The VMworld 2016 conference in Las Vegas, Nevada, gave a great deal of attention to both NSX and security this year. While walking around the Solution Exchange floor, I had the opportunity to stop and talk with Tufin about its Tufin Orchestration Suite, which orchestrates security polices across complex, hybrid cloud, and physical environments.
Articles Tagged with NSX
Now that VMworld is over, it is time to digest everything we learned: to pick at the messaging for the kernel of truths and directions. Many found the VMworld keynotes to be somewhat bland and the show floor to be much of the same. However, there was gold within both. We can discuss the show floor later, as I’d like to look deeper at the messaging first. The gold was hard to put together amid all the different messages. Themes included cross-cloud, Photon, NSX, and VSAN. These may seem disjointed until you look deeper. The messaging could be better, and I expect it to improve by VMworld Barcelona. Yet, there was clearly a path forward for each of VMware’s customers.
VMware just released details about the latest version of NSX—6.2.2. What is interesting about this release is that it is the first that is split into tiers. The release pages are full featured, and although pricing doesn’t appear to be available yet on the website, hopefully this will be a fully public release that doesn’t require jumping through hoops to get. Since VMware acquired Nicira in 2012, the NSX product has been a bit of a dark horse, kept well stabled and not allowed out to run free. The product has been available only to selected customers and partners, presumably with high-volume sales that will support a large amount of VMware employee time in each deployment.
In a shock announcement on Wednesday, Martin Casado announced that he was leaving VMware’s Networking and Security business unit, the group that owns the NSX product, to join the venture capitalist firm Andreessen Horowitz as a general partner. Casado was co-founder and CTO of Nicira, the network company that VMware brought for $1.2 billion in 2012.
This closes the circle for Martin, whose first institutional investor at Nicira was Andreessen Horowitz. Ben Horowitz of the company served on Nicira’s board and acted as Casado’s business mentor.
A few weeks ago, Hany Michael released a blog post on his NSX lab network. Embedded within is one of the most brilliantly clear diagrams of a very complex situation I’ve ever seen. It takes a level of skill to achieve the clarity of this diagram. What hit me, though, is the sheer level of complexity that Hany conveys in this document and how that complexity is inherent to the SDDC. It’s easy to argue that the diagram shows the smallest possible instance of an SDDC (except it skims over the storage). Not too surprising, as it’s an SDDC lab. It’s inherently VMware focused, but it could be applied to Hyper-V or OpenStack easily. Each function in the diagram would still be necessary, although some would switch or merge. This article will be quite VMware focused for this reason.
In networking, as in life, we often use the same terms to mean many different things. One of the biggest culprits of this in networking is “edge.” An edge device is usually considered to be a device that connects into a network in only one place. Traffic can flow from an edge device, or it can flow to an edge device, but it can never, ever flow through an edge device. I say never—that’s not entirely true, but I’ll get back to that later. In a campus network, the edge devices are things like users’ computers, laptops, and printers; mobile phones; and tablets.