vRNI and Micro-segmentation with NSX.

One of the biggest use cases I personally come across with NSX Datacenter is focused around security, in particular the use of Micro-segmentation to secure virtual machines and get to the desired goal of a zero trust security model. If you’re not sure what this is then have a quick read of VMware https://www.vmware.com/uk/products/nsx-security-microsegmentation.html Part of my day job involves discussions with clients around how they secure their environment, applications and data. The conversation usually begins at the perimeter where there’s a firewall, they paid a lot of money for it and it has a ton of funky features that helps to protect their environment against threats etc. When the conversation moves inwards to the next layer we discuss how virtual machines are protected and the topics of conversations include VLANs, Access Control Lists, DMZs and with some client, separate hardware platforms or clusters. After 10 minutes or so I usually ask what protection they have between virtual machines or what visibility they have of the type of traffic flows and most of the time the conversation comes to a halt. At this point I tend to get a white board going and start to map some of these things…

Read More

NSX Data Center for vSphere 6.4.5

I’ll admit I’m still getting used to the names but I would have called this NSX-V 6.4.5. Anyway a minor release was announced recently and whilst there’s not a huge amount of features I’m writing this very brief post to shout out the updates to the HTML5 UI. You can now (finally) configure Routing, Bridging and Load Balancing in the vSphere Client. Whilst feature parity is still a way off this is definitely a step in the right direction as we begin to see the end of the legacy flex client. A good link to check what is and isn’t supported with the HTML5 UI can be found below along with the full release notes. https://docs.vmware.com/en/VMware-NSX-Data-Center-for-vSphere/6.4/rn/nsx-vsphere-client-65-functionality-support.html https://docs.vmware.com/en/VMware-NSX-Data-Center-for-vSphere/6.4/rn/releasenotes_nsx_vsphere_645.html

NSX-T 2.4

Today saw the release of NSX-T 2.4 which believe it or not is the 7th release of this software since 1.0 first launched in mid 2016. VMware have been on a bit of a journey until now with NSX-T but it’s quite clear this is the primary focus moving forward.  The Vision Connect and Protect Any Workload Across Any Environment  With the release of 2.4 VMware have now realised this vision being able to support both cloud and on-premises workloads running on ESXi KVM AWS Azure VMConAWS Installation and Operations  The HTML5 UI has had a face lift and now offers a context based search option and can offer suggestions based on your search phrase. The UI is meant to be friendly enough to be used by people with limited exposure to NSX-T. Improvements have been made to the dashboards including the NSX-T overview which offers high level information with the option to drill down into feature based dashboards for further detail. To help with installation and setup tasks, a significant amount of work has gone into creating workflows to deploy components or features such as deploying load balancers or preparing ESXi clusters. The upgrade coordinator has also been enhanced and…

Read More