Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Computer Networks
Uploaded by abdelmajid.karkouri

vCORE-NSX-Workshop-Presentation

advertisement 
SIMPLICITY DELIVERED.
ALWAYS ON.
vCORE Technology Partners
1355 N. Scottsdale Rd. #140
Scottsdale, AZ 85257
877.348.7714
www.vcoretec.com
NSX Lab – Intro &
Micro segmentation
Agenda
01
Introductions
05
Best Practices
02
NSX Basics
06
DFW Basics
03
vRNI Demo
07
NSX Lab:
DFW/Microseg
04
NSX Lab:
Getting Started
08
NSX-V vs NSX-T
Who Are We?
IT Solution/Services Provider
Outcome-focused:
IT Operations as
a Service –
US-based NOC
• Availability, scalability,
high performance,
resilience, agility
7:1 Engineer-tosales ratio
• Providing high levels of
expertise through
engineering
Tech Elite Award
2017, 2018, 2019
• Giving personalized
support to all of our clients
Proprietary and Confidential | vCORE Technology Partners | www.vcore.com
vCORE Pillars of Excellence
Cloud
Solutions
Modern
Infrastructure
Networking
Security
Define workloads
CI / HCI
Software Defined
Web-App Security
Choose a cloud
Data Protection
Virtual networks
Managed SOC
Migrate workloads
Software-Defined
SD-WAN
URL Filtering
Orchestration
Infrastructure
Next-gen Firewall
Identify Access
Automation
Hybrid Cloud
Wireless
Endpoint
FOUNDATIONAL SERVICES
ANALYSIS | DESIGN | PROCUREMENT | DELIVERY & INTEGRATION | IT OPERATIONS AS A SERVICE
Proprietary and Confidential | vCORE Technology Partners | www.vcore.com
IT Industry Recognition/Awards
Tech Elite 250 Award in 2017, 2018 & 2019 for deep technical
expertise & certifications
MSP 500 Award for demonstrated expertise in IT
Operations as a Service two years in a row
Inc. Magazine’s Fastest-Growing Companies (4
consecutive years)
CRN’s Solution Provider 500 Award for scale, reach and
capabilities
Inc. Magazine Best Workplaces 2017
One of 21 IT Solution Providers in the world
named a CRN Triple Crown winner in 2017 & 2018
A Traditional “Virtual Switch”
Traditional Layer 3 Routing?
A Virtual Network?
Non-Disruptive Deployment
Programmatically Provisioned
Network & Security Services Distributed to the
Virtual
Switch
Physical Network becomes high-speed IP backplane
Native Isolation
192.168.2.11
192.168.2.11
192.168.2.10
192.168.2.10
NSX Components
• NSX Manager
• NSX Controller
• NSX Edge
• NSX vSwitch
• Distributed router
• Distributed
firewall
• VXLAN
vCORE Technology Partners | www.vcoretec.com | Proprietary & Confidential
VRNI Demo
Proprietary and Confidential | vCORE Technology Partners | www.vcoretec.com
1. https://labs.hol.vmware.com/HOL/catalogs/catalog/877
2. http://docs.hol.vmware.com/
HOL-1803-01-NET - VMware NSX - Getting Started
HOL-1803-02-NET - VMware NSX - Distributed Firewall and Micro-Segmentation
Best Practices
Proprietary and Confidential | vCORE Technology Partners | www.vcoretec.com
Best Practices
• Know your applications
o Application Classification
o Application Dependency Mapping
• Align with Infosec requirements (PCI, HIPAA, SOX, etc)
• Know your landscapes (Test, Dev, QA, PreProd, PROD)
• Start with Macro-segmentation (Global)
• Fix what you hate in your current firewall/Don’t carry over
the same behavior
• Firewall Migration (How good are your docs?)
