The ins and outs of VMware security products and features

Techtarget | June 19, 2019

IT managers must understand what role security plays in various platforms, because its a key aspect of overseeing a virtual environment. VMware security is a primary feature across the vendors line of products, but it's implemented in different ways.Security plays a major role in VMware NSX, while AppDefense is an endpoint security tool that detects abnormal application behavior. In addition, encryption is an important capability in VMwares core vSAN and vSphere products.This essential guide outlines features and integrations of NSX and AppDefense, tips on using encryption in vSAN and vSphere, and information on other VMware security features.

Spotlight

Online ads can be annoying, especially when you want to focus on the content you’re reading. Moreover, some of these ads are malicious and can infect your device with malware if you click them. This video explains how to use a VPN to protect yourself from intrusive and malicious ads. It’s much simpler than you might think.

Spotlight

Online ads can be annoying, especially when you want to focus on the content you’re reading. Moreover, some of these ads are malicious and can infect your device with malware if you click them. This video explains how to use a VPN to protect yourself from intrusive and malicious ads. It’s much simpler than you might think.

Related News

ENTERPRISE SYSTEMS,VIRTUALIZED ENVIRONMENTS,VPN

Boosting the Signal from Space: MetTel Labs Deploys VMware SD-WAN over Starlink

MetTel | December 15, 2022

MetTel announced today that its Customer Innovation Labs, the research and development unit of MetTel, has deployed its Software-Defined Wide Area Network (SD-WAN) service using the VMware SD-WAN™ solution over SpaceX's Starlink satellite service. These technologies far outpace the growth of the overall IT market which Gartner predicts at 5.1% year-over-year in 2023. According to the 2022 Gartner® Magic Quadrant™ for SD-WAN report, "The SD-WAN market is forecast to generate a compound annual growth rate (CAGR) of 14% in end-user spending from 2020 through 2026." Starlink's service has expanded significantly with more than 3,000 satellites in orbit and over 500,000 customers since 2019, according to research firm Ookla, with an estimated 500% growth in supporting terminals since 2021. Led by MetTel Chief Technology Officer, Ed Fox, MetTel Labs strives to innovate, test, and prove new technologies, services and best practices with enterprise customers. In the case of Starlink, MetTel collaborated with multiple enterprise clients to deploy SD-WAN technology over the satellite network and bring high bandwidth communications to remote locations that would otherwise lack Internet access. Among the active use cases are a large government agency and a leader in the environmental management industry. "Deployment of earth-based SD-WAN over Starlink will bring business-grade connectivity and network management to every remote location where it's needed for our clients," said Fox. "MetTel is thrilled to upgrade the quality of space-based communication while extending the reach of our SD-WAN network to any location worldwide." As an access technology, satellite communication has always been a challenge as signals must travel up to space and back down to earth, introducing latency and eroding performance. Many satellite communication providers use packet manipulation like queuing to provide a better consumer experience, but when using a business-oriented overlay technology like SD-WAN the packet manipulation can inhibit the performance of the network. Starlink's low-earth orbit system provides low latency, high bandwidth transmissions without heavy processing of traditional satellite, enabling the MetTel Labs team to integrate space-based access paths into its existing terrestrial SD-WAN networks. "The promise of space-based communication is limitless.By deploying SD-WAN over the Starlink satellite network, MetTel is bringing the benefits of VMware SD-WAN -- cloud-delivered, resilient networking with embedded security, along with DMPO which will automatically remediate transient satellite link issues -- to anywhere on earth, without the need for terrestrial networks." Craig Connors, vice president and general manager of VMware's SASE business. VMware SD-WAN™ and VMware SASE™ bring cloud-delivered networking, security, and AIOps together with compute to support secure, ubiquitous access to Cloud and SaaS for branch and remote workers as well modern applications at the edge. VMware's SD-WAN solution makes intelligent routing decisions based on network conditions and then steers traffic to the optimal network path to meet customers' service level requirements and provide a better user experience for applications. Working with VMware SASE and SD-WAN solutions, MetTel has built a global cloud network with 19 data centers and points of presence (PoPs) to deliver its secure networking services as a fully managed service. A recognized leader in the Gartner Magic Quadrant for Managed Network Services for 2020 and 2021, MetTel has engineered some of the largest commercial implementations of SD-WAN and cloud firewall in North America, each connecting thousands of locations with high performance and scalable bandwidth in many different verticals such as retail including the largest jewelry retailer in the world, automotive, and waste management. Gartner, Magic Quadrant for SD-WAN, Jonathan Forest, Naresh Singh, Andrew Lerner, Karen Brown, 12 September 2022. Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner's research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. About MetTel MetTel is a leader in communications and digital transformation (DX) solutions for enterprise customers. By converging all communications over a proprietary network, MetTel gives enterprises one, unified view and control point for all their communications and advanced network services. MetTel's comprehensive portfolio of customer solutions can boost enterprise productivity, reduce costs and simplify operations.

