Month: September 2024

Microsegmentation using NSX Security Intelligence – Part 5 – Handling Broadmatch Rules

Posted in VMware NSXLeave a comment

Welcome to the final and Part 5 of the microsegmentation blog series using NSX Security Intelligence. In the previous article, we published the DFW policy and rulesets for the e-commerce application, met the requirements and closed the project with VxCorp. However, there is one more scenario that I would like to discuss before we wrap…… Continue reading Microsegmentation using NSX Security Intelligence – Part 5 – Handling Broadmatch Rules

Microsegmentation using NSX Security Intelligence – Part 4 – Flow Direction Aware Rules

Posted in VMware NSXLeave a comment

Welcome to Part 4 of the microsegmentation blog series using NSX Security Intelligence. We are currently at a stage where we have all the recommended policy rules fine-tuned as per VxCorp’s requirements, got the necessary infrastructure rules created, and are now ready to publish the recommended application policy and rulesets to DFW. If you missed…… Continue reading Microsegmentation using NSX Security Intelligence – Part 4 – Flow Direction Aware Rules

Microsegmentation using NSX Security Intelligence – Part 3 – Workload Classifications

Posted in VMware NSXLeave a comment

Welcome to Part 3 of the microsegmentation blog series using NSX Security Intelligence. In the previous article, we ran Security Intelligence recommendations for the e-commerce application, reviewed the recommendations output and modified the rulesets to make it more granular as per VxCorp’s requirements. However, we didn’t publish the policy, as we had infrastructure related rules…… Continue reading Microsegmentation using NSX Security Intelligence – Part 3 – Workload Classifications

Microsegmentation using NSX Security Intelligence – Part 2 – Policy Recommendations

Posted in VMware NSXLeave a comment

Welcome to Part 2 of the microsegmentation blog series using NSX Security Intelligence. In the previous article, we conducted workshops with the fictitious customer VxCorp, gathered their application microsegmentation requirements, performed flow analysis using NSX Security Intelligence and developed the microsegmentation architecture for the application. In this article, we will run Security Intelligence recommendations on…… Continue reading Microsegmentation using NSX Security Intelligence – Part 2 – Policy Recommendations

Microsegmentation using NSX Security Intelligence – Part 1 – Developing the Architecture

Posted in VMware NSXLeave a comment

Security Intelligence (formerly NSX Intelligence) is a powerful tool to visualize the security posture of the workloads and gather information about their flow insights in the NSX environment. Security Intelligence is hosted on NSX Application Platform (NAPP), and one of the pre-requisites to activate Security Intelligence is to have a successful NAPP deployment in place.…… Continue reading Microsegmentation using NSX Security Intelligence – Part 1 – Developing the Architecture