Product Brief GigaVUE-VM

Similar documents
Solution Overview Gigamon Visibility Platform for AWS

Data Sheet Gigamon Visibility Platform for AWS

Automated Traffic Visibility for SDDC Solution Guide

Rethinking Security CLOUDSEC2016. Ian Farquhar Distinguished Sales Engineer Field Lead for the Gigamon Security Virtual Team

Data Sheet GigaSECURE Cloud

1V0-642.exam.30q.

The Gigamon Visibility Platform

Aligning Agency Cybersecurity Practices with the Cybersecurity Framework

Introducing VMware Validated Designs for Software-Defined Data Center

Introducing VMware Validated Designs for Software-Defined Data Center

Introducing VMware Validated Designs for Software-Defined Data Center

VMware + OpenStack. Dan Wendlandt Director of Product Management VMware VMware Inc. All rights reserved.

Brocade and VMware Strategic Partners. Kyle Creason Brocade Systems Engineer

Private Cloud Public Cloud Edge. Consistent Infrastructure & Consistent Operations

Man kann nur schützen was man sieht - oder Zentrales Entschlüsseln von SSL/TLS Verkehr Rethinking Security

Live traffic feeds are increasingly being used by the modern enterprise to gain visibility for security and operations management

The Why, What, and How of Cisco Tetration

Cisco HyperFlex and the F5 BIG-IP Platform Accelerate Infrastructure and Application Deployments

GigaVUE-FM. Data Sheet

PLEXXI HCN FOR VMWARE ENVIRONMENTS

Trends and challenges Managing the performance of a large-scale network was challenging enough when the infrastructure was fairly static. Now, with Ci

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

IXIA PHANTOM VTAP WITH TAPFLOW FILTERING

Design Guide: Deploying NSX for vsphere with Cisco ACI as Underlay

21CTL Disaster Recovery, Workload Mobility and Infrastructure as a Service Proposal. By Adeyemi Ademola E. Cloud Engineer

Introducing VMware Validated Design Use Cases. Modified on 21 DEC 2017 VMware Validated Design 4.1

Use Cases Application And Service Monitoring Eliminate contention for network data. Centralize Netflow/IPFIX Generation

Rethinking Security: The Need For A Security Delivery Platform

DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise

vrealize Operations Management Pack for NSX for Multi-Hypervisor

Getting Started Guide. VMware NSX Cloud services

Table of Contents HOL SLN

VMWARE CLOUD FOUNDATION: THE SIMPLEST PATH TO THE HYBRID CLOUD WHITE PAPER AUGUST 2018

CONFIDENTLY INTEGRATE VMWARE CLOUD ON AWS WITH INTELLIGENT OPERATIONS

Daten-Management & Sicherheit in virtualisierten Umgebungen und der Cloud. Martin Heinzelmann SR CHANNEL SE

Use Cases Application And Service Monitoring Eliminate contention for network data. Centralize Netflow/IPFIX Generation

VMWARE CLOUD FOUNDATION: INTEGRATED HYBRID CLOUD PLATFORM WHITE PAPER NOVEMBER 2017

ARIA SDS. Application

Securing the Software-Defined Data Center

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Check Point 4800 with Gigamon Inline Deployment Guide

VMware Cloud on AWS. A Closer Look. Frank Denneman Senior Staff Architect Cloud Platform BU

SAFEGUARDING YOUR VIRTUALIZED RESOURCES ON THE CLOUD. May 2012

Agile Data Center Solutions for the Enterprise

Virtualization Security & Audit. John Tannahill, CA, CISM, CGEIT, CRISC

Exam Name: VMware Certified Associate Network Virtualization

WIND RIVER TITANIUM CLOUD FOR TELECOMMUNICATIONS

VMware Cloud on AWS Technical Deck VMware, Inc.

DISASTER RECOVERY- AS-A-SERVICE FOR VMWARE CLOUD PROVIDER PARTNERS WHITE PAPER - OCTOBER 2017

Workload Mobility and Disaster Recovery to VMware Cloud IaaS Providers

McAfee Virtual Network Security Platform

VM-SERIES FOR VMWARE VM VM

vrealize Operations Management Pack for NSX for vsphere 3.0

Creating a VMware vcloud NFV Platform R E F E R E N C E A R C H I T E C T U R E V E R S I O N 1. 5

Huawei FusionSphere 6.0 Technical White Paper on OpenStack Integrating FusionCompute HUAWEI TECHNOLOGIES CO., LTD. Issue 01.

