February 27, 2024: VMware, recently acquired by Broadcom, announced that we’re returning to the VeloCloud brand for our SD-WAN and SASE solutions. Learn more in our press release and blog, Back to the Future with VeloCloud, the Intelligent Overlay for the Software-Defined Edge.
At VMware Explore Las Vegas, a session titled “Fortify Your Branches with Enhanced Firewall Service for VMware” provided a deep dive into the security features of VMware SD-WAN Edges. This comprehensive discussion, led by experts from VMware and partner CBTS, offered valuable insights into the evolving landscape of network security, security features of VMware SD-WAN™ and VMware SASE™, and solutions to emerging security challenges.
To gain a deeper understanding of VMware’s Enhanced Firewall Service and its impact on modern network security, watch the full session recording from VMware Explore Las Vegas.
Addressing modern network challenges
During the pandemic, organizations faced innumerable challenges, including the shift towards distributed work environments. This transition underscored the need for robust network security capable of supporting remote work and diverse application access. The return to office spaces introduced a hybrid model, blending in-office and remote work, which further highlighted the need for consistent security measures across all environments.
VMware’s approach with Enhanced Firewall Service
To help address the security challenges of the new distributed enterprise, including the rise of services at the edge, we introduced VMware SD-WAN Enhanced Firewall Service. This service is designed to provide advanced security features directly at the network edge, addressing the needs of distributed workforces and branch offices. Key features of the Enhanced Firewall Service include:
- Intrusion Detection and Prevention Systems (IDS/IPS), crucial for identifying and mitigating network threats in real-time
- Hosted firewall logging that aggregates logs across VMware SASE services
- L4-L7 application-aware stateful inspection built into the data plane of the VMware SD-WAN Edge
- Distributed denial-of-service attack prevention with built-in network and flood protection
- Traffic segmentation that separates different types of traffic (corporate, voice, guest, PCI, etc.) and applies different firewall policies unique to each segment
- Templatized firewall policy to quickly create security rules based on different criteria and easily apply them to multiple Edges at different sites
- Unified management and security monitoring in a single pane of glass with VMware Edge Cloud Orchestrator
Integrating security and network management
A core theme of the “Fortify Your Branches” session was the integration of network and security policies, a critical aspect of managing distributed networks. VMware’s solution facilitates this integration by allowing network policies to inform security decisions, ensuring cohesive management across the network. This integration is vital for organizations looking to streamline their network and security operations, reducing complexity and the potential for human error.
Enhancing Edge security
The Enhanced Firewall Service plays a pivotal role in VMware’s vision for edge security. It brings advanced security capabilities to branch locations, reducing the need for additional hardware and simplifying network management. The service is designed to be both effective in threat detection and flexible enough to adapt to the unique requirements of each organization, whether they operate in a centralized or decentralized manner.
VMware’s Enhanced Firewall Service represents a step towards a more integrated and intelligent network security paradigm. By converging network and security functions, VMware aims to offer solutions that are not only robust in terms of security but also efficient and adaptable to the changing needs of businesses. For enterprises that want to bolster their network security while simplifying management, VMware’s solution offers a compelling approach.
Learn more
- Read our blog, Secure the Perimeter with the VMware SD-WAN Enhanced Firewall Service
- Check out the VMware SD-WAN website