The Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec

Similar documents
VMware vcloud Networking and Security Overview

Enabling Your Cloud with VMware. Rob Rowe Jason Kuipers

DEFINING SECURITY FOR TODAY S CLOUD ENVIRONMENTS. Security Without Compromise

VMWARE SOLUTIONS AND THE DATACENTER. Fredric Linder

VMware Cloud Provider Platform

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer CONFIDENTIAL 2

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Transform to Your Cloud

vcloud Air - Virtual Private Cloud OnDemand Networking Guide

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

1V0-642.exam.30q.

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMworld disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no

IBM Cloud for VMware Solutions NSX Edge Services Gateway Solution Architecture

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMWARE SERVICE PROVIDER PROGRAM PRODUCT USAGE GUIDE Q2

SECURING THE NEXT GENERATION DATA CENTER. Leslie K. Lambert Juniper Networks VP & Chief Information Security Officer July 18, 2011

Orchestrating the Cloud Infrastructure using Cisco Intelligent Automation for Cloud

Customer Case Studies on Accelerating Their Path to Hybrid Cloud

The Software Driven Datacenter

Kaspersky Security for Virtualization Frequently Asked Questions

21CTL Disaster Recovery, Workload Mobility and Infrastructure as a Service Proposal. By Adeyemi Ademola E. Cloud Engineer

NSX Data Center Load Balancing and VPN Services

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

VMware Cloud on AWS. A Closer Look. Frank Denneman Senior Staff Architect Cloud Platform BU

Cisco Nexus 1000V Switch for Microsoft Hyper-V

Deploying Cloud Network Services Prime Network Services Controller (formerly VNMC)

vshield Administration Guide

MAKING THE CLOUD A SECURE EXTENSION OF YOUR DATACENTER

Solution Brief: VMware vcloud Director and Cisco Nexus 1000V

vshield Quick Start Guide

SAFEGUARDING YOUR VIRTUALIZED RESOURCES ON THE CLOUD. May 2012

EBOOK: VMware Cloud on AWS: Optimized for the Next-Generation Hybrid Cloud

Cloud + Big Data Putting it all Together

Customer Onboarding with VMware NSX L2VPN Service for VMware Cloud Providers

vcloud Air - Virtual Private Cloud OnDemand User's Guide

Trust in the Cloud. Mike Foley RSA Virtualization Evangelist 2009/2010/ VMware Inc. All rights reserved

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

DEPLOYING A VMWARE VCLOUD DIRECTOR INFRASTRUCTURE-AS-A-SERVICE (IAAS) SOLUTION WITH VMWARE CLOUD FOUNDATION : ARCHITECTURAL GUIDELINES

Cloud Computing Private Cloud

A Practitioner s Guide to Migrating Workloads to VMware Cloud on AWS

VMWARE CLOUD FOUNDATION: INTEGRATED HYBRID CLOUD PLATFORM WHITE PAPER NOVEMBER 2017

Symantec Reference Architecture for Business Critical Virtualization

Evolution of Data Center Security Automated Security for Today s Dynamic Data Centers

Exam Name: VMware Certified Associate Network Virtualization

Ordering and deleting Single-node Trial for VMware vcenter Server on IBM Cloud instances

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Cloud Infrastructure Launch vsphere Licensing Overview Your Cloud. Intelligent Virtual Infrastructure. Delivered Your Way.

Technology for a Changing World

Soluzioni integrate con vsphere La virtualizzazione abilita il percorso evolutivo di innovazione dell'it

VMware vcloud Director 1.5 Evaluation Guide

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Introducing VMware Validated Designs for Software-Defined Data Center

Foundation for Cloud Computing with VMware vsphere 4

Introducing VMware Validated Designs for Software-Defined Data Center

VMware Join the Virtual Revolution! Brian McNeil VMware National Partner Business Manager

Cisco CloudCenter Solution with Cisco ACI: Common Use Cases

IT Infrastructure: Poised for Change

Cisco Enterprise Cloud Suite Overview Cisco and/or its affiliates. All rights reserved.

VMware s Journey to the Cloud: IT SDDC Journey with vcloud Automation and Management Platform Initiative Using vsphere/vcloud Stack

Cloud, SDN and BIGIQ. Philippe Bogaerts Senior Field Systems Engineer

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Why the cloud matters?

Potpuna virtualizacija od servera do desktopa. Saša Hederić Senior Systems Engineer VMware Inc.

