VMware Service-defined Firewall

2019: Announcement

On March 5, 2019 VMware provided as the company claims, the first in "the service defined firewall" market. It allows to protect applications and data both in local infrastructure, and in cloud.

The solution Service-defined Firewall is based on two earlier released products of the company: to the virtualization platform and safety of network services VMware NSX and the solution for security of end devices in data center of VMware AppDefense.

In March, 2019 VMware provided the firewall

In a case with a new firewall of AppDefense looks for harmful actions, analyzing data from NSX and vSphere — the virtualization platform of VMware which the companies use on the servers for increase in efficiency of the equipment.

The service firewall expands these functions of detection, adding automation level. He uses operational information which VMware collects from the extensive customer base to understand that it represents normal behavior for different applications. Having armed with this understanding, algorithms can generate custom rules of security for the virtualized environment.

The firewall can keep track of harmful activity as in  network traffic, by means of NSX, and  in  vSphere host machines  — the last is distinctive feature of the announced product. For monitoring of activity it  uses means of vSphere,  i.e.,  unlike  traditional solutions of security,  does not require installation per  each host of the separate specialized code for tracking.

VMware noted that Service-defined Firewall allows to protect services and software, without focusing on infrastructure. The firewall checks guest OS and applications to prevent harmful activity and also uses machine learning for virtual machines to build a picture of the correct application launch.^[1]

Notes