Special Coverage Series

Network Computing

Special Coverage Series


VMware NSX Plants Flag for Network Virtualization

VMware NSX brings virtualization to the network, including switching, firewalls and more. Are enterprise networks ready?

VMware formally launched VMware NSX, the company's network virtualization platform, at VMworld on Monday. The launch touts new features such as a distributed firewall and support for partners to integrate firewalls, load balancing and other services into the software platform. VMware says NSX will be generally available in the fourth quarter of 2013. The company did not disclose pricing.

VMware initially unveiled NSX, which combines its vCloud Network and Security product with Nicira's NVP, earlier this year. VMware acquired Nicira last year for more than $1 billion.

More Insights

Webcasts

More >>

White Papers

More >>

Reports

More >>

NSX is part of VMware's vision of a software-defined data center. The company said it wants to transform networking from a manually intensive process to one that's more automated and flexible. "Just like you can spin up a virtual machine, you can spin up a virtual network," Martin Casado, Nicira's founder and now VMware's chief architect of networking, said in an interview with Network Computing.

NSX takes an overlay approach to software-defined networking by using virtual switches and encapsulating traffic between hypervisors in a tunnel across the existing network. NSX supports multiple tunneling protocols, including VXLAN and STT.

[Overlays are becoming a hot topic in the SDN space. Read Tom Hollingsworth's analysis in "SDN Overlays And Interior Decorating."]

The NSX platform also includes the NSX API, which integrates with multiple management systems and third-party applications and services. VMware NSX can be managed using VMware's vCloud Director and vCloud Automation Center. VMware also says NSX can be managed using OpenStack and CloudStack tools.

Gartner VP Distinguished Analyst Joe Skorupa says the overlay approach has both upsides and drawbacks.

"The good news is it's easier because you don't have to change out the existing network," he says. "But you still have to buy this expensive, complicated IP network and manage it. While you get some significant improvement in agility, your costs actually go up ... This is net new dollars you have to come up with."

Troubleshooting becomes more difficult in this model because it has two networks--a logical one running over a physical one, he adds.

Skorupa also says that by talking about network virtualization, VMware is using language that isn't aligned with enterprise budgets, which have money slated for SDN.

"While the message is likely to be well received by VMware loyalists, it won't necessarily be a message that's well received by the network team. If they want to sell to the network team, they can't just speak in terms of virtualization," he says.

One VMworld attendee says he's interested in NSX, but it will be tough to get his networking team to make the change. "They've been doing the same thing for 15 years," he says. He guesses that NSX adoption could be five years out for his company.

Virtual Networks, Virtual Firewalls

NSX now features distributed stateful firewalling that's provided in the kernel for east-west traffic, Casado says. "It's not going through a VM, a chokepoint. If you have a 100- or 1,000-node virtual network that's connected to a terabit of capacity, you get a terabit of firewalling," he says.

This capability will streamline firewall management by automating the application of firewall polices, which is labor intensive and susceptible to human error, he says.

With the formal launch of NSX, VMware executives emphasized the platform's extensibility. The NSX API lets partners "consume the network through a single API rather than having to use multiple APIs to access network functions," Hatem Naguib, VMware VP of cloud networking and security, wrote in a blog post.

VMware NSX partners provide network service gateways, load balancing, WAN optimization and security services such as firewalling, antivirus, IPS and vulnerability management, the company says. Some partners have tightly integrated their services with NSX, while others aren't as far along, Casado says. Twenty partners were expected to announce NSX support at VMworld in San Francisco, including Cumulus Networks.

While NSX's distributed firewall might seem to put VMware into an awkward competition with some of its partners, Casado says the company is only filling in areas where there are technology gaps, such as server-to-server or VM-to-VM traffic within the data center. "It's not going to replace your edge device," says Casado. "We're not trying to go after the traditional appliances."

Casado says several VMware customers have used NSX in production for a while. One of those customers, ViaWest--a co-location and cloud services provider based in Denver--has used NSX to help its cloud customers reduce costs, says Jason Carolan, CTO at ViaWest.



