Identify

With knowledge comes power. Identifying applications within your virtualized environment, regardless of port, gives you unmatched visibility into your VMware® ESXi™ and vCloud® Air™ deployment. Armed with this knowledge, you can make more-informed security policy decisions. 

Enable

Using the application as the basis for your VM-Series security policy lets you leverage the deny-all-else premise that a firewall is based upon for both gateway and workload-to-workload protection. You can safely enable allowed applications and deny all others. 

Prevent

In order to further protect your ESXi and vCloud Air deployment, you can deploy application-specific threat prevention policies that will block both known and unknown malware.

The VM-Series on ESXi and vCloud Air

The VM-Series on ESXi is a virtualized form factor of our next-generation firewall that spans VMware-based private, public and hybrid cloud deployments. Whichever scenario you choose, the VM-Series can act as a perimeter gateway, an IPsec VPN termination point, and a segmentation gateway, preventing threats from moving from workload to workload. The VM-Series on ESXi can be deployed to address a number of different use cases, each of which takes full advantage of our next-generation firewall and advanced threat prevention features. 

Firewall Gateway / Hybrid Data Center

The VM-Series can be deployed as a gateway firewall and IPsec VPN termination point, enabling you to quickly and securely create a hybrid cloud that expands your private cloud or on-premises data center into vCloud Air.

In this scenario, the VM-Series also acts as a segmentation gateway, controlling east-west traffic and preventing threats. As new workloads are added or change, VM Monitoring and Dynamic Address Groups will enable your security policies to keep pace with the changes. 

Workload Segmentation Gateway

Cybercriminals are adept at hiding in plain sight, bypassing perimeter controls and moving at will across the network, whether physical and virtualized. To improve security efficacy, you can deploy the VM-Series for ESXi as a segmentation gateway, using its application-level control and threat prevention capabilities to direct and protect the traffic moving between workloads.


 

No results found