Virtualization Segmentation
Virtual security best practices go far beyond the typical threat-based security measures and focus highly on segmentation, configuration and compliance requirements. Segmenting the virtual environment allow organizations to gain the full benefit of their virtualization investment and simplify management and security for virtual deployments.
Reflex virtualization segmentation enables customers to
- Truly leverage virtualization by utilizing shared resources more efficiently
- Segment the virtual environment for security and ease of management
- Meet strict compliance regulations using the flexibility of virtualization
- Manage virtual resources at a granular level for flexibility and scalability
- Simplify security policy management and enforcement
- Eliminate the need for VLANS and the dependency on hardware and physical networks
Creating complex virtual deployments and configurations by using multiple VLANs (segmenting zones using physical hardware) can quickly defeat the purpose of virtualization. Virtual segmentation, leveraging software and the virtual infrastructure, can be much more efficient and provide more simplified management.
- VLAN Segmentation
- Complex configuration
- Expensive Hardware
- Limitation of Scalability
- Expensive to Maintain
- High stress on the environment
- No security within a Zone
- Static Solution
- vTrust Segmentation
- Simple configuration
- Software Soltion
- Scale to any size environment
- Low Overhead to Maintain
- Efficiently runs in the hypervisor
- Security also within a Zone
- Dynamic Solution
Reflex VMC with vTrust Security security utilizes VMware's VMsafe API to deliver a more granular level of visibility and control into communication within the VMware virtual environment. vTrust allows more sophisticated segmentation (virtual trust zones), policy enforcement as well as monitoring, filtering and control of VM-to-VM traffic.
