Photo by FLY:D on Unsplash Introduction This is Part 2 of a multi part blog series, focusing on the NSX Advanced Firewall for VMC on AWS. If you have not already reviewed Part 1, click here DISCLAIMER: In this post I will be running vulnerability scans and attacks against a purposely vulnerable web application. Utilizing … Continue reading NSX Advanced Firewall for VMC on AWS- Part 2 – Distributed IDS/IPS
Author: VM Dave
NSX Advanced Firewall for VMC on AWS- Part 1 – Overview and enabling the Add-on
Photo by Marc-Olivier Jodoin on Unsplash Introduction In this post, I'll provide a quick overview of the new NSX Advanced Firewall for VMC on AWS and walk through enabling the add on and individual features. This will be a multi part blog series, and I'll walk through each feature in more detail in different parts. NSX Advanced Firewall … Continue reading NSX Advanced Firewall for VMC on AWS- Part 1 – Overview and enabling the Add-on
VMworld 2020 – Top 10 Networking & Security Sessions
VM2020 is right around the corner, and this years event is free! Register for the event and start scheduling sessions here There is so much amazing content, that it can be difficult to know where to start. Here is my list of 10 recommended Networking & Security related sessions to check out! You can view … Continue reading VMworld 2020 – Top 10 Networking & Security Sessions
VMware NSX Distributed IDS Walkthrough
VMware NSX Distributed IDS was introduced with NSX-T 3.0. This feature allows you to enable intrusion detection capabilities within the hypervisor to detect vulnerable network traffic. This distributed mechanism can be enabled on a per VM and per vNIC of a VM basis with granular rule inspection. As part of this feature set, the NSX … Continue reading VMware NSX Distributed IDS Walkthrough
Prepare Clusters for VLAN Micro-segmentation with NSX-T 3.0
One of the new features in NSX-T 3.0, is a wizard to quickly implement VLAN based micro-segmentation. A misconception with NSX, is that you have to deploy Software Defined Networking to leverage micro-segmentation. That is not the case if you just want to secure workloads backed by VLAN's. Check out the release notes for a … Continue reading Prepare Clusters for VLAN Micro-segmentation with NSX-T 3.0
Migrating VMs to VMC on AWS with HCX
I recently presented a TAM Lab session demonstrating how to migrate workloads to VMC on AWS with HCX. Also reviewed how to configure Public IPs, NAT, Gateway & Distributed firewall rules to allow external connectivity. Check out the session below. The purpose of TAM Lab is to provide in-depth technology workshop sessions led by VMware … Continue reading Migrating VMs to VMC on AWS with HCX
HCX Performance Testing Tool
Photo by Denys Nevozhai on Unsplash One of my Networking & Security TAM customers recently asked me a question. "How do we test HCX performance?" When performing Bulk Migrations with HCX, the migrations were taking longer than they expected. HCX Perftool to the rescue! For a quick overview, see this VMware KB article Steps to Run Perftest in … Continue reading HCX Performance Testing Tool
Working with NSX Firewall Saved Configurations
Photo by Zan on Unsplash NSX-T features some usability improvements when it comes to saving firewall configurations, or drafts. In this post I'm going to walk through how you can leverage this feature. An example use case is a business that has a change control policy mandating administrators can only publish Distributed Firewall updates outside of core … Continue reading Working with NSX Firewall Saved Configurations
Solved – Problem registering vCenter & NSX with HCX
I was in the process of installing HCX in my lab, and ran into an issue connecting my vCenter Server and NSX environment. While trying to connect, received the following error "PKIX path building failed: java.security.cert.CertPathBuilderException: Unable to find certificate chain" Couldn't find a solution online, so thought I'd publish a quick blog post detailing … Continue reading Solved – Problem registering vCenter & NSX with HCX
Installing AppDefense for vSphere Platinum – Step by Step
VMware AppDefense takes a new approach to application security. What if, instead of “chasing bad” we started by “ensuring good”? Here are some resources I recommend you review to learn more about AppDefense, and the benefits. Excellent Session from VMworld 2018 - Transforming Security in a Cloud and Mobile World (SEC3730KU). You’ll also see a … Continue reading Installing AppDefense for vSphere Platinum – Step by Step