The Latest EMC s announcements

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Introducing VMware Validated Designs for Software-Defined Data Center

Cato Cloud. Software-defined and cloud-based secure enterprise network. Solution Brief

Securing the Modern Data Center with Trend Micro Deep Security

SYMANTEC DATA CENTER SECURITY

Cisco Cloud Application Centric Infrastructure

Workload Mobility and Disaster Recovery to VMware Cloud IaaS Providers

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Table of Contents HOL-PRT-1305

VMWARE CLOUD FOUNDATION: THE SIMPLEST PATH TO THE HYBRID CLOUD WHITE PAPER AUGUST 2018

VMware vcloud Director Evaluator s Guide TECHNICAL WHITE PAPER

What's New in vsphere?

STRATEGIC WHITE PAPER. Securing cloud environments with Nuage Networks VSP: Policy-based security automation and microsegmentation overview

VMworld 2013 Overview

Agenda Basecamp The Journey So Far Enhancements Into the Fear Zone Climbing The VM-Series Performance Peak New VM-Series Models and Licensing Best Pra

vcloud Director Administrator's Guide

1 Copyright 2011, Oracle and/or its affiliates. All rights reserved. reserved. Insert Information Protection Policy Classification from Slide 8

Architecture and Design. Modified on 21 AUG 2018 VMware Validated Design 4.3 VMware Validated Design for Software-Defined Data Center 4.

Back To The Future - VMware Product Directions. Andre Kemp Sr. Product Marketing Manager Asia - Pacific

VMware Hybrid Cloud Solution

Virtual Security Gateway Overview

CYBER SECURITY MALAYSIA AWARDS, CONFERENCE & EXHIBITION (CSM-ACE) Securing Virtual Environments

Copyright 2012 EMC Corporation. All rights reserved.

VMworld 2017 Content: Not for publication #CNA1699BE CONFIDENTIAL 2

What s New with VMware vcloud Director 8.0

TECHNICAL WHITE PAPER - MAY 2017 MULTI DATA CENTER POOLING WITH NSX WHITE PAPER

VMware vshield Edge Design Guide

Christopher Covert. Principal Product Manager Enterprise Solutions Group. Copyright 2016 Symantec Endpoint Protection Cloud

What You Need to Know About OpenStack + VMware

Cato Cloud. Solution Brief. Software-defined and Cloud-based Secure Enterprise Network NETWORK + SECURITY IS SIMPLE AGAIN

The vsphere 6.0 Advantages Over Hyper- V

Transcription:

The Virtualisation Security Journey: Beyond Endpoint Security with VMware and Symantec James Edwards Product Marketing Manager Dan Watson Senior Systems Engineer

Disclaimer This session may contain product features that are currently under development. This session/overview of the new technology represents no commitment from VMware to deliver these features in any generally available product. Features are subject to change, and must not be included in contracts, purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery. Pricing and packaging for any new technologies or features discussed or presented have not been determined. 2

Organizations Report High Operational Costs for Networking Q. Which of the following networking activities would you consider to be the most costly and time consuming for your organization? Managing / maintaining the physical data center network infrastructure Provisioning / configuring / maintaining a physical server 36% 40% IP address provisioning and management Managing a virtual machine that is migrated from one physical server to another Provisioning / configuring / maintaining a VLAN (i.e., virtual LAN) Provisioning / configuring / maintaining a physical switch Provisioning / configuring / maintaining a virtual server Provisioning / configuring / maintaining a virtual switch 29% 28% 24% 23% 19% 18% Source: Enterprise Strategy Group (ESG), Data Center Networking Trends, research report, 2012. N = 280; multiple responses accepted 3

Security and Compliance are Key Concerns for Organizations Considering Cloud Migrations Q.What are the top challenges or barriers to implementing a cloud computing strategy? Source: 2012 IDG Cloud Computing Study. January 2012 4

Network & Security Haven t Kept Pace with Datacenter Evolution Costly Under utilization of compute Dedicated appliances Complex Manual provisioning Fragmented management Inflexible Load Balancer Firewall Networks don t scale with dynamic workloads Lag time to provision network and security services Not extensible 5

VMware Cloud Management What s New in Q4 2012 vcloud Network and Security vcloud Automation Center IaaS PaaS DaaS vcenter Operations Mgmt vcloud Networking and Security vcloud Director vcloud Connector vcenter Site Recovery Manager vfabric Application Mgmt vcloud Service Providers Other Service Providers Hypervisors Hardware IT Business Mgmt vsphere vcloud Suite 6 Confidential

vcloud Networking and Security How it Works Integrated Management with vcenter/vcd Abstract and Pool Resources Minimize dedicated hardware Optimize Utilization VDC 1 VDC 2 VMware Networking & Security 3 rd party services Create Logical Networks Accelerate Application Provisioning Scale Applications On-demand Simplify Operations Attach Services Integrated Management 3rd Party Extensible vsphere Services Metadata 4Gbps connectivity 2 redundant pnics Load Balancer Web Application Firewall Enable Policy-based Automation Dynamic Provisioning Unlock Efficiency & Agility 7

vcloud Networking and Security Components Integrated Management with vcenter/vcd VMware Networking & Security vcloud Ecosystem Framework: Integrate 3 rd party services vshield Manager: Seamless integration with datacenter management via plugin VDC 1 VDC 2 3 rd party services Edge gateway: Secure the edge of the virtual datacenter and provide gateway services Data Security: Protect against data leaks vsphere App: Isolate and protect applications and Virtual Machines VXLAN: Foundation for elastic portable virtual datacenters 8

