Deploying Application Intelligence Solutions for VMware NSX-T 3.1.3 (5.13)

Introduction

Enterprises have the pertinent issue of shadow IT and proliferation of 3rd party apps that hinder administrators from having complete control on all the applications being used in their network leading to compliance and data security issues. As a result, multiple security appliances/solutions may be deployed to strengthen the defense-in-depth security model. Each appliance may require inspecting different types of traffic. This Gigamon Validated Design (GVD) illustrates deploying Gigamon Cloud Suite's Application Intelligence solution to help enterprises to not only discover the apps used in their environment, but also to filter and optimize the traffic before forwarding to the security tools.

Refer to Gigamon Validated Designs section of Gigamon community documentations for more such designs. Please check with your Gigamon Sales contact or Gigamon Support for more information regarding the support for the cloud/virtualization platform that you are considering.

Design Topology

Design Overview

The Design Topology illustrates the Gigamon Cloud Suite deployed on VMware's NSX-T environment. GigaVUE V Series node is deployed in the overlay transport zone to acquire the traffic for monitoring, drop the duplicate traffic and forward DHCP, DNS, HTTP, HTTPS and SMB traffic over L2GRE tunnel to a Splunk instance for security event correlation. In addition, the application metadata is deployed to export bi-directional flow records in IPFIX format to Plixer's Scrutinizer for traffic analysis and telemetry.

To learn more about this solution, read complete details on the Gigamon Community: Deploying Application Intelligence Solutions for VMware NSX-T 3.1.3 using VSeries (5.13)