Deliver intrinsic security for applications in private and public cloud environments by allowing known traffic flows—and disallowing everything else. Block unauthorized lateral movements by enabling VMware NSX micro-segmentation, and then define and enforce network security policies consistently on any workload hosted anywhere in your environment. Do it all from a single management pane: lock down critical apps, create a logical DMZ in software, and reduce the attack surface of your virtual desktop environment.
Accelerate policy generation with automated app discovery, recommendations for groups and segmentation rules, and intuitive workflows for iterative planning — all driven by the unique visibility NSX has into network traffic and workload behavior.
Go beyond basic Layer 4 port blocking policies to a complete stack of stateful Layer 7 firewall controls. Then add NSX Distributed IDS/IPS, an advanced threat detection engine purpose-build to detect lateral threat movements across multi-cloud environments.
Stop managing disparate policies across your environment. Enforce network security policies that span multi-data-center and hybrid cloud environments to secure traffic between VMs, containers, bare metal servers, and public clouds, globally.
Leverage a dynamic object-based policy model that automatically keeps policies up to date from provisioning through application and workload lifecycles — simplifying management, automating incident response, and eliminating stale policies.
Interfaith Medical Enhances Data and Application Security
Interfaith Medical Center bolsters application and network security to better safeguard patient data.
Prevent the spread of threats by blocking lateral movement between applications and workloads with micro-segmentation using NSX. Ensure that policies stay up-to-date automatically as applications evolve, and enable rapid and granular responses to incidents.
Enable faster iteration on policy definition and incident response with hierarchical application topology maps. Easily drill-down from high-level applications to a detailed context for each workload, including an inventory of every end-point and its traffic flows.
Block lateral movement between VMs by enforcing security policies based on user identity and context, down to the RDSH session level. Eliminate the cost and operational complexity of third-party load balancers, by using software load balancing in NSX to manage VDI traffic.
Create and manage DMZs, application environments, and security zones for compliance entirely in software — reducing the need for additional costly physical appliances and vastly simplifying operations.