VMware firewall takes aim at defending apps in data centre, cloud

Credit: Dreamstime

VMware has taken the wraps off a firewall it says protects enterprise applications and data inside data centers or clouds.

Unlike perimeter firewalls that filter traffic from an unlimited number of unknown hosts, VMware says its new Service-defined Firewall gains deep visibility into the hosts and services that generate network traffic by tapping into into its NSX network management software, vSphere hypervisors and AppDefense threat-detection system.

“VMware’s service defined firewall is significant because it leverages host and network context via AppDefense and NSX, respectively, to apply contextual, adaptive access control policies, hence the positioning of the offering as an internal versus external firewall” said Doug Cahill, group director and senior analyst with the Enterprise Strategy Group.

The product doesn’t require added software agents to do its job as many security packages do, VMware said.

It also lets organisations more easily enforce security policies without forcing traffic to go through a security appliance for scanning, VMware stated.

The firewall works in bare metal, virtual-machine and container-based application environments, and will support hybrid cloud settings such as VMware Cloud on AWS and, down the road, AWS Outposts.