Introducing VMware Validated Design Use Cases

Enabling Efficient and Scalable Zero-Trust Security

Build an Integrated Software-Defined Data Center Stack with VMware

5 STEPS TO BUILDING ADVANCED SECURITY IN SOFTWARE- DEFINED DATA CENTERS

vrealize Operations Management Pack for NSX for vsphere 2.0

The Evolution of Data Center Security, Risk and Compliance

CLOUDLENS PUBLIC, PRIVATE, AND HYBRID CLOUD VISIBILITY

BIG MON CONTROLLERS BIG MON ANALYTICS NODE. Multi-Terabytes L2-GRE 1/10/25/40/100G ETHERNET SWITCH FABRIC. Optional BIG MON BIG MON SERVICE NODES

Gigamon Metadata Application for IBM QRadar Deployment Guide

Table of Contents HOL-PRT-1305

The threat landscape is constantly

Cisco ACI Virtual Machine Networking

Cisco CloudCenter Solution with Cisco ACI: Common Use Cases

VISIBILITY INTO CLOUD COMPUTING

IPv6 Best Operational Practices of Network Functions Virtualization (NFV) With Vmware NSX. Jeremy Duncan Tachyon Dynamics

TEN ESSENTIAL NETWORK VIRTUALIZATION DEFINITIONS

Customer Onboarding with VMware NSX L2VPN Service for VMware Cloud Providers

Introduction to Virtualization. From NDG In partnership with VMware IT Academy

ANALYSIS OF VIRTUAL NETWORKS IN DATA CENTERS.

Introducing VMware Validated Designs for Software-Defined Data Center

Architectural overview Turbonomic accesses Cisco Tetration Analytics data through Representational State Transfer (REST) APIs. It uses telemetry data

Pasiruoškite ateičiai: modernus duomenų centras. Laurynas Dovydaitis Microsoft Azure MVP

vrealize Operations Management Pack for NSX for vsphere 3.5.0

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Achieving Digital Transformation: FOUR MUST-HAVES FOR A MODERN VIRTUALIZATION PLATFORM WHITE PAPER

Cross-vCenter NSX Installation Guide. Update 3 Modified on 20 NOV 2017 VMware NSX for vsphere 6.2

AppDefense Getting Started. VMware AppDefense

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMware Integrated OpenStack Quick Start Guide

Architecting a vcloud NFV OpenStack Edition Platform REFERENCE ARCHITECTURE VERSION 2.0

75% 64% Data Sheet GigaVUE-HC1

NSX Experience Day Axians GNS AG

SOLUTION BRIEF RSA NETWITNESS SUITE & THE CLOUD PROTECTING AGAINST THREATS IN A PERIMETER-LESS WORLD

VMWARE ENTERPRISE PKS

MODERNIZE INFRASTRUCTURE

Potpuna virtualizacija od servera do desktopa. Saša Hederić Senior Systems Engineer VMware Inc.

Huawei CloudFabric and VMware Collaboration Innovation Solution in Data Centers

ENTERPRISE-GRADE MANAGEMENT FOR OPENSTACK WITH RED HAT CLOUDFORMS

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Cisco ACI Virtual Machine Networking

HPE HELION CLOUDSYSTEM 9.0. Copyright 2015 Hewlett Packard Enterprise Development LP

Top Five Reasons You Need an. Elemental Shift in Your Security

McAfee Network Security Platform 9.1

DELL EMC VSCALE FABRIC

REDUCE TCO AND IMPROVE BUSINESS AND OPERATIONAL EFFICIENCY

Transcription:

