Just as the title says, NSX-v 6.4 has just dropped. I my opinion, they should’ve called it NSX-v 7.0 though, considering the amount of new and cool stuff that is in there. I’ll go through the most prolific new and shiny features below.
Distributed Firewall Layer 7 Functionality – App ID
Traditionally the DFW could handle layer 2 to layer 4 rules. With NSX 6.4, there is some layer 7 functionality which becomes available. This is done by pushing a new VIB to ESXi hosts which looks inside the traffic flows. This new module will recognise App ID inside network … Read more
vRealize Network Insight (vRNI) is most famous for its ability to help you with getting insight into your virtual traffic flows. Using that information you have all you need to configure micro-segmentation. vRNI is much more than that though and this post is the first of a series going into depth of some of the awesome capabilities of vRNI.
All Your Firewall Rules Belong to vRNI
One thing vRNI does, is inventory all the network configuration of the data sources (devices such as switches, routers, firewalls) you add to it. Among those data sources, NSX and Palo Alto Network devices … Read more
This post is part of my VMware VCIX-NV Study Guide and covers managing the different firewall options that NSX has.
There are several security measures inside the NSX platform. When it comes to firewalls, you have two options; the Edge Services Gateway Firewall or the Distributed Firewall.
The first one can act … Read more