Tag Archives: micro-segmentation

First Impression – Using Nutanix’s HCI and Hypervisor (AHV)

Posted on March 20, 2020 by Humair

What is my first impression of using Nutanix’s HCI and Hypervisor (AHV)? Short answer – very easy to use, even for a first time user, and intuitive design with well thought-out integrations with other Nutanix products; love the one-click feature/service … Continue reading →

Posted in Hyper-converged infrastructure, Network Architecture, Network Security, Networking, Nuatnix, Nutanix, Nutanix, Nutanix, Nutanix, Security, Software Defined Storage (SDS), Storage, Technology, Virtualization and Cloud Computing | Tagged Acropolis Operating System, AHV, AOS, Calm, Categories, Category, Controller VM, CVM, Disaster Recovery, Flow, Flow Isolation Policy, Flow Micro-segmentation, Flow Microsegmentation, Flow Security Policies, HCI, hyper-converged infrastructure, hypervisor, Karbon, Leap, micro-segmentation, microsegmentation, Networks, Nuatnix One-Click, Nutanix, Nutanix Acropolis Operating System, Nutanix AHV, Nutanix AOS, Nutanix Calm, Nutanix Categories, Nutanix Category, Nutanix Controller VM, Nutanix CVM, Nutanix Disaster Recovery, Nutanix Flow, Nutanix Flow Isolation Policy, Nutanix Flow Security Policies, Nutanix HCI platform, Nutanix Hypervisor, Nutanix Karbon, Nutanix Leap, Nutanix Micro-segmentation, Nutanix Microsegmentation, Nutanix Networks, Nutanix Objects, Nutanix Prism, Nutanix SDS, Nutanix Security, Nutanix Software Defined Storage, Nutanix Storage Container, Nutanix Storage Containers, Nutanix Subnets, Nutanix VMs, Nutanix Xi Cloud Services, Objects, Prism, Prism Central, Prism Element, SDS, security, Security Policies, software defined storage, Storage Container, Storage Containers, Subnets, virtual machines, vms, Xi Cloud Services | Leave a comment

NSX-V 6.3: Cross-VC NSX Security Enhancements

Posted on February 10, 2017 by Humair

I also published this blog post about new Cross-VC NSX Security Enhancements in NSX-V 6.3 on the VMware NSX Network Virtualization Blog on February 10, 2017. The full blog post is provided below and can also be seen on … Continue reading →

Posted in Network Architecture, Network Security, Networking, Security, Technology, Virtualization and Cloud Computing, VMware, VMware, VMware | Tagged ApplyTo, Cross-VC, Cross-VC NSX, Cross-VC NSX multi-site, Cross-VC NSX multi-site security, Cross-VC NSX security, Cross-VC NSX Security enhancements, Cross-vCenter, Cross-vCenter NSX, Disaster Recovery, DR, micro-segmentation, micro-segmentation across site, multi-site, multi-site security, Multisite, Network Virtualization, NSX, NSX 6.3, NSX Active/Active, NSX Active/Standby, NSX security, NSX VM Name, NSX-V, NSX-V 6.3, primary NSX Manager, secondary NSX Manager, security, Security Tags, UDFW, UDLR, ULS, Unique ID Selection Criteria, Universal Distributed Firewall, Universal Distributed Logical Router, Universal Logical Switch, Universal Section, Universal Security Group, Universal Security Group with New Matching Criteria, Universal Security Tags, UUID, Virtual Machine Instance UUID, virtualization, VM Name, VMare NSX-v 6.3, vmware, VMware NSX, VMware NSX Network Virtualization Blog, VMware NSX security | Leave a comment

Multi-site with Cross-VC NSX and Palo Alto Networks Security [Video]

Posted on September 20, 2016 by Humair

I also published this blog post on the VMware NSX Network Virtualization Blog. The full blog post is provided below and can also be seen on the VMware NSX Network Virtualization Blog site.

