Security one can extend logical switches (VXLAN networks) across vCenter boundaries enabling a layer 2 segment to span across VCs even when the underlying network is a pure IP / L3 network. However, the big innovation here is that with NSX we can also extend distributed routing and distributed firewalling seamlessly across VCs to provide a comprehensive solution as seen in the figure below. Continue reading

VMware NSX – It’s About the Platform Ecosystem

The basis of competition has shifted from individual products and technologies to platforms,

Best-In-Class Partners

Best-In-Class Partners

but with everyone aspiring to be a platform the bar is set high. A platform must be a value-creation entity, underpinned by a robust architecture that includes a set of well-integrated software artifacts and programming interfaces to enable reuse and extensibility by third parties. Platforms must support an ecosystem that can function in a unified way, foster interactions among its members and orchestrate its network of partners. And finally, platforms must adhere to the network effect theory which asserts that the value of a platform to a user increases as more users subscribe to it, in effect, creating a positive feedback loop.

The VMware NSX network virtualization platform meets this criteria resoundingly. NSX is specifically designed to provide a foundation for a high-value, differentiated ecosystem of partners that includes some of the networking industry’s most significant players.  The NSX platform leverages multi-layered network abstractions, an extensible and distributed service framework with multiple entry points, and transparent insertion and orchestration of partner services. What distinguishes NSX from other platforms is its inherent security constructs which partner solutions inherit, and a context sharing and synchronization capability that allows partners to fine-tune the delivery of their services on the NSX platform inside the data center in a closed feedback loop. Continue reading

VMware NSX 6.2: Enterprise Automation, Security and Application Continuity

VMworld 2015 in San Francisco marks the two-year anniversary of the launch of VMware VMware NSX LogoNSX. Since we originally launched, we have taken the promise of NSX and turned it into a platform that customers around the world are using to transform the operations of their data center networks and security infrastructure – in fact, more than 700 customers have chosen NSX. We also have more than 100 production deployments, and more than 65 customers have invested more than $1M of their IT budgets in NSX. We’ve trained more than 3,500 people on NSX, and we have more than 20 interoperable partner solutions generally available and shipping today.

Perhaps what’s most exciting is that at this year’s show, we will have more than two dozen NSX customers represented in various forums throughout the event. Organizations such as Baystate Health, City of Avondale, ClearDATA, Columbia Sportswear, DirecTV, FireHost, George Washington University, Heartland Payment Systems, IBM, IlliniCloud, NovaMedia, Rent-A-Center, Telstra, Tribune Media, United Health Group, University of New Mexico…the list goes on. Continue reading

VMworld 2015 Networking and Security Sessions – Part II

Earlier this week we outlined #VMworld sessions on networking and security that are appropriate for attendees who are just starting down the path to virtualizing their networks with NSX. You can read that blog here in Part I.

The beauty of having a solution that has been shipping for nearly two years to more than 700 customers is that we have tons of advanced topics that we can now cover as part of the show program. So take a look at the list of sessions below, and then check out the schedule builder on VMworld.com to organize your week. We’re looking forward to seeing you at VMworld US 2015.

vmworld2015-logo-black

Sunday, August 30

Time

Session ID Session Title

2:00 PM – 2:30 PM

NET6614-QT

Implementation of NSX: Decisions and Outcomes

3:00 PM – 3:30 PM

NET6615-QT

Extending the Power of Software Defined Networking to the Retail Branch

4:00 PM – 4:30 PM

NET6616-QT

Creating the SDDC for Healthcare

 Monday, August 31

Time

Session ID Session Title

9:00 AM – 10:30 AM

General Session

Keynote

10:30 AM – 12:30 PM

SPL-SDC-1624

Hands on Labs:

VMware NSX and the vRealize Suite

12:30 PM – 1:30 PM

NET6053

The Case for Network Virtualization:

Customer Case Study

1:30 PM – 2:30 PM

NET5187

What’s New in Operations Management for Networking with NSX and others

2:00 PM – 3:00 PM

NET4989

The Future of Network Virtualization with

VMware NSX

2:00 PM – 3:00 PM

NET5529

The Practical Path to NSX

3:00 PM – 4:00 PM

NET4933

vSphere Distributed Switch Best Practices for NSX

3:30 PM – 4:30 PM

NET5082

How to Deploy VMware NSX with

Cisco Nexus and UCS

4:30 PM – 5:30 PM

NET4941

VMware NSX – Deep Dive

5:00 PM – 6:00 PM

SEC5071

NSX – AirWatch: Micro-segmentation for

Enterprise and Mobile Apps

Tuesday, September 1

Time

Session ID Session Title

9:00 AM – 10:30 AM

General Session

Keynote

11:00 AM – 12:00 PM

NET5488

Troubleshooting Methodology for VMware NSX

11:30 AM – 12:30 PM

NET6639-S

Spotlight Session: The Next Horizon for Cloud Networking and Security

1:00 PM – 2:00 PM

SEC6640-S

Spotlight Session: The Software Defined Data Center: Security for the new battlefield

