With each passing day, enterprise networks are evolving. It started with the advent of virtualization, when companies realized that they don’t need a single server per application. Ever since, there has been a consistent march towards the purely virtual data center. While networks are evolving, so are the threats they face on a day-to-day basis. Building a defense using a perimeter firewall is as futile as defending a castle today using a moat. While it can prevent the causal hacker or trespasser, it does little to nothing to protect against the dedicated resource-rich hacker who has made a career out of beating these systems.
The need to be able to outthink the resource-rich hacker brings about the question, “what is the best way to protect these data centers?” The answer is threefold: VMware NSX + OpenStack + FortiGate VMX.
East-west visibility and protecting against lateral traversal of threats within the data center
For many years now, enterprises all over the world have been able to use the power of virtualization to streamline operations and increase efficiency. In the last few years, VMware has taken this a step further. With the help of VMware NSX, the ability to provide east-west traffic visibility and micro-segmentation enables visibility into the lateral flow of data within the data center.
Reduce human intervention in day-to-day deployments to avoid manual configuration errors
Both managed service providers and enterprises are starting to affirm in the advantages of software-defined networking. These companies greatly value the flexibility and orchestration that OpenStack brings to the table, especially the ability to facilitate agile automated deployments and simplified scaling and growth, which is invaluable.
Now, with the advent of VMware Integrated OpenStack (VIO) 2.5, the best of both of these worlds converges. With this version, VIO supports a tightly knit integration with VMware NSX. So now, as a part of this integration and the NSX-V version of VMware NSX, customers can use the power of NSX-integrated security solutions, providing them with L4-L7 advanced security controls.
When it comes to security effectiveness there can be no compromise
FortiGate has proven to deliver quality security solutions for both VMware NSX and OpenStack environments. Running FortiOS, the world’s most deployed security operating system, the FortiGate VMX solution can bring the third-party validated security effectiveness organizations have come to expect from FortiGate to their VIO data center.
Today, VMware, through NSX, has successfully virtualized networking functions such as routing and switching with the same expertise the company has applied to storage and compute infrastructure for years. FortiGate VMX integrates with NSX APIs to provide best-in-class security for the software-defined data center.
Protecting the vSphere Integrated OpenStack (VIO) data center with FortiGate VMX
FortiGate VMX allows for a tremendous amount of automation. When FortiGate VMX is deployed through VIO, virtual machines can be added automatically to specific security groups. These security groups in turn are exchanged with the FortiGate VMX Service Manager, and can be used to create policies to protect VIO workloads.
Auto-scaling enables users to set up metrics that will scale workloads up or down based on need. While this scaling occurs, any new workloads that are spun up will automatically be protected by the FortiGate VMX with no intervention needed.
FortiOS was built with multi-tenancy in its DNA. Using patented virtual domains, the FortiGate VMX is ideal for multitenant applications is extremely simple to use, yet very powerful