Está en la página 1de 30

SEC5318

NSX Security Solutions In Action - Deploying,


Troubleshooting, and Monitoring for VMware NSX
Service Composer
Azeem Feroz, VMware
Sachin Vaidya, VMware

#SEC5318

Agenda
Recap of NSX Service Composer
Deployment NSX Service Composer & Third-Party
Solutions
DEMO

Troubleshooting and Monitoring - Health Status, Failures,


Recovery
DEMO

Security Challenges: Multiple Dashboards of Wonder

Antivirus
System
Vulnerability
Mgmt System

IDS System
vCenter
Firewall

DLP System

Security Challenges: Multi-console Deployment

Multiple consoles to initiate


deployment from.

Each solution has multiple moving


parts virtual appliances, ESXi
modules, in-guest drivers.

Manual admin intervention on each


host in a cluster.

Security Challenges: Troubleshooting across multiple dashboards

If a service goes down, where do you start


with troubleshooting steps? Security solution
or Virtualization solution?

What if there was a configuration change in


the infrastructure that caused an outage? How
could this change be determined?

Security Challenges: No orchestration between solutions

AV

Data Sec
Internet

Firewall
Vuln. Mgmt
Datacenter

Content Filtering
IPS

The NSX Service Composer

NSX Service Composer

Security services can now be consumed more efficiently in the


software-defined data center.
Provision.

Apply.

Automate.

Provision and monitor


uptime of different
services, using one
method.

Apply and visualize


security policies for
workloads, in one place.

Automate workflows
across different
services, without
custom integration.

Provision.
NSX Service Composer & Third-Party Solutions

NSX Service Composer: Deployment and Provisioning

Users
Single Pane of Glass

NSX Manager

Partner consoles

NSX Manager

vCenter

Rapid7

McAfee
Symantec
Trend
Palo Alto
Networks

ESX

ESX

ESX

ESX

Deployment Fabric
10

Partners

Largest Ecosystem

Vulnerability
Mgmt

NSX UI

Reduced Complexity

VMWare

(for Deployment and Monitoring)

IDS/IPS

Anti-malware,
Anti-virus

IDS/IPS, AntiMalware

Firewall

Demo NSX Service Composer Deployment

Register Services

Deploy Services
2 Log in!
Registered

Some services are pre registered


Some services
pre(Dataare
Security,
deployedTrend
(DataMicro,
Security)
Identity,
McAfee )
Rapid
Deploy7,Symantec
Antivirus Symantec
solution
Register
Antivirus Solution
Management

Compute

Partner Mgmt.
Consoles

11

Apply.
NSX Service Composer: Security Ready for Consumption

13

NSX Service Composer: Security Ready for Consumption


WHAT you want to
protect

Security Groups

HOW you want to


protect it

APPLY

Security Policies

Members: VM, vNIC, network

Services: Firewall, antivirus,

(virtual/Logical Switch, physical),


Distributed Virtual PG, cluster, data
center, Resource Pool, vApp, other
containers, regex patterns etc

intrusion prevention, vulnerability


management and more.

Context: User identity, sensitive


data, security posture

14

Profiles: Security policies from


VMware and third-party solutions
that are defined by the security
architect but implemented by the
cloud operator.

NSX Service Composer: Apply.

15

NSX Service Composer: Apply.

16

NSX Service Composer


Provision.

Apply.

Automate.

Provision and monitor


uptime of different
services, using one
method.

Apply and visualize


security policies for
workloads, in one place.

Automate workflows
across different
services, without
custom integration.

17

Troubleshooting & Monitoring


Health Status, Failures, Recovery

18

NSX Service Composer: Troubleshooting and Monitoring

Users
Single Pane of Glass

NSX Manager

Partner Consoles

NSX Manager

vCenter

Rapid7

McAfee
Symantec
Trend
Palo Alto
Networks

ESX

ESX

ESX

ESX

Deployment Fabric
19

Partners

Stronger Ecosystem

NSX UI

Reduced Complexity

VMWare

(for Deployment and Monitoring)

Demo NSX Service Composer - Troubleshooting

Register Services

Deploy Services
2 Log in!
Registered

Some
services are
preTroubleshoot
deployment
3registered
Shut down(Data
Symantec
failures Security,

Management

appliance
Identity,
Trend Micro,
Shut down
Symantec
Rapid
7, McAfee
)
Observe
alarms
appliance
generated.
Register Symantec
Observealarms
alarms
Antivirus
Solution
Resolve
generated.
Confirm resolution is
Resolve alarms
successful

Confirm resolution is
successful

Compute

Partner Mgmt.
Consoles

20

Demo NSX Service Composer - Troubleshooting

Register Services

Deploy Services
2 Log in!
Registered

Some
services are
preTroubleshoot
deployment
3registered
Shut down(Data
Symantec
failures Security,

Management

Compute

Partner Mgmt.
Consoles

22

appliance
Identity,
Trend Micro,
Troubleshoot
configuration
4

Shut
down
Symantec
Rapid
7,
McAfee
)
compliance
Observe
alarmsfailures
appliance
generated.
Register
Symantec
Create a policy that uses

Observe
alarms
Solution
Antivirus
Resolve
alarms
Symantec
service and
generated.
apply it to VMs on cluster
Confirm resolution is
successful
Resolve alarms
Shut down Symantec
appliance
on the cluster
Confirm
resolution
is
successful
Observe alarms showing
up on the service
composer

Automate.
NSX Service Composer: Orchestrate between Third-Party
Solutions

24

Service Composer Automate.

IPS
AV

Data Sec
Internet

Firewall
Vuln. Mgmt
Datacenter

Content Filtering

25

Service Composer Automate.


SEC5750 - Security Automation Workflows with NSX
Gargi Keeling (VMWare) and Don Wood (McKesson)
Wednesday, August 28th, 10:00 AM 11:00 AM Moscone West, Room 3012

26

Recap: NSX Service Composer


Provision.

Apply.

Automate.

Provision and monitor


uptime of different
services, using one
method.

Apply and visualize


security policies for
workloads, in one place.

Automate workflows
across different
services, without
custom integration.

27

THANK YOU

SEC5318
NSX Security Solutions In Action - Deploying,
Troubleshooting, and Monitoring for VMware NSX
Service Composer
Azeem Feroz, VMware
Sachin Vaidya, VMware

#SEC5318