Step Up to A Distributed IDS/IPS Solution

Elevate your security posture with an advanced threat detection engine purpose-built to detect lateral threat movement on east-west network traffic across multi-cloud environments. Leverage the unique distributed architecture and precise application context of NSX Distributed IDS/IPS to replace discrete appliances and achieve regulatory compliance.

Explore Intrinsic Security

Learn why enterprises are rethinking their security strategy and focusing on Intrinsic Security.

Build a Future Ready Network

Join us November 16 to learn how to modernize your network for better application performance, anywhere.

Benefit from Per Workload IDS/IPS

Gain Elastic Throughput

Scale inspection capacity automatically with IDS/IPS functionality built-in to each workload, thus eliminating hardware bottlenecks.

Simplify Your Network Architecture

Reduce network congestion and simplify network design by eliminating the need to hair-pin traffic to centralized appliances.

Reduce False Positives

Achieve more zero-false-positive workloads with curated rulesets and higher fidelity signature matches based on precise application context.

Improve Utilization of Compute Capacity

Re-use existing stranded compute capacity and eliminate the need for dedicated appliances.

How VMware IDS/IPS is Different

Distributed analysis to eliminate blind spots

Curated context-based signature distribution

Threat detection based on application context

Policy and state mobility for each workload

Spotlight on IDS/IPS  


An Overview of NSX Distributed IDS/IPS

NSX Distributed IDS/IPS is different from - and superior to - traditional appliance-based IDS/IPS.

Knock, Knock: Is This Security Thing Working?

SANS discusses the Intrinsic Security approach. Watch the webinar to understand what Intrinsic Security means for firewalls and IDS/IPS.

Explore Intrinsic Security

To Enable Zero Trust, Rethink Your Firewall Strategy

Forrester examines the way built-in, application-centric security can effectively protect east-west traffic. 

Read the Paper

Introducing VMware NSX Distributed IDS/IPS

NSX Distributed IDS/IPS is available now. Check out the blog post that accompanied the release of IDS/IPS with NSX-T 3.0.

Read the Blog

What Are the Key Use Cases for NSX Distributed IDS/IPS?

Easily Achieve Regulatory Compliance

Simply turn-on traffic inspection with a software-driven deployment model without needing to buy expensive appliances.

Virtualize Security Zones

Create and customize multiple virtual security zones for internal teams and partners without requiring physical separation of network.

Replace Discrete Appliances

Leverage NSX’s native IDS/IPS capabilities to replace traditional IDS/IPS appliances including standalone, firewall-based, or virtual host-based.

Virtually Patch Vulnerabilities

Enable wide-spread use of virtual patching for all workloads in the data center

Expand Your Virtual Cloud Capabilities

Upgrade to a Scale-out Internal Firewall

Secure east-west traffic with a purpose-built internal firewall, built-in to the hypervisor and distributed at every host.

More on Service-defined Firewall 

Get Recommended Security Policies

Simplify operationalizing micro-segmentation with rich application topology visualization and automated policy recommendations.

More on NSX Intelligence 

Build on a Foundation of NSX

Connect and protect applications across your data centers and clouds with virtualized networking and security via VMware NSX.

More on NSX