Read More

VIRTUAL DESKTOP TOOLS,SERVER VIRTUALIZATION

CoreStack and Logicalis Partner to Provide Industry-Leading Cloud Governance Solution

CoreStack | January 31, 2023

CoreStack and Logicalis announced a strategic partnership to offer customers a cloud governance solution that is the best in the business. CoreStack's NextGen Cloud Governance platform and Logicalis's Cloud Management Portal (CMP) will work together as part of the partnership to power the Production Ready Cloud (PRC) solution. The solution provides customers with visibility and insight into their cloud consumption, governance, and security postures. The NextGen governance solution allows for multi-cloud governance and 360-degree visibility for financial management, security operations, and cloud operations in a single dashboard. VP of Global Solutions, Stephen Buhagiar, noted, "We are excited to partner with CoreStack to help customers scale and accelerate their digital journey." CoreStack's NextGen platform provides transparency to help customers be more cost-effective, compliant, and secure, and to achieve seamless operations with increased availability. (Source - Businesswire) The platform connects directly to the Logicalis Digital Fabric platform and gives customers insights they can use and real-time visibility into how their digital ecosystem is doing. CoreStack's AI-powered solution has led to transformational results, including a 40% increase in cloud operational efficiencies, a 50% decrease in cloud costs, and 100% compliance with security standards. About CoreStack CoreStack is a NextGen Cloud Governance platform that helps businesses make more money, be more efficient, and gain a competitive edge through real-time cloud governance that is powered by AI. It helps FinOps, SecOps, and CloudOps make the most of their cloud spending while making sure security and compliance across multiple clouds. With executive dashboards for real-time insights, CoreStack has been recognized as a leader in cloud management by top industry analysts and strategic advisors and is affiliated with major cloud providers such as Microsoft Azure, Amazon Web Services, Oracle Cloud, and Google Cloud.

Read More

VIRTUAL DESKTOP TOOLS,SERVER VIRTUALIZATION,SERVER HYPERVISORS

Fortinet confirms VPN vulnerability exploited in the wild

Fortinet | December 14, 2022

Fortinet issued an advisory Monday detailing the heap-based buffer overflow flaw, tracked as CVE-2022-42475, affecting multiple versions of its FortiOS SSL-VPN. Ranked a 9.3 on the common vulnerability scoring system, Fortinet warned the critical flaw could allow a remote unauthenticated attacker to execute arbitrary code. "Fortinet is aware of an instance where this vulnerability was exploited in the wild, and recommends immediately validating your systems against the following indicators of compromise," Fortinet wrote in the advisory. Patches are available, and Fortinet recommended upgrading to the latest versions as well as the unaffected earlier version of FortiOS. In an email to TechTarget Editorial, Fortinet said it also continues to monitor the situation. While the company's Product Security Incident Response team made the advisory publicly available Monday, it was not the first notification on the critical flaw. Olympe Cyberdefense, a France-based cyber threat intelligence vendor, released an alert Friday citing that a "new critical flaw, not yet made public" affected Fortinet SSL-VPN. The alert, which was first reported Monday by TechTarget sister publication Le Mag IT, warned the zero-day vulnerability was easy to exploit and that attackers could gain full control of intended devices. Additionally, Olympe Cyberdefense recommended disabling VPN-SSL functionality if it's not essential. Olympe updated its alert once Fortinet confirmed the vulnerability and urged customers to patch. In a statement sent to TechTarget Editorial, Claire Tills, senior researcher engineer at Tenable, noted the time gap between the Olympe's initial disclosure and Fortinet's advisory. "Three days after its initial public disclosure, Fortinet patched CVE-2022-42475 and confirmed it has been exploited in the wild," Tills said. "Fortinet SSL-VPNs have been a major target for years now -- to the extent that the FBI and CISA issued a dedicated advisory to these flaws and their exploitation in 2021. Nation state actors are still known to exploit those legacy vulnerabilities in Fortinet SSL-VPNs. Given that this new vulnerability has already been exploited, organizations should patch CVE-2022-42475 immediately before it joins the ranks of other legacy VPN flaws." Attacks targeting VPNs have been on the rise, with multiple government warnings since 2020 when remote work increased amid the COVID-19 pandemic. In October, FortiOS faced another critical vulnerability that allowed attackers to bypass authentication and was exploited in the wild. Like Monday's advisory, Fortinet was not the first to publicly disclose the flaw.

Read More