Posted in Labs, Network Architecture, Network Security, Networking, Palo Alto Networks, Security, Technology, Virtualization and Cloud Computing, VMware, VMware, VMware, VMworld 2016 | Tagged Centralized Management, Centralized NSX Security Management, Consistent Security Across vCenter Domains, Consistent Security Across vCenter Sites, consistent security and micro-segmentation across sites, Cross-VC NSX demo video, Cross-VC NSX Disaster Recovery, Cross-VC NSX DR, Cross-VC NSX Enhanced Disaster Recovery, Cross-VC NSX Enhanced DR, Cross-VC NSX security, Cross-VC NSX security policies, Cross-VC NSX Universal Distributed Firewall, Cross-VC NSX Universal Distributed Firewall Rules, demo video, Ease of Security Automation Across vCenter Domains, Ease of Security Automation Across vCenter Sites, Enhanced Disaster Recovery, Enhanced Disaster Recovery Use Case, enhanced workload mobility, micro-segmentation, microsegmentation, multi-site, multi-site security, Multisite, Multisite Networking and Security with Cross-vCenter NSX: Part 2 [NET7861R], multisite security, NSX Centralized Management, NSX Network Introspection, NSX security, NSX security policies, NSX Universal Distributed Firewall, Palo Alto Networks, Palo Alto Networks Panorama, Palo Alto Networks SVM, Palo Alto Panorama, Palo Alto's Panorama, Panorama, primary NSX Manager, security, Security Automation, security grouping objects, Security Policies Follow the Workloads, Third Party Security, third party security services, UDFW, UDFW Rules, ULS, Universal Distributed Firewall, Universal distributed firewall rules, Universal IP Sets, Universal Logical Switch, Universal MAC Sets, Universal Security Groups, Universal Service Groups, Universal Services, vmware, VMware Cross-VC NSX, VMware Cross-VC NSX Demo Video, VMware Cross-VC NSX security, VMware Cross-VC NSX Security Policies, VMware Cross-vCenter NSX, VMware NSX, VMware NSX logical networking and security, VMware NSX Network Introspection, VMware NSX security, VMware NSX security policies, VMware NSX Universal Distributed Firewall, VMware NSX-V, VMware VMworld 2016, VMworld 2016, VMworld 2016 Sessions for Multi-Site with Cross-VC NSX, Workload Mobility | Leave a comment

Multi-site with Cross-VC NSX: Consistent Security and Micro-segmentation Across Sites [Video]

Posted on September 1, 2016 by Humair

I also published this blog post about the security benefits of a multi-site Cross-VC NSX solution on the VMware NSX Network Virtualization Blog. The full blog post is provided below and can also be seen on the VMware NSX Network … Continue reading →

Posted in Events, Labs, Network Architecture, Network Security, Networking, Security, Technology, Virtualization and Cloud Computing, VMware, VMware, VMware, VMworld 2016 | Tagged Centralized Management, Centralized NSX Security Management, Consistent Security Across vCenter Domains, Consistent Security Across vCenter Sites, consistent security and micro-segmentation across sites, Cross-VC NSX demo video, Cross-VC NSX Disaster Recovery, Cross-VC NSX DR, Cross-VC NSX Enhanced Disaster Recovery, Cross-VC NSX Enhanced DR, Cross-VC NSX security, Cross-VC NSX security policies, Cross-VC NSX Universal Distributed Firewall, Cross-VC NSX Universal Distributed Firewall Rules, demo video, Ease of Security Automation Across vCenter Domains, Ease of Security Automation Across vCenter Sites, Enhanced Disaster Recovery, Enhanced Disaster Recovery Use Case, enhanced workload mobility, micro-segmentation, microsegmentation, multi-site, multi-site security, Multisite, Multisite Networking and Security with Cross-vCenter NSX: Part 2 [NET7861R], multisite security, NSX Centralized Management, NSX security, NSX security policies, NSX Universal Distributed Firewall, primary NSX Manager, security, Security Automation, security grouping objects, Security Policies Follow the Workloads, third party security services, UDFW, UDFW Rules, ULS, Universal Distributed Firewall, Universal distributed firewall rules, Universal IP Sets, Universal Logical Switch, Universal MAC Sets, Universal Security Groups, Universal Service Groups, Universal Services, vmware, VMware Cross-VC NSX, VMware Cross-VC NSX Demo Video, VMware Cross-VC NSX security, VMware Cross-VC NSX Security Policies, VMware Cross-vCenter NSX, VMware NSX, VMware NSX logical networking and security, VMware NSX security, VMware NSX security policies, VMware NSX Universal Distributed Firewall, VMware NSX-V, VMware VMworld 2016, VMworld 2016, VMworld 2016 Sessions for Multi-Site with Cross-VC NSX, Workload Mobility | Leave a comment

VMware NSX Service Composer: Advanced Security & Micro-segmentation

Posted on March 16, 2015 by Humair

In a prior blog, Firewalling & Micro-segmentation with VMware NSX, I discussed some of the basics of firewalls and micro-segmentation with VMware NSX. In this blog, I’ll introduce how security groups via NSX Service Composer can be used with VMware … Continue reading →

Posted in Dell, Dell EqualLogic, Dell Force10, Dell PowerEdge Blade Servers, Dell PowerEdge Rack Servers, iSCSI, Labs, Network Architecture, Network Security, Networking, Security, Servers, Storage, Technology, Virtualization and Cloud Computing, VMware, VMware | Tagged advanced security, advanced security policies, container, converged network, DCB, Dell, Dell DCB iSCSI, Dell end-to-end converged infrastructure, Dell iSCSI, Dell MXL, Dell S4810, Dell S6000, Dell VMware NSX, Dell VMware NSX Architecture, Dell VMware NSX design, Dell VMware NSX Guide, Dell VMware NSX RA, Dell-VMware NSX Reference Architecture, dynamic membership, end-to-end converged infrastructure, ESXi, firewall, firewall rules, iSCSI, iSCSI converged network, logical switch, micro-segmentation, Micro-segmentation with VMware NSX, microsegmentation, microsegmentation with VMware NSX, MXL, NSX, NSX advanced security policies, NSX Distributed Firewall, NSX firewall, NSX firewall rules, NSX logical switch, NSX partners, NSX security group container, NSX Security Group dynamic membership, NSX Security Groups, NSX security policy, NSX service chaining, NSX Service Composer, NSX Service Composer advanced security policies, NSX Service Composer Canvas View, NSX Service Composer container, NSX Service Composer Security Group, NSX Service Composer security policy, NSX-V, Palo Alto, Palo Alto Networks, Palo Alto Panorama, Palo Alto's Panorama, Panorama, S4810, S6000, security, security group container, Security Group dynamic membership, Security Groups, security policy, service chaining, Service Composer, Service Composer advanced security policies, Service Composer Canvas View, Service Composer container, Service Composer Security Group, Service Composer security policy, symantec, virtual machines, vms, VMware achitecture, VMware design, VMware ESXi, VMware logical switch, VMware NSX, VMware NSX advanced security policies, VMware NSX architecture, VMware NSX design, VMware NSX Distributed Firewall, VMware NSX firewall rules, VMware NSX logical switch, VMware NSX partners, VMware NSX security group container, VMware NSX Security Group dynamic membership, VMware NSX Security Groups, VMware NSX security policy, VMware NSX service chaining, VMware NSX Service Composer, VMware NSX Service Composer advanced security policies, VMware NSX Service Composer Canvas View, VMware NSX Service Composer container, VMware NSX Service Composer Security Group, VMware NSX Service Composer security policy, VMware NSX-V, VMware NSX-v design, VMware NSX-vSphere design, VMware Security Groups, VMware Service Composer, VMware virtual machine, VMware VM, VMware vSphere, vSphere | Leave a comment

Security, Art of Hacking, & the Worst 2014 Security Breaches

Posted on March 1, 2015 by Humair

Security is hot; no doubt about it. Consider the fact that between 2011 and 2013, venture investors put nearly $3 billion into cyber security companies, resulting in new funding for some 300 firms (Source: Thomson Reuters). Worldwide security software revenue … Continue reading →

Posted in Business, Hacks, Labs, Linux, Network Architecture, Network Security, Networking, Operating Systems, Programming Languages, Python, Red Hat Linux Enterprise, Security, Technology, Technology, Tips, Tips & Tricks, Windows | Tagged backdoor, backdoor access, backdoor script, brute-force, cyber security, data breach, DOS, employee negligence, Experion, firewall, firewall misconfiguration, Gartner, Global Cybersecurity Spending, Goodwill industries, Goodwill Industries data breach, Goodwill industries security breach, hacked Linux, hacked pc, hacked target, hacker, hacking, Home Depot, Home Depot data breach, Home Depot security breach, host scanning, JP Morgan, JP Morgan data breach, JP Morgan security breach, linux, malicious code, malware, malware detection software, malware software, malware software detection, Michael Bruemmer, Michaels Data Breach, Michaels security breach, micro-segmentation, microsegmentation, negligence, Neiman Marcus data breach, Neiman Marcus security breach, network security, novice hackers, packet injection, perl, Point-of-sale, Point-of-sale system, Point-of-sale systems, Point-of-sales system, Point-of-sales systems, Ponemon Institute, POS, POS systems, proxy server, Python, Python client, Python hacking, Python hacks, Python server, RedHat, RedHat Linux, RedHat Linux Enterprise, security, security breach, security exploitation, security infrastructure, security perimeter, security software, sensitive information, social engineering, Sony, Sony data breach, Sony security breach, sophisticated hackers, spyware, spyware detection software, spyware software detection, SQL injection, Target, Target data breach, Target security breach, traffic sniffing, trojan, unpatched Windows, unpatched Windows flaw, vi, Visa, windows, Windows flaw | Leave a comment

Firewalling & Micro-segmentation with VMware NSX

Posted on December 8, 2014 by Humair

One very exciting and strong use case for VMware NSX is advanced security. VMware NSX has some inherent security features and also allows for 3rd party security appliance integration. In this blog, I’ll briefly discuss the firewalling and micro-segmentation capabilities … Continue reading →

Posted in Dell, Dell Force10, Labs, Network Architecture, Network Security, Networking, Virtualization and Cloud Computing, VMware | Tagged centralized firewall, Dell, Dell Networking, Dell Networking S4810, Dell Networking S4810 switch, Dell Networking S6000, Dell Networking S6000 switch, Dell S4810 switch, Dell S6000, Dell S6000 switch, Dell VMware NSX, DFW, DFW logging, distributed firewall, Distributed Firewall logging, east-west traffic, Edge Services Gateway, ESG, ESXi, ESXi hypervisor, firewall, firewall logging, firewall virtual appliance, firewall virtual appliances, micro-segmentation, Micro-segmentation with VMware NSX, microsegmentation, microsegmentation with VMware NSX, network segmentation, North-South traffic, NSX DFW, NSX DFW logging, NSX Distributed Firewall logging, NSX Edge Services Gateway, NSX ESG, NSX Security Groups, NSX-V, NSX-vSphere, One-Arm Firewall, perimeter-centric, perimeter-centric security, RBAC, Role Based Access Control, S4810 switch, S6000, S6000 switch, SDDC, security, security appliance, Security Groups, Security Tag, segmentation, Software Defined Data Center, traditional firewall, traffic tromboning, vCenter, VM Name, vmware, VMware DFW, VMware Distributed Firewall, VMware ESXi, VMware ESXi hypervisor, VMware NSX, VMware NSX DFW, VMware NSX DFW logging, VMware NSX Distributed Firewall, VMware NSX Distributed Firewall logging, VMware NSX Edge Services Gateway, VMware NSX ESG, VMware NSX firewall logging, VMware NSX-V, VMware NSX-vSphere, VMware vCenter | 4 Comments