New Enhancements to the Network and Security Fabric in VMware Cloud Foundation 5.0

 VMware Cloud Foundation is VMware’s comprehensive software-defined infrastructure (SDI) platform for deploying and managing private and hybrid clouds. As part of the newest release of VMware Cloud Foundation, we are announcing the integration of NSX 4.1.0 and its features that enhance the user and administrator experience.

NSX 4.1.0 adds a variety of new features and enhancements for virtualized networking and security which can be leveraged within a VMware Cloud Foundation 5.0 deployment.  Important updates include:



Summary of NSX 4.1.0 Highlights

  • VMware Cloud Foundation 5.0 with NSX 4.1.0 support comes with platform enhancements such as multi-tenancy for networking resources and NAPP 4.0.1.1
  • Antrea is a Kubernetes-native project that implements the CNI and Kubernetes Network Policy to provide network connectivity and security for pod workloads. NSX 4.1.0 introduces new container networking and security enhancements which allows firewall rules to be created with a mix of VMs and Kubernetes Ingress/egress objects.
  • Additional Layer 3 networking services are made available to the VMware Cloud Foundation Fabric through the deployment of inter-VRF routing.
  • Better online diagnostic system that contains debugging steps for troubleshooting specific issues.

Benefits of Leveraging NSX 4.1.0




1.) Improved Networking and Security Enhancements

VMware Container Networking with Antrea offers users signed images and binaries, along with full enterprise support for Project Antrea. VMware Container Networking integrates with managed Kubernetes services to further enhance Kubernetes network policies. It also supports Windows and Linux workloads on Kubernetes across multiple clouds.

NSX 4.1.0 introduces new container networking and security enhancements which allow firewall rules to be created with a mix of VMs and Kubernetes Ingress/egress objects. Additionally, dynamic groups can be created based on NSX tags and Kubernetes labels. This improves the usability and functionality of using NSX to manage Antrea clusters. 

Users can leverage the ability to create firewall policies that allow and/or block traffic between different Virtual Machines and Kubernetes pods in one single rule. A new enforcement point is also introduced to include all endpoints and the correct apply-to is determined based on the source and destination group member targets. 

2.) Better Defense Against Cyberattacks with NDR Functionality

As network attacks become more and more common, it becomes increasingly important to leverage the newest features in terms of security. By deploying NSX 4.1.0 as part of VMware Cloud Foundation 5.0 new Distributed Firewall capabilities together with new NDR features.

Network Detection and Response technology enables the security team to visualize attack chains by condensing massive amounts of network data into a handful of “intrusion campaigns.” Network Detection and Response achieves this visualization by aggregating and correlating security events such as detected intrusions, suspicious objects, and anomalous network flows.

3.) Improved Online Diagnostic System

Online Diagnostics provides predefined runbooks that contain debugging steps to troubleshoot a specific issue. Troubleshooting playbooks or runbooks are a series of steps or procedures that are followed to diagnose and resolve issues in a system or application. They are designed to provide a structured approach to troubleshooting and help ensure that issues are resolved quickly and effectively.

These runbooks can be invoked by API and will trigger debugging steps using the CLI, API and Scripts. Recommended actions will be provided post debugging to fix the issue and the artifacts generated related to the debugging can be downloaded for further analysis. Online Diagnostic System helps to automate debugging and simplifies troubleshooting. 


By leveraging NSX 4.1.0 as part of the VMware Cloud Foundation 5.0 release offers key updates and enhancements across network and security use cases for private, public, and multi-cloud, enabling you to continue accelerating the delivery of value to your organization.

Cheers..

For more info about NSX Network and Security, please refer VMware documentation.

Comments

Popular posts from this blog

How to migrate the N-VDS as the host switch to VDS 7.0 in NSX-T 3.x

vROPS appliances password remediation tasks failed from SDDC manager

How to Import/Register a VM into vRA portal