Complete Data Center Security. No Network Changes

Traditional security approaches fail to adequately defend today’s modern data centers and workloads against lateral threats. Evolve to a simple, integrated software firewall that provides complete coverage for more visibility and context at a lower cost—all without making network changes.
No Network Changes

No Network Changes

Easily operationalize east-west firewalling by eliminating network changes and traffic hair-pinning for less. Reduce CapEx by up to 75%. 

No Blind Spots

No Blind Spots

Eliminate blind spots with complete visibility into network traffic and workloads. Automated threat intelligence provides authoritative context that is trustworthy, actionable and readily available. 

Consistent Policies Across Multi-Cloud

Consistent Policies Across Multi-Cloud

Apply consistent security policies across virtual, containerized and physical workloads. Simplify operations with policies that are automated to workload lifecycles and movements across any environment.

Zero Trust Inside the Data Center

Zero Trust Inside the Data Center

Achieve Zero Trust with micro-segmentation and workload security. Least privilege access ensures complete coverage for all applications and data.

Data Center Security Products

Harden your data center security posture with these VMware products.

NSX Service-defined Firewall

Rely on a distributed, scale-out internal firewall that is built on NSX, to secure east-west traffic across multi-cloud environments

NSX Advanced Threat Prevention

Network traffic analysis and intrusion prevention for NSX Service-Defined Firewall

Tanzu Service Mesh

Enterprise-class service mesh technology for microservices

NSX Distributed IDS/IPS

Software-based IDS/IPS solution

VMware Carbon Black Cloud Workload

Advanced security purpose-built for workloads

VMware Carbon Black App Control

On-premises app control and critical infrastructure protection

Frequently Asked Questions

Data center security protects data centers from threats, attacks and unauthorized access. This includes network security that protects all internal traffic with firewalls and inspects allowed traffic to block lateral movement of threats; and workload security to harden, detect, and prevent threats on servers. 

Zero Trust architecture in the data center is designed to prevent data breaches and limit internal lateral movement. The strategy assumes that an attacker is present in the environment, rather than assuming resources within the environment should be trusted. Therefore, the system trusts no one on the network and distrusts all traffic unless a security policy explicitly allows it. 

An internal firewall is a data center security solution designed to protect a network from attacks that have already gotten past the perimeter. East-west security is hardened by minimizing the attack surface using segmentation and intelligent automation to deploy and update security policies. 

Securing all or even most east-west traffic is often viewed as too complicated, expensive and time-consuming. However, a built-in, software-based approach can make it easier and more cost effective to operationalize better security across any environment. 

Traditional perimeter firewalls are built for the perimeter. Once the perimeter is breached, they do little to secure east-west traffic. An internal firewall, such as the Service-defined Firewall, is purpose-built to defend lateral movement and offer complete visibility into east-west traffic.

With no physical network changes required to implement a distributed, software-based internal firewall and advanced IDS/IPS, you can deploy data center security in as little as four weeks. 

Related Resources

To Enable Zero Trust, Rethink Your Firewall Strategy

See why enterprises are rethinking their firewall strategy and focusing more on securing east-west network traffic.

Four Steps to Secure the Data Center

Examine a four step approach vmware customers use to continuially improve their data center security over time.

Internal Firewalls for Dummies

Learn how internal firewalls help you secure east-west network traffic to prevent lateral movements. 

Ready to Get Started?