vRealize Network Insight 6.1

vRealize Network Insight 6.1 | 14 Jan 2021| Build 1610450081 vRealize Network Insight helps you build an optimized, highly available and secure network infrastructure across hybrid and multi-cloud environments. It provides network visibility and analytics to accelerate micro-segmentation security, minimize risk during application migration, optimize network performance and confidently manage and scale NSX, SD-WAN Velocloud, and Kubernetes deployments. What’sContinue reading “vRealize Network Insight 6.1”

VMware NSX-T Data Center 3.1.1

VMware NSX-T Data Center 3.1.1   |  27 January 2021  |  Build 17483185 What’s New NSX-T Data Center 3.1.1 provides a variety of new features to offer new functionalities for virtualized networking and security for private, public, and multi-clouds. Highlights include new features and enhancements in the following focus areas. My Highlights The introduction of OSPFv2 asContinue reading “VMware NSX-T Data Center 3.1.1”

VMware HCX 4.0

VMware HCX 4.0.0 | 23 FEB 2021 | Build 17667890 (Connector), Build 17667891 (Cloud) What is VMware HCX VMware HCX delivers secure and seamless app mobility and infrastructure hybridity across vSphere 6.0 and later versions, both on-premises and in the cloud. HCX abstracts the distinct private or public vSphere resources and presents a Service Mesh as an end-to-end entity. TheContinue reading “VMware HCX 4.0”

NSX-T Time-Based Firewall Policy

VMware NSX-T Distributed Firewall (DFW) offers L2 to L7 stateful firewall capabilities, in my previous blog I covered the capability to create policies matching FQDN/URLs. This blog will further expand on the NSX-T DFW capabilities and focus on time-based firewall policies. With time-Based firewall policies, security administrators can restrict traffic from a source to aContinue reading “NSX-T Time-Based Firewall Policy”

NSX-T Filtering Specific Domains (FQDN/URLs)

VMware NSX-T Distributed Firewall (DFW) offers L2 to L7 stateful firewall capabilities. Most NSX-T operators are fairly comfortable creating L4 policies in the quest to achieve the “zero-trust” model. In this blog I wanted to take this one step further and explore the capabilities of using the DFW to enforce policy matching L7 FQDN/URLs. IContinue reading “NSX-T Filtering Specific Domains (FQDN/URLs)”

NSX-T 3.1 – Deploying Distributed IDS/IPS

In NSX-T 3.0 VMware introduce distributed IDS and now in NSX-T 3.1 this has been expanded to include distributed IPS. In this blog I will highlight the steps to enabled and configured distributed IDS/IPS and end with a demonstration. Overview Distributed Intrusion Detection and Prevention Service (IDS/IPS) monitors network traffic on the host for suspiciousContinue reading “NSX-T 3.1 – Deploying Distributed IDS/IPS”

NSX-T 3.1 – Configuring DHCP Server

As I build out various demonstrations in my lab I wanted to reduce the amount of static IP allocations on my demo work loads so that I can move them between network segments for different demonstrations and with this enabling a DHCP Server in my NSX-T deployment makes sense. So in this post I willContinue reading “NSX-T 3.1 – Configuring DHCP Server”

Product Offerings for VMware NSX Security 3.1.x

New VMware NSX Security editions became available to order on October 29th, 2020. The tiers of NSX Security licenses are as follows: NSX Firewall for Baremetal Hosts: For organizations needing an agent-based network segmentation solution. NSX Firewall Edition: For organizations needing network security and network segmentation. NSX Firewall with Advanced Threat Prevention Edition: For organizationsContinue reading “Product Offerings for VMware NSX Security 3.1.x”

Configuring NSX-T VRF Lite Networking

VMware introduced VRF capabilities in NSX-T 3.0, this post will guide you how through the steps to configure and enabled VRF capabilities. A virtual routing and forwarding (VRF) gateway makes it possible for multiple instances of a routing table to exist within the same gateway at the same time. VRFs are the layer 3 equivalentContinue reading “Configuring NSX-T VRF Lite Networking”

Deploying NSX-T Data Center Federation with 3.1.0

VMware recently announced the general availability of NSX-T 3.1.0 bringing a host of new features and functionality. One of the key features which is now production ready is the Multi-Site solution, Federation. Support for standby Global Manager Cluster Global Manager can now have an active cluster and a standby cluster in another location. Latency betweenContinue reading “Deploying NSX-T Data Center Federation with 3.1.0”