Securing the Private Cloud
Defined as an environment in which you are responsible for the management of all aspects of the virtualization, hardware, compute, networking and security, a private cloud is often considered to be synonymous with your data center, and in fact, many data centers are 100 percent virtualized using VMware, Microsoft Hyper-V®, KVM or other private cloud technologies.
The VM-Series allows you to protect your private cloud infrastructure using application enablement policies while simultaneously preventing known and unknown threats. The VM-Series supports the following private cloud environments: VMware ESXi™ and NSX®, Citrix NetScaler® SDX™, Microsoft Hyper-V and KVM/OpenStack®.
Protecting Mission-Critical Applications and Data Using Zero Trust Principles
Security best practices dictate that your mission-critical applications and data should be isolated in secure segments using Zero Trust (“never trust, always verify”) principles as a means of controlling access.
Our zone-based policy architecture enables you to use the VM-Series to build access control policies based on the application and the user, effectively segmenting the applications and protecting east-west traffic between virtual machines.
Blocking Lateral Movement of Cyberthreats
Today’s cyberthreats commonly compromise an individual workstation, or user, and then move across the network, looking for a target. Within your virtual network, cyberthreats move laterally from VM to VM in an east-west manner, placing your mission-critical applications and data at risk.
Exerting application-level control using Zero Trust principles in between VMs will reduce the threat footprint while applying policies to block both known and unknown threats.
Security That Keeps Pace With Your Business
To automate firewall deployments and policy updates, you can use a combination of bootstrapping, an XML API and native management features to deploy fully configured firewalls in minutes and dynamically drive security policy updates based on workload changes.
Panorama™ network security management enables you to centrally manage your VM-Series deployments, along with your physical security appliances, thereby ensuring policy consistency and cohesion. Rich, centralized logging and reporting capabilities provide visibility into virtualized applications, users and content.
The VM-Series is comprised of five models that deliver App-ID™ technology enabled throughput that ranges from 200 Mbps for the VM-50 to 16 Gbps for the VM-700. To learn more about performance and capacities of the VM-Series, please visit the firewall comparison tool.