Edge Gateway: Complete Virtual Perimeter Network & Security Integrated Management with vcenter/vcd VMware Networking & Security VDC 1 VDC 2 vsphere Overview Integrated L4-7 services for the virtual datacenter edge Firewall / NAT / DHCP Server IPSec and SSL VPN Load Balancer VXLAN Gateway Virtual appliance with high availability option Benefits Firewall Firewall Load balancer Load balancer VPN VPN Single solution for virtual perimeter Eliminates need for specialized devices Improves availability and performance Enables insertion of 3 rd party solutions Centralized management and logging 9

App Firewall: Protect Critical Workloads Overview VMware Networking & Security VDC 1 VDC 2 Firewalling for specific virtual servers Tight integration with vcenter objects for policy creation Adaptive Trust zones Robust flow monitoring PCI Zone vsphere Finance Zone Benefits Protect specific workloads from threats Isolates virtual servers to meet compliance requirements Increased visibility and control over inter- VM communications Improved security and lower operational overhead 10

VXLAN: Driving Agility for Software Defined Networking 650.555.1212 650.555.1212 Networking Telephony Identifier = Location VLAN 10 Mobile Telephony VXLAN VXLAN 10 Identifier = Location 11

VXLAN: Enabling Stretched Clusters Across the Datacenter Segment Cluster/Pod 1 Cluster/Pod 2 VXLAN segments defined with vcd or vcenter Scalable - 16 million VXLANs eliminate VLAN limits Packet Encapsulate VXLAN Packet VXLAN 20 VXLAN encapsulation is performed by vsphere Packet transported as UDP VDC VDC Flexible and Elastic Fabric Scalable Layer 2 networks across the datacenter for vmotion and efficient workload deployment VXLAN fabric is elastic enabling traffic to traverse clusters, virtual switches and layer 3 networks. Investment Protection: Physical network infrastructure works as is without upgrades. 12

vcloud Ecosystem Framework: Integrating Third-Party Networking and Security Services Three Integration Points for Security and Networking New: VMware Ready for Networking and Security Inside Virtual Server Access into the workloads. Eliminate agents Edge of Virtual Server Access to network data into/out of the workload. Isolate & Protect Critical Apps Edge of Virtual Network Access to network data into/out of the Virtual Datacenter. Insert Edge Services VDC 1 VDC 2 VDC 3 Management and Context 13

Network & Security 3 rd Party Service Insertion Features VMware vshield Manager(VSM) Security Services Network Services IDS NGFW SLB ADC Hypervisor level Insertion for 3rd party services Automation via configuration templates Integration with vcenter/vcloud Director management IPS VPN WOC Benefits vcloud Ecosystem Framework Flexibility to insert physical or virtual services into the virtual network Broad ecosystem of networking and security partner solutions Operational efficiency gains with single pane of glass management and automation. 14

Symantec / VMware Security for the Virtualized Data Center Symantec Control Compliance Suite Policy scan of VM on deployment quarantine / remediate Vulnerability scan of VM on deployment quarantine / remediate Symantec Data Loss Prevention Unparalleled ability to discover sensitive data on VMs Integration with vshield App to provide VM-quarantine based on DLP policy Symantec Web Gateway Integration with vshield App for threat discovery (including botnets) Provision to quarantine / remediate threats Symantec Security Information Manager Symantec Managed Security Service Event correlation quarantine / remediate Managed Security Service offering Symantec Critical Systems Protection Protection from advanced threats for mission-critical servers vsphere and vcenter server protection to VMware and Industry standards The Virtualization Security Journey Symantec Endpoint Protection Dynamic, transparent, beyond-physical security on a hardened infrastructure Effective across both managed and unmanaged VMs 15 Confidential 1

In Summary, vcns.. Delivers the leading software-defined networking and security solution Virtualizes networking and security to create ondemand domains, isolate workloads, and implement compliance controls Increases operational efficiency and improves utilization Simplifies operations and enables IT agility to drive business agility Brings the most extensible platform and broadest set of ecosystem partners 16

Are you aware 17

vcloud Network and Security Demo 18

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback