Welcome back!!! We are at Part 6 of the blog series on vDefend Security Services Platform and Security Segmentation. In the previous two chapters (Part 4 and Part 5), we onboarded two instances of the CRM application (CRM-Prod and CRM-Dev) as a full hierarchy import to SSP, published the inventory assets and foundational infrastructure and…… Continue reading vDefend Security Services Platform and Security Segmentation – Part 6 – Segmentation Monitoring and Policy Recommendations
vDefend Security Services Platform and Security Segmentation – Part 5 – Publishing Assets and Policies
Welcome back!!! We are at Part 5 of the blog series on vDefend Security Services Platform and Security Segmentation. In the previous chapter, we performed an application hierarchy ingestion and generated the recommendations for assets and policies. Now let’s start publishing the assets and policies and review the NSX objects that are created by the…… Continue reading vDefend Security Services Platform and Security Segmentation – Part 5 – Publishing Assets and Policies
vDefend Security Services Platform and Security Segmentation – Part 4 – Application Hierarchy Import
Welcome to Part 4 of the blog series on vDefend Security Services Platform and Security Segmentation. This chapter along with the subsequent six chapters will focus on application hierarchy imports to SSP and the DFW 1-2-3-4 approach for shared infrastructure services protection, environment / zone segmentation, application microsegmentation, NSX groups promotion, application scaling, application transitions,…… Continue reading vDefend Security Services Platform and Security Segmentation – Part 4 – Application Hierarchy Import
vDefend Security Services Platform and Security Segmentation – Part 3 – NSX Onboarding and Feature Activation
Welcome back!!! We are at Part 3 of the blog series on vDefend Security Services Platform and Security Segmentation. In this chapter we will onboard the NSX manager cluster to SSP and activate Security Intelligence and DFW Rule Analysis features. If you missed the previous chapters of this series, please check out from the links…… Continue reading vDefend Security Services Platform and Security Segmentation – Part 3 – NSX Onboarding and Feature Activation
vDefend Security Services Platform and Security Segmentation – Part 2 – Platform Deployment
Welcome to Part 2 of the blog series on vDefend Security Services Platform and Security Segmentation. Part 1 provided an overview of SSP and security segmentation journey covering the requirements, platform components, deployment topologies, segmentation planning and a short comparison between SSP and its predecessor NAPP. Here is the link to Part 1, in case…… Continue reading vDefend Security Services Platform and Security Segmentation – Part 2 – Platform Deployment
vDefend Security Services Platform and Security Segmentation – Part 1 – Introduction
NSX Application Platform (NAPP) and the automation appliance (NAPP-AA) is scheduled to be end of life by May 2026. If you recollect, we did a couple of blog series around NAPP and NAPP-AA previously, please check out if you are still interested: NAPP series: https://vxplanet.com/2023/05/03/nsx-4-1-application-platform-napp-part-1/ NAPP-AA series: https://vxplanet.com/2024/04/16/nsx-application-platform-automation-appliance-napp-aa-part-1-topology-and-appliance-deployment/ Now the question is, what is the…… Continue reading vDefend Security Services Platform and Security Segmentation – Part 1 – Introduction
vSphere Supervisor Networking with NSX and AVI – Part 10 – Zonal Supervisor with AVI Availability Zones
Welcome back!!! If you are reading this, Congratulations, you have reached the final and Part 10 of the month-long blog series on vSphere supervisor with NSX and AVI. This will be another interesting topic as we are going to deal with vSphere supervisor deployed across vSphere zones and also introduce a new feature in AVI…… Continue reading vSphere Supervisor Networking with NSX and AVI – Part 10 – Zonal Supervisor with AVI Availability Zones
vSphere Supervisor Networking with NSX and AVI – Part 9 – Multiple Supervisors on Dedicated NSX Transport Zones
Let’s continue our discussion around the topology for multiple vSphere supervisors with NSX and AVI. This is Part 9 and, in this article, we will discuss the second design option where each vSphere supervisor is prepared on a dedicated NSX overlay transport zone. If you missed the previous article where we discussed about multiple vSphere…… Continue reading vSphere Supervisor Networking with NSX and AVI – Part 9 – Multiple Supervisors on Dedicated NSX Transport Zones
vSphere Supervisor Networking with NSX and AVI – Part 8 – Multiple Supervisors on Shared NSX Transport Zone
Welcome back!!! I finally managed to scale out my home lab with an additional vSphere cluster to support the topologies for multiple vSphere supervisors with NSX and AVI. The following two chapters (Part 8 and Part 9) are going to be interesting as we discuss about vSphere supervisor topologies at scale covering two design options:…… Continue reading vSphere Supervisor Networking with NSX and AVI – Part 8 – Multiple Supervisors on Shared NSX Transport Zone
vSphere Supervisor Networking with NSX and AVI – Part 7 – vSphere Namespace with Dedicated T0 VRF Gateway
Welcome to Part 7 of the blog series on vSphere supervisor networking with NSX and AVI. This is the final vSphere namespace topology that we are going to discuss, where we have a dedicated T0 VRF gateway for the namespace. This topology is almost similar to our previous article with dedicated T0 gateways, but with…… Continue reading vSphere Supervisor Networking with NSX and AVI – Part 7 – vSphere Namespace with Dedicated T0 VRF Gateway