1:00 PM – 2:00 PM

NET6605-GD

NSX & Physical Network Integration

2:30 PM – 3:30 PM

NET5469

VMware on VMware – How VMware IT Uses

NSX for Micro-Segmentation, &

Large Scale Private Cloud

4:00 PM – 5:00 PM

NET5212

NSX Performance

5:00 PM – 6:00 PM

NET5213

Operational Best Practices for VMware NSX

Wednesday, September 2

Time

Session ID Session Title

8:00 AM – 9:00 AM

SEC5170

Micro-Segmented Applications and Services: Enabling The Future of Security

10:00 AM – 11:00 AM

NET5989

Multi-vCenter Solutions with VMware NSX

10:00 AM – 11:30 AM

ELW-SDC-1625

Expert led Lab: VMware NSX Advanced

11:30 AM – 1:00 PM

Solutions Exchange

Partners to visit: Arista, Check Point, Dell, F5, Intel Security, Palo Alto Networks, Trend Micro

1:00 PM – 2:00 PM

NET4995

Integrating Physical Workloads and Infrastructure with a NSX Virtual Network

1:00 PM – 2:00 PM

NET5770

Reference Design for SDDC with NSX & vSphere – Part 1

2:00 PM – 3:00 PM

NET5252

NSX Management Pack for vRealize Operations Manager

2:30 PM – 3:30 PM

NET5792

Reference Design for SDDC with NSX & vSphere – Part 2

*note – NET5770 is a pre-requisite for this session

2:30 PM – 3:30 PM

NET5560

Bridging Virtual and Physical in NSX with OVSB Standard Based Hardware VTEP Integration

3:30 PM – 4:30 PM

NET5395

Technical Deep Dive into Desktop-As-A-Service (DAAS) Deployments with NSX

 Thursday, September 3

Time

Session ID Session Title

9:00 AM – 10:00 AM

General Session

Closing Keynote

10:30 AM – 11:30 AM

NET5826

NSX for vSphere Logical Routing Deep Dive

10:30 AM – 11:30 AM

SEC5589

NSX Distributed Firewall Deep Dive

12:00 PM – 1:00 PM

NET5612

NSX for vSphere Logical Load Balancing Deep Dive

1:30 PM – 2:30 PM

NET4907

Turning Disaster Recovery into a Reality with NSX

 

VMworld 2015 Networking and Security Sessions – Part I

vmworld2015-logo-black

At VMworld 2014 we focused on the basics of network virtualization. What VMware NSX is, what it does, and how network virtualization would change datacenter networking.  We shared the many benefits of virtualizing networks and you caught on.

Just one year later, network virtualization is going mainstream. So at VMworld 2015, have nearly 100 sessions that are guaranteed to fit your needs, whether you’re an #NSXninja or a network virtualization newbie.

Thinking about virtualizing the network at your company or organization? Want to see how others have done it? We’ve got 20 VMware NSX customers ready to share their learnings and insights and talk about how they’ve virtualized their networks.

Curious about how VMware is collaborating with industry leaders and emerging startups to solve customer problems around security, operations, and integration between the physical and virtual worlds? We’ve got sessions on those topics, too. Our partner ecosystem is growing and our partners will share the benefits of their integrated offerings.

But that’s not all! We will be highlighting proven VMware NSX use cases that will teach you all you need to know about a whole range of topics—from micro-segmentation to IT automation, multi-tenancy, application continuity, and security for VDIs.

So take a look at the list of sessions below, and then check out the schedule builder on VMworld.com to organize your week.

Also, if you’re looking for more advanced sessions, check out Part II of this series here.

We’re looking forward to seeing you at VMworld US 2015.