• Disaster Recovery and how it works/how you want it to
work
o North/South Routing, Firewall Rules between datacenters
• Add exceptions into DFW to prevent locking out of
vCenter
Best Practices
PLANNING is Key
• Memory/CPU consumption/analysis
• Mapping out a Long Term Firewall/Security Strategy
• Spend a lot of Time Understanding Business applications
o Classify all Applications
o Application Dependency Mapping
o Physical vs Virtual Servers/Firewalls
• Align with Infosec requirements (just don’t do micro
segmentation because you can)
• Start with Macro-segmentation (Global) and
microsegment things that need it.
• Understand Disaster Recovery Requirements and how it
works/how you want it to work (mtu requirements)
o NSX can enable DR - North/South Routing, Firewall Rules between
datacenters, Same IP, etc
Why vCORE for NSX?
$
Lower costs
Software Defined
Experience
Faster time to deliver
Improve security & compliance
Deep, Local
Engineering Bench
24x7x365 support so you’re always
covered
Vmware Partnership
Enhance & extend the capabilities
of your IT team
Preventative Maintenance
Reduce cost of repairs
Proprietary and Confidential | vCORE Technology Partners | www.vcoretec.com
Why vCORE?
• Been doing NSX before all the cool kids were
• vCORE Based Experts - no parachuting
• Deep Security Bench on “real world” security not overkill
security
• Many customer success stories (NSX and ACI playing
nice)
• Full end to end NSX lab we build out specifically for
each customer if needed
• 24/7 Support
• Deeper on security than just NSX
• Think outside the box (lots of engineering eyes on
projects)
• NSX Mindset Website
DC Security Core Components
Native NSX
Security
Services
Enhanced Security
Services with 3rd
party eco-system
Stateful L4 Firewall
L7 Firewall
Intra-Subnet Security
Agentless Anti-Virus
Malware Protection
Security Attached to the
VM
IPS/IDS
NSX Firewall Use Cases
• Micro-segmentation (VDI
environments)
• Object based firewalling
(security group tagging (by
name, active directory,
portgroup, vSwitch, cluster,
etc)
• Disaster Recovery (Multisite,
Cross-VC)
• Same firewall policy
• Same IP
1. https://labs.hol.vmware.com/HOL/catalogs/catalog/877
2. http://docs.hol.vmware.com/
HOL-1803-01-NET - VMware NSX - Getting Started
HOL-1803-02-NET - VMware NSX - Distributed Firewall and Micro-Segmentation
NSX-V & NSX-T Differences
NSX-V (NSX for “vSphere”)
• Designed for vSphere deployments
only and is architected so that a
single NSX-V manager platform is
tied to a single VMware vCenter
Server instance.
NSX-T (NSX “Transformers”)
• Designed to address many of the
use cases that NSX-V was not
designed for, such as the multihypervisors. NSX-T is a multihypervisor aware SDN stack brought
to the likes of vSphere, KVM,
OpenStack, Kubernetes, and Docker.
Feature Comparison Chart
https://docs.vmware.com/en/VMware-Cloud-onAWS/services/com.vmware.vmc-aws.networkingsecurity/GUID-3E3B9452-DA0A-4901-9CE7376733818EE2.html
More from vCORE
Local Denver team
• Bob Ghia, Director of Sales, robert.ghia@vcore.com
• Lonny Roth, Systems Engineer, lonny.roth@vcore.com
Network team
• Kurt Huegin, Director of Network Solutions, kurt.huegin@vcore.com
• JR Garcia, Sr. Solutions Architect, jr.garcia@vcore.com
Cloud Automation Demo
• Multi-cloud platform, quickly deploy infrastructure within our public
and hybrid cloud environment
• Register for the demo at vcore.com/offerings/cloud-solution-test-drive
www.vcore.com
Related documents
1V0-41.20 Dumps Free Updated Demo
1V0-41.20 Dumps Free Updated Demo
(1)
(1)
Bramor sAR NSX Brochure
Bramor sAR NSX Brochure
NSX Datasheet PDF
NSX Datasheet PDF
8.512 Theory of Solids II
8.512 Theory of Solids II
Download
advertisement