1. Product Overview
  2. FAQ
  3. Resources

Registration Is Now Live for VMware Explore

Discover the center of the multi-cloud universe August 29 – September 1.

REGISTER NOW

VMware Contexa, the VMware Threat Intelligence Cloud

VMware Contexa™ sees what others don’t, powering VMware Security to stop threats others can’t.

SEE MORE

Gain East-West Protection Without Complexity

Enable your security team to respond more effectively to threats across your data centers with VMware’s Distributed IDS/IPS solution.NSX Distributed Firewall includes a comprehensive set of detection and prevention capabilities, including Distributed IDS/IPS. Leverage its unique architecture and precise app context to replace discrete appliances and gain operational simplicity.

Reduce False Positives

Reduce False Positives

Achieve more zero-false-positive workloads with curated rulesets and higher-fidelity signature matches based on precise application context.

Gain Elastic Throughput

Gain Elastic Throughput

Scale inspection capacity automatically and eliminate hardware bottlenecks via IDS/IPS functionality built-in to each workload.

Simplify Your Network Architecture

Simplify Your Network Architecture

Reduce network congestion and simplify network design by eliminating the need to hair-pin traffic to centralized appliances.

Improve Utilization of Compute Capacity

Improve Utilization of Compute Capacity

Re-use existing stranded compute capacity and eliminate the need for dedicated appliances.

Read the Technical White Paper

Use Cases

Identify Threats

Leverage native IDS/IPS capabilities within NSX to replace traditional IDS/IPS appliances, including standalone, firewall-based, or virtual host-based.

Virtually Patch Vulnerabilities

Utilize IDS/IPS to enable wide-spread use of virtual patching for all workloads in the data center.

Virtualize Security Zones

Create and customize multiple virtual security zones for internal teams and partners without requiring physical separation of the network.

Identify Threats
Patching
Zones
Compliance

Related Resources

IDS/IPS Technical Overview

Distributed IDS/IPS in the data center operates under different constraints than a traditional IDS/IPS. Watch the lightboard video to understand why.

WATCH THE VIDEO

Is Your Security Plan Working?

Learn why enterprise networks continue to be breached despite significant spending on security. Get started with intrinsic security in your network using data you already have.

READ THE WHITE PAPER
ALL RESOURCES

Related Products

Expand your data center security capabilities with network detection and response, IDS/IPS, and more.

NSX Distributed Firewall

Layer 7 internal firewall

NSX Sandbox

Complete malware analysis

NSX Network Detection and Response

AI-powered correlation of events across multiple detection engines

Frequently Asked Questions

NSX Distributed IDS/IPS is an application-aware intrusion detection system/intrusion prevention system (IDS/IPS) purpose-built for analyzing east-west traffic and detecting lateral threat movements.

NSX Distributed IDS/IPS uses an all-software distributed approach that moves traffic inspection out to every workload. It eliminates the need to hair-pin traffic to discrete appliances, ensuring comprehensive coverage without any blind spots.

Key capabilities of NSX Distributed IDS/IPS include:

  • Distributed analysis
  • Curated, context-based signature distribution
  • Application context-driven threat detection
  • Policy and state mobility
  • Automated policy lifecycle management

For full capabilities, see the solution overview.

Use cases for NSX Distributed IDS/IPS include:

  • Easily achieving regulatory compliance
  • Virtualizing security zones 
  • Replacing discrete appliances
  • Virtually patch vulnerabilities

The benefits of NSX Distributed IDS/IPS include:

  • Reduction in false positives
  • Simplified network architecture
  • Elastic throughput
  • Improvement in capacity utilization

Why VMware for Intrusion Detection/Prevention System?