Product Brief GigaVUE-VM Active Visibility for Virtual Workloads With exponential growth in virtualized traffic within the data center, a primary challenge for the centralized monitoring infrastructure is to access this virtual traffic for application, network and security analysis. The Gigamon GigaVUE-VM visibility node provides an intelligent filtering technology that allows virtual machine (VM) traffic flows of interest to be selected, forwarded, and delivered to the monitoring infrastructure centrally attached to the GigaVUE platforms, thereby eliminating any traffic blind spots in the enterprise private clouds or service provider NFV deployments. Gigamon is the only vendor to provide traffic visibility solutions for virtual workloads in VMware-powered SDDC (ESX and NSX-V) and OpenStack/KVM-powered multi-tenant clouds. Features & Benefits Visibility into Virtual Traffic Intelligently select, filter, and forward tenant virtual traffic to the monitoring and tool infrastructure, extending the reach and leveraging existing tools to monitor virtual network infrastructure Quick Specs üüautomated traffic visibility for VMware-powered SDDC üümulti-tenant traffic visibility for OpenStack/KVM-powered clouds üüoptimized traffic delivery from the virtual infrastructure through the production network üüautomated migration of monitoring policies üühotspot detection of virtual monitoring policies Multi-Hypervisor Support Supports the most popular private cloud hypervisors, VMware ESXi, VMware NSX-V and KVM/OpenStack Virtual Switch Agnostic Solution Support for VMware vss/vds and Cisco Nexus 000V and any virtual switch on KVM Automated Visibility for VMware NSX Use VMware NSX Dynamic Service Insertion to associate visibility policies with security groups, thereby providing continuous and automated traffic visibility for applications as they scale up Centralized Management Manage and monitor the physical and virtual visibility nodes using while also configuring the traffic policies to access, select, transform, and deliver the traffic to the tools Integration with the Gigamon Visibility Platform Seamless end-to-end visibility across physical and virtual network infrastructure. Optimize monitoring infrastructure by enabling aggregation, replication, and sharing of traffic streams across multiple monitoring tools and IT teams. Additional intelligence gained from Flow Mapping and GigaSMART technologies can be applied on the virtual traffic before forwarding the tools Support for Packet Slicing Further reduce IO resources by removing irrelevant information with packet slicing before sending to the tool, and optimize long-term storage of data by capturing only the data of interest Tunneling Support Leverage the production network to tunnel (support standards based LGRE encapsulation) and forward the filtered virtual traffic from the hypervisor to the GigaVUE platforms Optimized Traffic Delivery Tunneled traffic can be marked with DSCP values for per hop behavior to get preferential treatment on the production network. If changing MTU size in the network is an issue, fragmentation can be enabled to transport the packets using standard MTU sizes. These packets will then be re-assembled at the visibility nodes before further analysis Support for vmotion and Live Migration Ensure the integrity of visibility and monitoring policies in a dynamic infrastructure, have realtime adjustment of monitoring and security posture to virtual network changes, and the ability to respond to disasters/failures without losing NOC insight and control Hotspot monitoring Pro-actively monitor and troubleshoot GigaVUE-VM nodes by elevating Top-N and Bottom-N virtual traffic policies to the centralized dashboards 0-07 Gigamon. All rights reserved.

VMware ESX Integration A vsphere guest VM, the light footprint GigaVUE-VM visibility node is installed without the need for special software, kernel modules, or changes to the hypervisor (Fabric Manager), Gigamon s centralized management application, tightly integrates with VMware and to facilitate simplified bulk onboarding of the GigaVUE-VM visibility nodes and configuration of the VM level traffic monitoring policies Leveraging APIs, can track vmotion events across Distributed Resource Scheduler (DRS) and high-availability (HA) cluster environments, enabling visibility policies to be tied to the monitored VMs and migrate with the VMs as they move across physical hosts; this automation provides Active Visibility into an agile and dynamic SDDC GigaVUE-VM is auto-pinned to a host, so DRS doesn t impact continuous traffic visibility In addition to ESXi hypervisor, GigaVUE-VM also extends traffic visibility to the VMs deployed on the VMware NSX-V network hypervisor, a network virtualization platform that delivers the operational model of a hypervisor for the network VM VM VM VM HYPERVISOR HYPERVISOR Virtual Traffic Policies integration Bulk GigaVUE-VM onboarding Virtual traffic policy creation Automatic migration of monitoring policies SERVER I SERVER II Tunneling Private Cloud Performance Network Management Visibility Platform Production Network Tools and Analytics GigaVUE-VM integrated with the Gigamon Visibility Platform 0-07 Gigamon. All rights reserved.

VMware NSX Integration Automate traffic visibility for securing the micro-segmented SDDC Enable SecOps and NetOps teams to automate the selection, filtering and forwarding of the ever growing east-west virtual traffic for security and monitoring analytics Leverage the power of the NSX network virtualization platform and distributed service insertion framework for automated deployment of virtual components in the GigaSECURE Delivery Platform, while also enabling dynamic provisioning of visibility traffic policies within customers software defined data centers Insert a Visibility Service using the GigaSECURE platform s virtual visibility component, GigaVUE-VM Define security or traffic policies that select, filter and forward the tenant s virtual traffic to security and monitoring tools for analysis Can auto-update this service and the traffic policies as new tenants come onboard or existing tenant s security groups scale dynamically VMware and NSX APIs for Inventory, Groups, Events Cloud Admin Register Gigamon Traffic Visibility Service and Traffic Policies NetOps / SecOps Admin Deploy Traffic Visibility Service VM on NSX Cluster Associate Traffic Policies to Groups SG SG SG GigaVUE-VM 7 Status and Traffic Policy Checks VM VM VM 6 Filtered Virtual Traffic vswitch 5 Copy Packet VMware NSX-V GigaSECURE Delivery Platform APM SIEM IDS GigaVUE-VM on VMware NSX integrated with GigaSECURE Delivery Platform 0-07 Gigamon. All rights reserved.

