Unlock the value of any cloud and accelerate the delivery of modern applications with VMware Cloud.
Accelerate modern app operations with network and security virtualization for WAN, data center and cloud.
Enable any employee to work anywhere, anytime with seamless employee experiences.
Leverage your infrastructure across any app, any cloud and any device for intrinsic security at every layer.
Explore tailored solutions for your application framework, cloud infrastructure and security architecture.
Build, run, manage, connect and protect all of your apps, anywhere with a digital foundation built on VMware.
Get complete coverage with up to 20Tbps firewalling per SDDC.
Lower CapEx relative to traditional firewall appliances.
Lower OpEx, with no network changes and automated policies.
Replace multiple appliance-based solutions and radically simplify firewall deployment and operations by eliminating changes to the network and avoiding traffic hair-pinning.
Get unmatched visibility into your network and unrivaled workload context to identify and block threats, while remaining isolated from the attack surface.
An API-driven, object-based policy model delivers policy recommendations, automates policy mobility and ensures new workloads automatically receive appropriate security policies.
Achieve agile security via consistent firewall policies across multiple environments. Write your policy once and automatically enforce it everywhere.
Gain visibility into traffic and easily create network segmentation by defining segments entirely in software—no need to change your network or hairpin traffic by deploying discrete appliances.
Easily create, enforce, and manage micro-segmentation policies with deep visibility and comprehensive security policy controls.
Detect and prevent malicious traffic with distributed IDS/IPS at every workload, allowing you to reduce operational burden by applying virtual patching to vulnerable workloads.
Leverage multiple advanced threat prevention techniques to detect intrusion attempts and malicious behavior from known and unknown malware and block threats from moving laterally across your network.
Network Segmentation
Zero Trust
Virtual Patching
Threat Prevention
The internal firewall and micro-segmentation capabilities of NSX Data Center enabled us to rapidly deliver on our CIO’s zero-trust initiative.
The inherent security on the NSX platform allows our developers and security experts to work together from the get-go, weaving cybersecurity into the very DNA of the network.
NSX has simplified the ability for us to segment those servers off into their own environment ... without having to make vast hardware purchases and additional firewalls and technologies.
Organizations can no longer rely on edge firewalls alone. Learn how internal firewalls provide better security for today’s complex data centers.
NSX Service-defined Firewall protects all east-west traffic with security intrinsic to the infrastructure, radically simplifying the security deployment model.
Bolted-on security solutions can’t deliver the scalability, flexibility and cost effectiveness needed by today. Understand why intrinsic security is key.
AI-powered network detection and response (NDR)
Software-based IDS/IPS solution
Network traffic analysis and intrusion prevention for NSX Service-defined Firewall
Distributed analytics engine native to NSX
NSX Service-defined Firewall is a distributed, scale-out internal firewall that protects all east-west traffic with security that’s intrinsic to the infrastructure, radically simplifying the security deployment model.
NSX Service-defined Firewall uses an intrinsic approach to security that's built into the hypervisor. It includes a stateful L4-L7 firewall, an intrusion detection/prevention system (IDS/IPS), network sandbox, and behavior-based network traffic analysis.
Key capabilities of NSX Service-defined Firewall include:
For full capabilities, see the datasheet.
Use cases for NSX Service-defined Firewall include:
Benefits of NSX Service-defined Firewall include:
