VMware NSX Edge Services Gateway

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hello my name is Heath Barrett I am a systems engineer with VMware working in the networking and security business unit and today I'd like to talk to you about our edge services gateway or ESG the edge services gateway is the services tier that is requisite in any network so when we think about the services that we expect to find we have our routing services we have our firewalling services we have VPN services and we have load balancing services so that and we provide the ESG in a VM form factor that is scalable from one gigabit to about ten gigabits a second and as part of the NSX package so when you consume NSX you have access to ESG additionally not only is it just part of NSX as the package is also part of it's not constrained in how you can deploy what I mean by that is that you can deploy one you can deploy a thousand there's no limit of what you can deploy with it from a topology perspective if we are consuming network virtualization the ESG would be what would appear with your physical router to you DSG like this the ESP would also have routing connections to the DLR as well as the Hat can have connectivity to other es GS and the protocols that we can use from a routing functionality standpoint include BGP both I and II and OSPF so we can configure these protocols here here here when you combine the form factor as well as the routing protocols that are available to you you can build this complex networking topologies as you desire and what is really powerful about the history is you can use this technology whether you are using the X lan or v VLAN technologies you don't have to consume network virtualization to consume the services here when we consider the firewalling technologies that the ESG provides what it's really focused on is the north-south firewalling so if we take a look at this topology the firewall technology would operate right there so this is the traffic that is traveling through an ESG into your environment that it sits in front of the ESG can leverage the vCenter objects so that is very powerful from the standpoint of you can build these dynamic groups based off of characteristics that we want to find in the network such as Windows connected in such a way or systems that are tagged in such a way is single spot of management so you may have heard about our distributed firewall you can manage the ESG firewall in the same spot that you manage the distributed firewall the ESG can also support individual configuration from this standpoint so what I mean by that is if you want to create an ESG and assign it to a team you can also let that team configure their own firewall and other policies without turning over the access to the entire environment so you have a multiple management model with it the next service that the ESG provides is VPN services so when we consider VPN services the first one we want to think about is a remote access and we provide this via SSL VPN and we support all major client types of Windows Linux Mac we support l2 VPN and the primary use case that we're seeing for this is more of the cloud onboarding or the dr as a service and we also support IPSec VPN and you can configure IPSec for that remote access connectivity and that can be from ESG to ESG or it can be ESG to a physical router or physical firewall the final service that the EC provides is our load balancing services so as modern IT and applications team are migrating towards this DevOps or infrastructure as a service model one of the aspects that always comes up in the conversation is how do you provide load balancing services to that so we combine the form factor the VM form factor and we can actually allow our teams to deploy the load balancers they need as they need them it supports all the common LB methods that we would expect such as round-robin lease connections hash on a URL it supports the common persistence method so source IP cookie SSL session ID etc it also has a policy engine so this policy engine allows us to do conditional logic and with this policy engine the system will operate from l4 to l7 and it allows these teams to start really deploying their application stacks on demand this is the ESG and an overview it provides the services functionality that you would expect in any modern network you can deploy one of them you can deploy many of them and it allows you to really embrace this model of IT servicing IT our IT as a service to the company and your teams can leverage it as they desire thank you you

Info

Channel: VMware NSX

Views: 11,581

Rating: undefined out of 5

Keywords: cloud storage, virtual machine, virtualization, vmware, vmware nsx, data center, cloud hosting, cloud computing, nsx, sddc, sdn

Id: eZo3eVGD5Wc

Channel Id: undefined

Length: 6min 0sec (360 seconds)

Published: Tue Jun 28 2016