Upgrading NSX-T from 3.2.0 to 3.2.1

VMware NSX-T 3.2.1 went Generally Available on the 17th of May – Release Notes. This post will focus on upgrading my NSX-T 3.2.0 environment to NSX-T 3.2.1. This is not a major release so I am anticipating a fairly straightforward update. My main reason for upgrading would be the Security features introduced in 3.2.0 asContinue reading “Upgrading NSX-T from 3.2.0 to 3.2.1”

VMware NSX Switch Agnostic Distributed Security

This blog post will be focusing on VMware NSX Network Security features using VLAN backed networks and hopefully help demystify the topic. It covers the deployment and ends with some demonstrations. Overview In the most recent NSX-T 3.2 release, VMware introduced Switch agnostic distributed security – Ability to extend micro-segmentation to workloads deployed on vSphereContinue reading “VMware NSX Switch Agnostic Distributed Security”

VMware NSX – Detecting Suspicious Network Traffic with Network Traffic Analysis

This blog post is intended to guide you on how to enable Network Suspicious Traffic in NSX-T 3.2 to detect suspicious traffic such as abnormal activity and malicious behaviour, across your NSX-T Data Center environment. This feature is now generally available as part of NSX Intelligence 3.2. Since this feature is part of NSX Intelligence, I amContinue reading “VMware NSX – Detecting Suspicious Network Traffic with Network Traffic Analysis”

VMware NSX Malware Prevention 3.2 Deployment

In this blog post I will cover the installation and activation of the VMware NSX Malware Prevention solution. The activation and deployment will be done on my NSX Application Platform previously deployed. This post will include the deployment requirements and deployment process of the Service Virtual Machines (SVM’s). In a follow-up blog post, I willContinue reading “VMware NSX Malware Prevention 3.2 Deployment”

VMware NSX Network Detection & Response 3.2 Deployment

In my previous post I covered the deployment and enabling of NSX Intelligence on our NSX Application Platform. So the next would be enabling the integrated NSX Network Detection & Response (NDR) feature. I say integrated here because VMware offers NDR as a full stand alone deployment option which is based on the Lastline acquisition.Continue reading “VMware NSX Network Detection & Response 3.2 Deployment”

VMware NSX Intelligence 3.2 Deployment

This post focuses on NSX Intelligence 3.2 when deployed on the NSX Application Platform in NSX-T 3.2. It does not cover migrating from previous versions of NSX Intelligence 1.X to 3.2 but instead looks at a greenfield installation. NSX-T 3.2 introduced us to the NSX Application Platform (NAPP) and this replaces the need to deployContinue reading “VMware NSX Intelligence 3.2 Deployment”

VMware NSX-T Data Center 3.1.1

VMware NSX-T Data Center 3.1.1   |  27 January 2021  |  Build 17483185 What’s New NSX-T Data Center 3.1.1 provides a variety of new features to offer new functionalities for virtualized networking and security for private, public, and multi-clouds. Highlights include new features and enhancements in the following focus areas. My Highlights The introduction of OSPFv2 asContinue reading “VMware NSX-T Data Center 3.1.1”

NSX-T Time-Based Firewall Policy

VMware NSX-T Distributed Firewall (DFW) offers L2 to L7 stateful firewall capabilities, in my previous blog I covered the capability to create policies matching FQDN/URLs. This blog will further expand on the NSX-T DFW capabilities and focus on time-based firewall policies. With time-Based firewall policies, security administrators can restrict traffic from a source to aContinue reading “NSX-T Time-Based Firewall Policy”

Deploying NSX-T Data Center Federation with 3.1.0

VMware recently announced the general availability of NSX-T 3.1.0 bringing a host of new features and functionality. One of the key features which is now production ready is the Multi-Site solution, Federation. Support for standby Global Manager Cluster Global Manager can now have an active cluster and a standby cluster in another location. Latency betweenContinue reading “Deploying NSX-T Data Center Federation with 3.1.0”

NSX-T 3.0 URL Analysis

VMware recently introduced URL Analysis capabilities on the NSX L7 Edge Firewall. “The Layer 7 Edge Firewall is now further enhanced in NSX-T 3.0 with the implementation of URL Analysis for URL Classification and Reputation. The Edge Firewall detects access from outside the datacenter for granular detection and categorization of in-bound and outbound URLs.” URL analysis allows administrators to gain insight into the type of websitesContinue reading “NSX-T 3.0 URL Analysis”