Secure Your Network with Micro-Segmentation

Deliver intrinsic security for applications in private and public cloud environments by allowing known traffic flows—and disallowing everything else. Block unauthorized lateral movements by enabling VMware NSX micro-segmentation, and then define and enforce network security policies consistently on any workload hosted anywhere in your environment. Do it all from a single management pane: lock down critical apps, create a logical DMZ in software, and reduce the attack surface of your virtual desktop environment.

Introduction to VMware NSX Security and Micro-Segmentation Video

Video Play Icon
(2:01)

Strengthen Defenses with Granular Protection

Secure critical workloads and environments with granular micro-segmentation protection, stateful Layer 7 controls, and dramatically simplified management.

Elevate Intrinsic Security

Elevate Intrinsic Security

Organizations are effectively protecting critical workloads inside the perimeter firewall with micro-segmentation.

Shield Your Apps with Consistent, Intrinsic Security

Slash Policy Discovery Time

Accelerate policy generation with automated app discovery, recommendations for groups and segmentation rules, and intuitive workflows for iterative planning — all driven by the unique visibility NSX has into network traffic and workload behavior.

Extend to Stateful L7 and Beyond

Go beyond basic Layer 4 port blocking policies to a complete stack of stateful Layer 7 firewall controls. Then add NSX Distributed IDS/IPS, an advanced threat detection engine purpose-build to detect lateral threat movements across multi-cloud environments.

Enjoy Consistent Policy Enforcement

Stop managing disparate policies across your environment. Enforce network security policies that span multi-data-center and hybrid cloud environments to secure traffic between VMs, containers, bare metal servers, and public clouds, globally.

Provide Automated Security Policies

Leverage a dynamic object-based policy model that automatically keeps policies up to date from provisioning through application and workload lifecycles — simplifying management, automating incident response, and eliminating stale policies.

Spotlight on Network Micro-Segmentation 

Interfaith Medical Enhances Data and Application Security

Interfaith Medical Center Protects Critical Patient Data

Interfaith Medical Center bolsters application and network security to better safeguard patient data.

Hutto Independent School District Embraces Next-Gen Security

Hutto ISD solved its scalability and security challenges by combining vSphere and NSX.

Read the Case Study

Midsize Enterprises: Drive Security While Meeting Compliance Requirements

Leverage a single solution for network virtualization and micro-segmentation.

Download White Paper

Enable Zero Trust with Built-In App Security

Leverage your existing virtualization infrastructure to shrink your application attack surface.

Download Tech Brief

What Are the Key Use Cases for Micro-Segmentation?

Protect Critical Applications

Prevent the spread of threats by blocking lateral movement between applications and workloads with micro-segmentation using NSX. Ensure that policies stay up-to-date automatically as applications evolve, and enable rapid and granular responses to incidents.

Simplify Operations with Deep Visibility

Enable faster iteration on policy definition and incident response with hierarchical application topology maps. Easily drill-down from high-level applications to a detailed context for each workload, including an inventory of every end-point and its traffic flows.

Secure Virtual Desktop Environments

Block lateral movement between VMs by enforcing security policies based on user identity and context, down to the RDSH session level. Eliminate the cost and operational complexity of third-party load balancers, by using software load balancing in NSX to manage VDI traffic.

Rely on DMZs in Software

Create and manage DMZs, application environments, and security zones for compliance entirely in software — reducing the need for additional costly physical appliances and vastly simplifying operations.

Expand Your Virtual Cloud Capabilities

Upgrade to Intrinsic Security

Get the only purpose-built internal firewall to secure east-west network traffic and protect workloads consistently across clouds.

More on Service-defined Firewall 

Build on a Foundation of NSX

Connect and protect applications across your data centers and clouds with virtualized networking and security via VMware NSX.

More on VMware NSX 

Get Recommended Security Policies

Simplify operationalizing micro-segmentation with rich application topology visualization and automated policy recommendations.

More on NSX Intelligence  

Leverage Global Visibility

Enhance your management of network traffic and security protections with 360 degree visibility across all your environments.

More on vRealize Network Insight