Introduction
Enterprises adopt to Software Defined Data Centers (SDDC) to leverage the benefits of Software-Defined Networking (SDN). The challenge with SDDC is in gaining visibility into the traffic between virtualized workloads, especially the traffic between workloads residing on the same physical server, to ensure that the same security controls are uniformly deployed across both physical and virtual workloads. Gigamon's Visibility Platform for VMware NSX-T provides the visibility, and also lets organizations leverage the existing security tools stack resulting in huge cost savings, reduced complexity and administrative overhead. Gigamon's solution also supports cluster-based and host-based deployment modes. The following Gigamon Validated Design (GVD) illustrates deploying the solution.
Visibility for VMware NSX-T Data Center
Gigamon leverages NSX Service Insertion to provide visibility into the traffic between the virtualized workloads. As illustrated below, while configuring NSX Manager in the GigaVUE-FM, the Gigamon Traffic Visibility Service registers itself as a partner service. The Traffic Visibility Service is then installed on the NSX compute clusters through the vCenter user-interface that deploys V Series nodes for traffic acquisition, following which security policies are created to forward copies of the network traffic to the Gigamon Visibility Fabric.
_772x335.png)
Figure 1. Logical topology illustrating integrating security tools such as IDS, Anti-malware, APM using Gigamon Visibility and Analytics Fabric.
With 5.10.01 GigaVUE-FM version, we could deploy V Series as the Gigamon's service VM in lieu of GigaVUE-VM, where V Series solution is vastly more capable in traffic transformation applications such as slicing, masking and deduplication right within the V Series node rather than relying on the GigaVUE H Series appliances. This greatly optimizes the traffic overhaul across sites and network bandwidth utilization when compared to GVM. Similar to GVM solution V Series nodes acquire traffic from different transport nodes and with the GigaSMART capability processes the traffic before sending it to security and analytic tools for inspection. This GVD focuses on providing visibility in an ESXI cluster with two or more hosts in a clustered environment.
To learn more about this solution, read complete details on the Gigamon Community: Deploying-GigaVUE-Cloud-Suite-for-VMware-NSX-T-3-0-using-Vseries-5-10-01.
