Escolar Documentos
Profissional Documentos
Cultura Documentos
3
Server virtualization alone
is not the endgame for data
center transformation. The
goal for enterprises should be
a software-defined data center
(SDDC). This requires not only
virtual machines (VMs) but also
virtual storage, all connected
by virtual networks. Only
then will enterprises realize
true transformation fueled
by service automation, rapid
instantiation and security
microsegmentation.
4
Network Virtualization
Holds the Key to SDDC
Virtual machines allow enterprises to deploy more applications
on a single server, but they don’t make it easier to provision,
secure or optimize those applications. For that to happen,
enterprises need to virtualize network services such as
firewalls, load balancing, routing/switching and service
chaining. Network virtualization allows IT departments to
decouple these network services from hardware and deliver
them through a single layer of software-based control.
5
To understand the value of network virtualization, applications move. In a virtualized network, however,
let’s look at a data center featuring VMs within a security and network policies can be applied directly to
traditional network infrastructure versus one with a the application rather than the VM. As an application
fully virtualized network environment. In a traditional moves to a different VM, the network policies follow
network infrastructure, network resources are it, creating a seamless experience that can be easily
provisioned manually for each VM. When an application customized in near real time or even automated based
moves to a different VM, its security and policy on various factors such as network traffic conditions.
profiles have to be manually updated for the new Furthermore, when an application is decommissioned,
machine. This is not only a time-consuming process, the network services can automatically be
but can introduce security and performance issues as decommissioned along with the VMs.
Toplogy Independence
6
Improving on
Success
Amazon, Google and Microsoft operate some of the
most powerful and advanced data centers in the
world. To operate effectively at such an enormous
scale, their data centers leverage a software-
defined architecture where servers, network and
storage have all been virtualized to deliver optimal
efficiency, scalability and security.
7
Network virtualization isn’t a separate
journey. It’s part of the same journey
begun with virtual machines. Using
the legacy network infrastructure and
hypervisor environment they have today,
enterprises can virtualize their network
services to realize greater scales of
efficiency, security and speed. The path
to that network nirvana begins with
VMware NSX.
8
Change Nothing, VMware NSX is a network
virtualization solution that decouples
Change Everything
network services from your existing
network infrastructure, creating a
software-defined network services
layer that can be applied virtually to
applications across all your virtual
machines. Network load balancing,
routing, security and other network
provisioning services are managed
as virtualized resource pools, using
the same vSphere hypervisor that
manages your VM environment. With
NSX, enterprises can change the way
they provision network services for
the better, without changing their
existing network infrastructure or
their hypervisor solution.
9
NSX Reason #1:
Boost Your Data
Center’s Agility
Let’s go back to those big cloud providers
we mentioned earlier: Amazon, Google,
Microsoft. Can you think of something else
they have in common? Your applications. If
your enterprise is like most, your internal IT
consumers are already using the big cloud
providers to host some of their applications.
10
How do enterprises compete with the
big cloud providers? By using the same
underlying technology: a virtualized
data center. VMware’s NSX allows you to
easily shift data center resources to new
applications or projects as needed. You can
apply existing provisioning rules to secure
and optimize the application, or create new
provisioning rules and apply them once
for each application instance across your
VM environment. When an application
instance moves to a new VM, the network
services move with it: no need to change
the VM’s security settings or re-provision
the network policies.
11
NSX Reason #2:
Boost Your Data Center’s Efficiency
Historically, enterprises have looked at their enterprises are beginning to see IT as a single
data center as a sum of its parts. There was resource rather than a series of different
networking, servers and storage, each with parts. For example, enterprises are now
its own architecture and a team to manage buying hyperconverged infrastructure that
it. This approach naturally led to complexity, combines storage and servers in a single box.
both in how data centers were built and how And they want the same kinds of efficiency on
they were run. With the advent of the cloud, the operational side of their data center.
Firewalling
Load Balancing
Switching
Routing
12
As server, network and storage
technologies physically come
together in the SDDC, it no
longer makes sense to manage
these technologies separately.
Enterprises are creating hybrid,
cross-functional and geo-
independent IT teams with shared
skillsets that can support all three
technologies as a single, unified
team. This unified approach
improves collaboration, accelerates
decision making and drives more
efficiency. At the same time,
enterprises don’t want to waste
valuable IT skills on operational
tasks that can be automated,
preferring to use IT to drive
business revenue through new
technology innovations.
13
Isolation and NSX Reason #3:
Boost Your Data
Segmentation
Center’s Security
Nearly every enterprise uses perimeter-based
firewalls as part of their security strategy.
In this age of advanced persistent threat,
Unit-level Trust /
however, hardware-based or even virtualized
Least Privilege
perimeter firewalls cannot completely protect
your network against data exfiltration or
ransomware. To accomplish that, enterprises
need to have lateral protection between
servers and even between VMs on the
same server. Unfortunately, it’s simply not
practical to implement a dedicated firewall
for every server because of the provisioning
Ubiquity and complexities, latency and economics.
Centralized Control
14
How can enterprises achieve lateral
security in their network? With NSX’s
microsegmentation capabilities. NSX
Secure User
allows enterprises to adopt a zero-trust
Environments
policy in their network by introducing
software-based firewalls not only on every
VM, but also on every application within
the VM. This microsegmentation creates
a honeycombed effect in the network
that prevents cybercriminals and hackers
from moving laterally within the network.
So, even if the network is breached, bad
agents are contained; they can’t navigate
through your network to cherry-pick for
confidential data or encrypt large pools of
data to be held for ransom.
15
What’s the
Next Step?
When you’re ready to take the next step
in your virtual data center journey, Rolta
AdvizeX is here to help. We’re one of a
small group of elite NSX partners in the
world, having earned VMware’s SDDC
Partner of the Year Award in 2014 and its
Global Professional Services Partner of
the Year Award in 2016. We’re experts in
all phases of data center transformation,
from cloud technologies to virtualization
and beyond.
16
About Rolta AdvizeX
Since 1975, Rolta AdvizeX has been a provider of advanced information
technology solutions that enable optimal business performance.
Recognized for technical innovation and excellence, Rolta AdvizeX designs,
implements and manages integrated solutions from the industry’s best
strategic business partners.
www.advizex.com