Sunday, August 30

Time

Session ID

Session Title

12:00 PM – 1:30 PM

ELW-SDC-1603

Expert Led Workshop: VMware NSX Introduction

2:00 PM – 2:30 PM

NET6614-QT

Implementation of NSX: Decisions and Outcomes

3:00 PM – 3:30 PM

NET6615-QT

Extending the Power of Software Defined Networking to the Retail Branch

4:00 PM – 4:30 PM

NET6616-QT

Creating the SDDC for Healthcare

 Monday, August 31

Time

Session ID

Session Title

8:00 AM – 9:00 AM

NET4860

VMware NSX Business Case: A Guided Journey of High-Value IT Outcomes for the SDDC

9:00 AM – 10:30 AM

General Session: Keynote

12:30 PM – 1:30 PM

NET6053

The Case for Network Virtualization: Customer Case Study

2:00 PM – 3:00 PM

NET5529

The Practical Path to NSX

3:30 PM – 4:30 PM

NET5082

How to Deploy VMware NSX with Cisco Nexus and UCS

4:30 PM – 5:30 PM

NET4941

VMware NSX – Deep Dive

 Tuesday, September 1

Time

Session ID

Session Title

9:00 AM – 10:30 AM

General Session

Keynote

11:30 AM – 12:30 PM

NET6639-S

Spotlight Session: The Next Horizon for Cloud Networking and Security

11:30 AM – 12:30 PM

OPT4953

Operationalizing VMware NSX: Practical Strategies and Lessons from Real-World Implementations

1:00 PM – 2:00 PM

SEC6640-S

Spotlight Session: The Software Defined Data Center: Security for the new battlefield

1:00 PM – 2:00 PM

NET6605-GD

NSX & Physical Network Integration

2:30 PM – 3:30 PM

STO 6328

What’s New in Disaster Recovery with VMware Site Recovery Manager and VMware NSX

3:30 PM – 5:00 PM

Solutions Exchange

Partners to visit: Arista, Check Point, Dell, F5, Intel Security, Palo Alto Networks, Trend Micro

5:00 PM – 6:00 PM

NET5213

Operational Best Practices for VMware NSX

Wednesday, September 2

Time

Session ID

Session Title

8:30 AM – 9:30 AM

CTO6632

VMware R&D CTO Panel

10:00 AM – 1:00 PM

SPL-SDC-1603

Hands On Labs: VMware NSX Introduction

1:00 PM – 2:00 PM

NET6056

VMware NSX: A User’s Experience

2:00 PM – 4:00 PM

Solutions Exchange or Hang Space

4:00 PM – 5:00 PM

EUC5067

Your Desktops Secured: What Can NSX do for you?

Thursday, September 3

Time

Session ID

Session Title

9:00 AM – 10:00 AM

General Session

Closing Keynote

10:30 AM – 11:30 AM

NET6610-GD

Operationalizing NSX

1:30 PM – 2:30 PM

MGT5360

Introducing Application Self-service with Networking and Security using vRealize Automation and NSX

 

 

 

3 Months on the Road: What I heard from VMware NSX Customers

After three consecutive months attending 75 customer meetings throughout the U.S., Europe and Asia, I came away Around-The-Worldwith plenty of frequent flyer miles and, more importantly, tons of insight to share with you.

What I learned from customers is that VMware NSX is truly a game-changer. And as we exit the second quarter, the list of customers excited about NSX is only getting bigger. We recently announced that we have grown from more than 150 VMware NSX customers a year ago, to more than 700 customers today. These customers are setting the stage for others to follow. They are providing best practices that we are feeding back to others, and giving us valuable insight into challenges they encounter along the way.

So as I promised, I’ve pulled together highlights from these meetings and condensed them into three key themes that emerged.  For you IT pros out there reading this, let me know if any of this sounds familiar. Continue reading

On a Journey with VMware NSX Customers

Playing a part in the transformation of the networking industry has been one of the most rewarding opportunities of Unstoppable Momentummy career. On top of that I get the privilege of leading a team that continues to amaze me in their ability to execute. You’ve heard us talk about the more than 400 VMware NSX customers we have to date, 70+ of which are in production. You can safely assume that number is even higher today. Even more impressive is the fact that customers are making significant financial commitments to the architectural changes they are embarking on. In fact, as of last quarter we counted more than 50 organizations that have invested more than $1 million in NSX.

