vRNI and Micro-segmentation with NSX.

One of the biggest use cases I personally come across with NSX Datacenter is focused around security, in particular the use of Micro-segmentation to secure virtual machines and get to the desired goal of a zero trust security model. If you’re not sure what this is then have a quick read of VMware https://www.vmware.com/uk/products/nsx-security-microsegmentation.html Part of my day job involves discussions with clients around how they secure their environment, applications and data. The conversation usually begins at the perimeter where there’s a firewall, they paid a lot of money for it and it has a ton of funky features that helps to protect their environment against threats etc. When the conversation moves inwards to the next layer we discuss how virtual machines are protected and the topics of conversations include VLANs, Access Control Lists, DMZs and with some client, separate hardware platforms or clusters. After 10 minutes or so I usually ask what protection they have between virtual machines or what visibility they have of the type of traffic flows and most of the time the conversation comes to a halt. At this point I tend to get a white board going and start to map some of these things…

Read More