Deploying GigaVUE Cloud Suite for VMware vCenter using V Series (5.11)

Introduction

Enterprises are migrating to Software-Defined Data Centers (SDDC) to leverage the benefits of Software-Defined Networking (SDN). The main challenge with SDDC is in gaining visibility to traffic between virtualized workloads, especially the traffic between workloads residing on the same physical server, to ensure that security controls are uniformly deployed across both physical and virtual workloads. Gigamon's certified Visibility Platform for VMware vCenter provides visibility and also lets organizations leverage the existing security tools stack resulting in saving cost and reduces complexity and administrative overhead. The following Gigamon Validated Design (GVD) illustrates deploying the solution in VMware vCenter.

Visibility for VMware vCenter Data Center

Gigamon leverages vCenter Service Insertion to provide visibility into the traffic between the virtualized workloads. As illustrated below, after configuring VMware vCenter in GigaVUE-FM, the Gigamon Traffic Visibility Service registers as partner service. The Traffic Visibility Service is then installed on the data center clusters through the vCenter user interface that deploys V Series nodes for traffic acquisition, following which security policies are created to forward copies of the network traffic to Gigamon Visibility Fabric.

 
Figure 1: Logical topology illustrating integrating security tools such as IDS, Anti-malware, APM using Gigamon Visibility and Analytics Fabric

The V Series service VM along with the GigaSMART apps optimizes the traffic overhaul across sites and network bandwidth utilization when compared to GigaVUE-VM. Similarly, V Series nodes acquire traffic from different transport nodes but with GigaSMART capability processes the traffic before sending it for inspection to security and analytic tools. This GVD focuses on providing visibility in an ESXi cluster with two or more hosts in a clustered environment.

Note: All screen shots on this document are based on the Classic View of GigaVUE-FM. This GVD is common for both VMware Standard Switch (VSS) and VMware Distributed Switch (VDS). On the basis of map conditions, discussed in later section. GigaVUE-FM will provide the port groups in virtual switches both VSS and VDS.

In GigaVUE-FM version 5.11.00,

  • We can deploy V Series 2 in both Static and DHCP mode for Gigamon's service VM.

  • IPv6 support for management (only DHCP) and Tunnel interfaces of V Series node.

  • In-addition to existing traffic transformation apps such as slicing, masking and de-duplication within the V Series node we can also deploy load balancer.

  • Support for VXLAN as an egress tunnel.

  • Option to upgrade the V Series node within GigaVUE-FM instead of redeploying the solution.

To learn more about this solution, read complete details on the Gigamon Community: Deploying GigaVUE Cloud Suite for VMware vCenter using V Series (5.11).