Category: NSX

VMC on AWS – VMC Networking UI & Traceflow

The latest major release of VMware Cloud on AWS includes a wealth of new features. See the release notes for a definitive list. In this post, I'm going to walk through two of these new features, specific to Networking & Security. VMC Networking UI in standalone modeNSX Traceflow for Visibility and Self-serve Troubleshooting Photo by Piotr … Continue reading VMC on AWS – VMC Networking UI & Traceflow →

NSX Advanced Firewall for VMC on AWS- Part 2 – Distributed IDS/IPS

Photo by FLY:D on Unsplash Introduction This is Part 2 of a multi part blog series, focusing on the NSX Advanced Firewall for VMC on AWS. If you have not already reviewed Part 1, click here DISCLAIMER: In this post I will be running vulnerability scans and attacks against a purposely vulnerable web application. Utilizing … Continue reading NSX Advanced Firewall for VMC on AWS- Part 2 – Distributed IDS/IPS →

NSX Advanced Firewall for VMC on AWS- Part 1 – Overview and enabling the Add-on

Photo by Marc-Olivier Jodoin on Unsplash Introduction In this post, I'll provide a quick overview of the new NSX Advanced Firewall for VMC on AWS and walk through enabling the add on and individual features. This will be a multi part blog series, and I'll walk through each feature in more detail in different parts. NSX Advanced Firewall … Continue reading NSX Advanced Firewall for VMC on AWS- Part 1 – Overview and enabling the Add-on →

VMworld 2020 – Top 10 Networking & Security Sessions

VM2020 is right around the corner, and this years event is free! Register for the event and start scheduling sessions here There is so much amazing content, that it can be difficult to know where to start. Here is my list of 10 recommended Networking & Security related sessions to check out! You can view … Continue reading VMworld 2020 – Top 10 Networking & Security Sessions →

VMware NSX Distributed IDS Walkthrough

VMware NSX Distributed IDS was introduced with NSX-T 3.0. This feature allows you to enable intrusion detection capabilities within the hypervisor to detect vulnerable network traffic. This distributed mechanism can be enabled on a per VM and per vNIC of a VM basis with granular rule inspection. As part of this feature set, the NSX … Continue reading VMware NSX Distributed IDS Walkthrough →

Prepare Clusters for VLAN Micro-segmentation with NSX-T 3.0

One of the new features in NSX-T 3.0, is a wizard to quickly implement VLAN based micro-segmentation. A misconception with NSX, is that you have to deploy Software Defined Networking to leverage micro-segmentation. That is not the case if you just want to secure workloads backed by VLAN's. Check out the release notes for a … Continue reading Prepare Clusters for VLAN Micro-segmentation with NSX-T 3.0 →

HCX Performance Testing Tool

Photo by Denys Nevozhai on Unsplash One of my Networking & Security TAM customers recently asked me a question. "How do we test HCX performance?" When performing Bulk Migrations with HCX, the migrations were taking longer than they expected. HCX Perftool to the rescue! For a quick overview, see this VMware KB article Steps to Run Perftest in … Continue reading HCX Performance Testing Tool →

Working with NSX Firewall Saved Configurations

Photo by Zan on Unsplash NSX-T features some usability improvements when it comes to saving firewall configurations, or drafts. In this post I'm going to walk through how you can leverage this feature. An example use case is a business that has a change control policy mandating administrators can only publish Distributed Firewall updates outside of core … Continue reading Working with NSX Firewall Saved Configurations →

Solved – Problem registering vCenter & NSX with HCX

I was in the process of installing HCX in my lab, and ran into an issue connecting my vCenter Server and NSX environment. While trying to connect, received the following error "PKIX path building failed: java.security.cert.CertPathBuilderException: Unable to find certificate chain" Couldn't find a solution online, so thought I'd publish a quick blog post detailing … Continue reading Solved – Problem registering vCenter & NSX with HCX →

Installing AppDefense for vSphere Platinum – Step by Step

VMware AppDefense takes a new approach to application security. What if, instead of “chasing bad” we started by “ensuring good”? Here are some resources I recommend you review to learn more about AppDefense, and the benefits. Excellent Session from VMworld 2018 - Transforming Security in a Cloud and Mobile World (SEC3730KU). You’ll also see a … Continue reading Installing AppDefense for vSphere Platinum – Step by Step →