Use Cases with VMware NSX VMware Private Cloud Automated Traffic Visibility Secure the SDDC with GigaSECURE Dynamic Service Insertion of GigaVUE-VM vrealize Automation (vra). Deploy new Tenants and s. Apply Visibility Policy?,. IPS E?;"/F (Inline) Anti-Malware +6"()$;7$0/ E?;"/F (Inline) Data @$6$C8-- Loss Prevention,0//6"8?60:-"8 Intrusion Detection @/6/A6"8.>-6/B System G80/-"A- Forensics Email Threat Detection A PI NSX APIs, Service Insertion APIs, Events GigaSECURE Delivery Platform TAPs GigaVUE-VM and GigaVUE Nodes Metadata Engine Session Filtering SSL/TLS Decryption Inline Bypass GigaVUE VM Filtered and Sliced Virtual Traffic Tenant level Traffic Visibility for Monitoring Dynamic Service Insertion of GigaVUE-VM vrealize Automation (vra). Deploy new Tenants and s. Apply Visibility Policy APIs, Events REST APIs Software-Defined Visibility NSX APIs, Service Insertion Virtual Traffic Centralized Tools Anti-Malware POWERED BY GigaSMART VXLAN=6000 IDS SSL/TLS Decryption DLP NetFlow / IPFIX Generation SSL/TLS Decryption Network Forensics TAPs Session Filtering Adaptive Packet Filtering Header Stripping Visibility Platfom De-cap VXLAN APT Monitoring Performance Network Performance GigaVUE VM Filtered and Sliced Virtual Traffic NetFlow / IPFIX Customer Experience 0-07 Gigamon. All rights reserved.

OpenStack/KVM Cloud In a multi-tenant OpenStack/KVM-powered Private Cloud, where tenant isolation is critical, the Gigamon solution extends visibility for one tenant s workload without impacting others. Supports tenant-wide monitoring domains tenant may monitor any and all interfaces on their VMs Honors tenant isolation boundaries no traffic leakage from one tenant to any other tenant during monitoring Monitors traffic without needing cloud admin privileges Monitors traffic activity of one tenant without adversely affecting other tenants Multi-tenant traffic visibility management with a single instance of Can deploy this solution, which integrates with OpenStack, by the tenant owner as follows: for integration with OpenStack/Nova controller to identify tenant VMs A tiny footprint user-space agent (G-vTAP) is loaded in the tenant VM that is selected for monitoring»» Traffic policy filters are configured to mirror the target VM s interface traffic to GigaVUE-VM»» The filtered traffic can be sampled at configured rates to reduce backhaul to the monitoring tools GigaVUE-VM optimizes (complex filters and slicing) and delivers traffic to the physical visibility nodes, where additional GigaSMART traffic intelligence can be applied before delivering the traffic to the monitoring tools Based on the number of TAP points (vnics) being monitored, auto-deploys the requisite number of GigaVUE-VM nodes Glance Horizon Tenant OpenStack: Horizon/Nova deploys tenant VMs that are packaged with Gigamon Virtual Taps (G-vTAP) Nova : Discovers the tenant VMs from OpenStack/Nova controller : Deploys GigaVUE-VM (Virtual Visibility Node) 5 GigaVUE-VM VM VM VM Traffic Any vswitch KVM Policies Any vswitch KVM 6 Tunneling 7 Visibility Platform 8 APM NPM CEM 5 6 7 8 : Configures traffic policies on the G-vTAPs and GigaVUE-VMs G-vTAP: Filters and replicates traffic to GigaVUE-VM GigaVUE-VM: Provides additional filtering/slicing of traffic to Visibility Platform : Configures traffic policies (GigaSMART) to forward to the right tools Visibility Platform: Optimizes and forwards traffic to the right tools GigaVUE-VM and G-vTAP on OpenStack/KVM integrated with the Gigamon Visibility Platform Use Cases Private clouds that want to provide SLA monitoring of the virtual workload traffic Data centers where virtual workload traffic needs to be analyzed along with the physical network traffic by a centralized monitoring tool infrastructure IT organizations that are concerned about threats or malware embedded in the SSL/TLS traffic within the virtual infrastructure Software defined data centers that are evaluating emerging network virtualization and SDN technologies Enterprises providing hosting services for multiple customers or internal groups Service providers adopting the Network Functions Virtualization (NFV) architecture to virtualize their physical network functions like SBC, EPC, IMS, etc. 0-07 Gigamon. All rights reserved. Gigamon and the Gigamon logo are trademarks of Gigamon in the United States and/or other countries. Gigamon trademarks can be found at www.gigamon.com/legal-trademarks. All other trademarks are the trademarks of their respective owners. Gigamon reserves the right to change, modify, transfer, or otherwise revise this publication without notice. 009-0/7 00 Olcott Street, Santa Clara, CA 9505 USA + (08) 8-000 www.gigamon.com

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback