Upload
others
View
6
Download
0
Embed Size (px)
Citation preview
Confidential │ ©2019 VMware, Inc.
VMware NSXAmir Peter ComaeSenior Account Executive, Network & SecurityVMware
Confidential │ ©2019 VMware, Inc.
Your data center
Let’s Begin with How Things Are and How Things Should Be…
Confidential │ ©2019 VMware, Inc.
There Are Four Basic Things in a Typical Data Center Today.
There has been a lot of virtualization in the data center.
Except for one area…
Applications
Compute Storage Networking
Confidential │ ©2019 VMware, Inc.
Applications
Compute
Networking!
NetworkingStorage
The lack of networking virtualization is holding back your ability to:
Keep up with the pace of business
Secure your data centers
Control cost
Confidential │ ©2019 VMware, Inc.
WHAT IS THE BEST APP STRATEGY?
WHICH CLOUD STRATEGY?
DO WE WANT TO OWN IT?
COMPLIANCECYBER RISK
DECLINING BUDGETS
CAN WE BE COMPETITIVE?DevOps &
Containers
Remote locations
Confidential │ ©2019 VMware, Inc.
WHAT IF?
IT’S COMPELLING TO OWN IT
PUT APPS WHERE YOU WANT INDEPENDENT OF
CLOUD STRATEGY
CUT COSTS
GAIN CONTROL OF END DEVICES
RISK MITIGATION
ACCELERATE TIME TO VALUE
REDUCE OPERATIONAL COMPLEXITY
STATE OF THE ART COMPLIANCE
WHICH CLOUD STRATEGY?
Confidential │ ©2019 VMware, Inc. 7
Ready for the future
Reinvent Wide Area Networking (WAN)
Reinvent security
Expand the network
Value from the network
Rethink networking
Software-Defined Data Center
Nicira
Insights
Automation
Multi-Cloud andMulti-Hypervisor
App Security
Connectivity and Hybridity
Network Virtualization
NSX
Network Insight (Arkin)
vRealize Automation
NSX-T
AppDefense
Micro-Segmentation
vSphere Distributed Switch
NSX SD-WAN by VeloCloud
NSX Hybrid Connect
Container Frameworks Pivotal Container Service (PKS)
Public Cloud AWS, IBM and Azure
Virtual Cloud Network
VMware Advancing Business Transformation with Networking and Security in Software
Confidential │ ©2019 VMware, Inc. 8Confidential │ ©2018 VMware, Inc.
The Virtual Cloud Network
8Confidential │ ©2018 VMware, Inc.
NSX
Confidential │ ©2019 VMware, Inc. 9
SDCCISOFTWARED DEFINE CLOUD CENTRIC INFRASTRUCTURE
Confidential │ ©2019 VMware, Inc.
Intelligence in SoftwareOperational Model of VM for Data CenterAutomated Configuration & Management
HOW DO WE DO IT?
Intelligence in HardwareDedicated, Vendor Specific InfrastructureManual Configuration & Management
Compute, Network and Storage CapacityPooled, Vendor Independent, Best Price/Performance InfrastructureSimplified Configuration & Management
Data center virtualization layer
Software
Hardware
Confidential │ ©2019 VMware, Inc.
The Next Generation Networking Model
Switching
Routing
Firewalling/ACLs
Load Balancing
Network and Security Services now in the Hypervisor
Confidential │ ©2019 VMware, Inc.
The Power of Distributed Services
• High throughput rates
• East-west firewalling
• Unique visibility
Confidential │ ©2019 VMware, Inc.
A new approach to security
Confidential │ ©2019 VMware, Inc.
Confidential │ ©2019 VMware, Inc.
Doing different is more important than ever before
https://www.computerworld.dk/art/241196/hver-tredje-danske-virksomhed-ramt-af-hackerangreb-eller-virus-paa-et-aar?
En ud af tre af de danske virksomheder er over det seneste år blevet ramt af et digitalt angreb i form af et hackerangreb eller en computervirus.
Sådan lyder en af konklusionerne på en ny undersøgelse, der er udarbejdet af Dansk Industri (DI).
Confidential │ ©2019 VMware, Inc.
Billedet kan ikke vises.
Cyber Hygiene
Secure InfrastructureStorageNetwork ComputeDevicesUsers
Integrated Ecosystem
Choices?
CONFIDENTIAL 16
Confidential │ ©2019 VMware, Inc.
IT Spend Security Spend Security Breaches
Increasing IT spendIncreasing Security Spend
But can we follow?
We are trying! Continued security breaches show this model is not enough.
Confidential │ ©2019 VMware, Inc.
Cyber Security:
“Trust Everyone” to “Zero Trust”*
Confidential │ ©2019 VMware, Inc.
Firewall
802.1x
MDM
NAC
End point security
ACCESSEES- FTEs- CONTRACTORS- 3RD PARTIES- STUDENTS- CUSTOMERS
Confidential │ ©2019 VMware, Inc.
WEB
APP
DB
30% +
NORTH/SOUTH TRAFFIC
EAST/WEST TRAFFIC
70% +
Confidential │ ©2019 VMware, Inc.
Data Center Network Security is Insufficient
Micro-segmentationvia NSX
Internet
Traditional Approach
Internet
Perimeter-centric network security has proven insufficientand micro-segmentation is operationally infeasible in atraditional physical network environment
Confidential │ ©2019 VMware, Inc.
“TRUST EVERYONE”
WEB
APP
DB
70% +
NORTH/SOUTH TRAFFIC
EAST/WEST TRAFFIC
ACCESSEES- FTEs- CONTRACTORS- 3RD PARTIES- STUDENTS- CUSTOMERS
OPERATIONALLY INFEASIBLE
“ZERO TRUST”
NO. OF VMs = NN = 1,000 VMs
FINANCE100
H.R.50
“CASTLE” “HOTEL”
DISTRIBUTED FIREWALL
AUTOMATEOPERATEBUSINESS
950
900
VDI
Confidential │ ©2019 VMware, Inc.
AppDefenseService Defined Firewall
Confidential │ ©2019 VMware, Inc.
Confidential │ ©2019 VMware, Inc.
Confidential │ ©2019 VMware, Inc.
Confidential │ ©2019 VMware, Inc.
Confidential │ ©2019 VMware, Inc.
Confidential │ ©2019 VMware, Inc.
Driving value with our NSX partner ecosystem
Cloud Network Infrastructure
Networking & Security Services
Orchestration & Management
HCI PlatformsOperations & Visibility
vSANReady Node
BARE METAL
vRealize Automation
vCloud Director
vRealize Orchestrator VIO
Network Insight
Af hensyn til beskyttelse af personlige oplysninger har PowerPoint blokeret automatisk hentning af billedet.
Log Insight
Confidential │ ©2019 VMware, Inc.
NSX the strategic security platform going forward
VMware NSX
Confidential │ ©2019 VMware, Inc. 31
VMware Networking Customer and Partner Momentum
Approaching 10,000NSX customers
Broad AdoptionSmall-to-large enterprises
across all verticals
82%Of the Fortune 100 run NSX
70%Fortune Global 500 Telcos
Confidential │ ©2019 VMware, Inc.
Value
• Futureproof platform EXIT Strategy, On prem/Off prem workloads, Cloud broker position, Compliance in Clouds
• Adress an area wich have been neglected security wise and protection from spreading Micro segmentation
• Single strategic Security platform going forward with API for 3rd party integration Optimized security infrastructure
• Policy based infratructure to reduce complexity and manual process Reduce time and day 2 operation
• Prepared for A to Z automation and SDDC Compute (vCenter), Storage (vSAN) and Networking (NSX)
Confidential │ ©2019 VMware, Inc.
THANK YOU