Related Reading



Network Computing encourages readers to engage in spirited, healthy debate, including taking us to task. However, Network Computing moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. Network Computing further reserves the right to disable the profile of any commenter participating in said activities.

 
Disqus Tips To upload an avatar photo, first complete your Disqus profile. | Please read our commenting policy.
 

Editor's Choice

Research: 2014 State of Server Technology

Research: 2014 State of Server Technology

Buying power and influence are rapidly shifting to service providers. Where does that leave enterprise IT? Not at the cutting edge, thatís for sure: Only 19% are increasing both the number and capability of servers, budgets are level or down for 60% and just 12% are using new micro technology.
Get full survey results now! »

Vendor Turf Wars

Vendor Turf Wars

The enterprise tech market used to be an orderly place, where vendors had clearly defined markets. No more. Driven both by increasing complexity and Wall Street demands for growth, big vendors are duking it out for primacy -- and refusing to work together for IT's benefit. Must we now pick a side, or is neutrality an option?
Get the Digital Issue »

WEBCAST: Software Defined Networking (SDN) First Steps

WEBCAST: Software Defined Networking (SDN) First Steps


Software defined networking encompasses several emerging technologies that bring programmable interfaces to data center networks and promise to make networks more observable and automated, as well as better suited to the specific needs of large virtualized data centers. Attend this webcast to learn the overall concept of SDN and its benefits, describe the different conceptual approaches to SDN, and examine the various technologies, both proprietary and open source, that are emerging.
Register Today »

Related Content

From Our Sponsor

How Data Center Infrastructure Management Software Improves Planning and Cuts Operational Cost

How Data Center Infrastructure Management Software Improves Planning and Cuts Operational Cost

Business executives are challenging their IT staffs to convert data centers from cost centers into producers of business value. Data centers can make a significant impact to the bottom line by enabling the business to respond more quickly to market demands. This paper demonstrates, through a series of examples, how data center infrastructure management software tools can simplify operational processes, cut costs, and speed up information delivery.

Impact of Hot and Cold Aisle Containment on Data Center Temperature and Efficiency

Impact of Hot and Cold Aisle Containment on Data Center Temperature and Efficiency

Both hot-air and cold-air containment can improve the predictability and efficiency of traditional data center cooling systems. While both approaches minimize the mixing of hot and cold air, there are practical differences in implementation and operation that have significant consequences on work environment conditions, PUE, and economizer mode hours. The choice of hot-aisle containment over cold-aisle containment can save 43% in annual cooling system energy cost, corresponding to a 15% reduction in annualized PUE. This paper examines both methodologies and highlights the reasons why hot-aisle containment emerges as the preferred best practice for new data centers.

Monitoring Physical Threats in the Data Center

Monitoring Physical Threats in the Data Center

Traditional methodologies for monitoring the data center environment are no longer sufficient. With technologies such as blade servers driving up cooling demands and regulations such as Sarbanes-Oxley driving up data security requirements, the physical environment in the data center must be watched more closely. While well understood protocols exist for monitoring physical devices such as UPS systems, computer room air conditioners, and fire suppression systems, there is a class of distributed monitoring points that is often ignored. This paper describes this class of threats, suggests approaches to deploying monitoring devices, and provides best practices in leveraging the collected data to reduce downtime.

Cooling Strategies for Ultra-High Density Racks and Blade Servers

Cooling Strategies for Ultra-High Density Racks and Blade Servers

Rack power of 10 kW per rack or more can result from the deployment of high density information technology equipment such as blade servers. This creates difficult cooling challenges in a data center environment where the industry average rack power consumption is under 2 kW. Five strategies for deploying ultra-high power racks are described, covering practical solutions for both new and existing data centers.

Power and Cooling Capacity Management for Data Centers

Power and Cooling Capacity Management for Data Centers

High density IT equipment stresses the power density capability of modern data centers. Installation and unmanaged proliferation of this equipment can lead to unexpected problems with power and cooling infrastructure including overheating, overloads, and loss of redundancy. The ability to measure and predict power and cooling capability at the rack enclosure level is required to ensure predictable performance and optimize use of the physical infrastructure resource. This paper describes the principles for achieving power and cooling capacity management.