VMware NSX-T Data Center provides native full-stack networking and security for containerized workloads, consistent granular policy on a per-container basis, and integration across apps, platforms, hypervisors, sites, and clouds. This enables native container-to-container L3 networking, micro-segmentation of the containerized workloads that comprise microservices, and end-to-end visibility of networking and security policy across both traditional and new application frameworks.
NSX Data Center treats containers like any other endpoint, enabling container-to-container L3 networking via the container networking interface (CNI), rather than relying on NAT for VMs that are wrapped around containers.
NSX Data Center provides visibility functions like Traceflow, enabling the following of network traffic between any endpoints, including container-to-container communication. This also allows for robust troubleshooting because it shows where in the path a packet is dropped when the connection fails.
NSX Data Center enables micro-segmentation down to the level of individual containers using the distributed firewall, creating secure microservices for cloud-native applications.