Now, it’s never easy for IT organizations to talk publicly about technologies they’ve purchased or deployed. This is all the more reason why I’m very grateful that VMware NSX customers have made time to speak publicly about the value they are deriving from VMware NSX to the financial community, at events such as RSA Conference, Palo Alto Networks Ignite and OpenStack Summit, and of course, to the press. No other vendor can claim more customers that are publicly discussing their investment, adoption or deployment of their SDN solution than VMware. Continue reading

Using VMware NSX, Log Insight, and vRealize Orchestator to Improve Security

This post was written by Hadar Freehling, Security & Compliance Systems Engineer Specialist at VMware. The post originally appeared here on the dfudsecurity blog

***

There is a lot of power in having security controls in software.  This is what I tell my customer, not just because I work for VMware. Why is that? The reason I find it so powerful is that I can now automate a lot of the security actions that use to be very manual. No more opening tickets to get a SPAN setup on the switch. No more waiting for a firewall change window to lock down a port. Not only that, I have visibility into the VM, like what apps are running and who started them, and what’s on the wire. I can protect different assets with different policies, and these polices can be dynamic.

With the help of my good friend John Dias (vRealize Orchestrator master), we created the follow video to show some of the potential of having everything in software.

Here is the scenario of the workflow.  You are a security person and want to stop all server admins and users from launching a putty session once they have RDPed into a server since they should only be doing this from approved jump boxes or desktops. Basically, I want to stop all intra-data center putty ssh sessions. I am actually looking for putty, the application, not just ssh. This could be any application or port, but I wanted to target a specific application for this demo. Continue reading

Deploying VMware NSX on Cisco Nexus 9000 & Cisco UCS Infrastructure

As VMware NSX gains broader adoption, we have heard many customer requests for guidance to help them run NSX on top of the latest Cisco infrastructure, namely Cisco UCS and Nexus 9000 series switches.

With customers choosing the benefits of VMware NSX along with the Software Defined Data Center (SDDC), the underlying hardware (Ethernet fabric, x86 compute, etc) provides reliable, resilient capacity, but the configuration, state and advanced features move to faster, more flexible software. The requests were for deploying NSX with Cisco infrastructure running in a standard IP-based fabric with the Nexus 9000’s in standalone mode (NX-OS Mode), as opposed to the proprietary ACI Mode. As with any IP fabric, VMware NSX works great with Nexus 9000 as the underlay. The combination of VMware NSX and Nexus 9000 in standalone mode enables the benefits customers have chosen to embrace with the SDDC.

We had previously put out a design guide on deploying VMware NSX with Cisco UCS and Nexus 7000 to help deploy NSX in current environments. Today we are putting out a new reference design for deploying VMware NSX with Cisco UCS and Nexus 9000 infrastructure, providing an easy path to the SDDC while incorporating the latest Cisco hardware. Continue reading

VCDX-NV Interview: Greg Stemberger

Greg Stemberger is an IT professional who started working in networking in 2000. Working in network operations at Sprint, he managed some of the Greg-Stemberger-Force3largest enterprise networks in the world as the Managed Services Operations Engineer focused primarily on routing and switching. He managed more than 20,000 Cisco devices in his initial role at Sprint. Greg has three CCIEs: in route/switch, security, and service provider. He’s also a member of the first group of VCDX-NV certified professionals.

What excites you about network virtualization?

Virtualization is actually nothing new to me, to be honest, because I’ve been dealing with multi-tenancy, which really in my mind, started on the WAN side where VPNs were really one of the first early versions of introducing multi-tenancy and segmentation of the network, and leveraging virtualization-type technology on hardware. It’s just fascinating to see how much that’s evolved and taken off in the compute world. Now, we’re coming back together full circle with SDN. The network is now playing catch-up with how much agility and flexibility virtualization has provided to the compute world. I believe I have been doing virtual networking for a number of years now, but obviously it’s morphed into something much more powerful today than it was five, six year ago when I was just doing virtual routing and things along those lines.

As you went through network virtualization training, did anything surprised you?

I’m amazed at how powerful the network functions have become down to compute level. I didn’t fully grasp how much flexibility is possible down to the network level in virtualization. I just assumed that you needed a piece of hardware to do that, a dedicate piece of hardware, but software has come so far that now we could potentially deliver a lot of the same capabilities at very scalable rates down on an x86 fixed platform.

How do you think getting certified in network virtualization will help traditional networking professionals in their career?

I think it’s a natural evolution that more of network intelligence is going to continue to extend into the software realm, because of the power of computing today, and the power that software programming brings. I don’t think anybody can challenge the fact that network virtualization brings so much agility and power to networking that we never had before. Obviously, looking at NSX and understanding what’s possible in terms of software-defined networking is just a great salvation towards understanding the networks of the future. Continue reading