As IT teams are finding themselves under pressure to โdo more with lessโ, the demands on enterprise infrastructure, including compute, networks and storage, are increasing exponentially. Not only is the infrastructure deployment required to be automated, secure and agile but it must also operate at much lower costs. Viewed as cumbersome and process-driven, โstandardโ infrastructure deployments are no longer enough to meet the needs of todayโs businesses.
As a result, companies are utilising technologies such as software-defined networking (SDN), which allows a greater flexibility in network architecture that wouldnโt have been previously considered possible. Shifting data centre workloads to the cloud enables enterprises to achieve elasticity that helps accelerate speed of innovation, create sustainable differentiation, and safeguard customers.
This has led to virtual infrastructure, such as that provided by VMware, becoming a critical component of the modern enterprise, providing limitless potential for scalability and functionality. The adoption of software-defined data centres (SDCC), in particular, is gathering momentum. Indeed, VMware suggests that most organisations already have removed physical compute components in their data centres, with the majority virtualising between 50 and 100 percent of their servers.
Can you give us an example of the benefits?
One of the best-known virtualised SDN technologies is VMwareโs NSX platform, which forms the networking and security foundation of the SDDC. Structured in a completely different fashion to traditional network design โ think 16 million Virtual Extensible LANs (VXLANs) deployed across a new network, compared to four thousand in a traditional VLAN design environment โ it allows flat networks to be built exceptionally quickly to keep up with demand. It also offers micro- segmentation to support fine-grained security policies for individual workloads and automated policy provisioning for quick deployment.
However, the adoption of virtualisation and SDCC technology presents businesses with new challenges to overcome.
What are these challenges?
The complexity of the services delivered in these environments and their interdependencies with the virtualised and geographically distributed infrastructure is unprecedented, and without proper visibility into these new environments, businesses are unable to assess their security posture, or whether services are performing as they should.
Traditional network tools donโt have great visibility into the virtual world, though. ย Tools from vendors such as VMware, on the other hand will have great understanding of the virtual world infrastructure, but not necessarily have oversight of the applications and services that run on this infrastructure, or their dependencies. Furthermore, they donโt offer visibility into the legacy infrastructure that businesses still rely on. As a result, there is a need for one single service and security assurance platform that can continuously monitor physical, virtual and cloud infrastructures and applications they support, and provide visibility into their performance and dependencies.
Why is visibility so important?
Visibility into NSX environments is of huge benefit to the DevOps function, for example, whose role in an organisationโs digital transformation is to develop new applications and refactor existing apps to make them compatible with virtualised and hybrid cloud environments. In a microservice architecture, which is quickly adopted by DevSecOps teams, multiple fine-grained and loosely coupled services will have to frequently communicate by utilising RESTful APIs and messaging. ย But, as these services increasingly communicate with each other, complete visibility of the traffic going across these new, complex and often hybrid networks will be vital in understanding the conversations taking place.
Understanding how these processes communicate with each other is key to understanding how theyโll function when put into a production environment, and necessary to be able to identify root-cause for service degradations.
How can we achieve this visibility?
It comes down to being able to see network communications which, even though there may not be any physical wire to speak of, is all wire-data. This can be distilled down to create actionable and insightful smart data – metadata based on the processing and organisation of wire-data at its point of collection and optimised for analytics at the highest possible speed and quality. Delivered in real time, all teams โ Dev, Sec, Ops, and QA โ can use this smart data for common situational awareness, and to make decisions that increase efficiency across virtual networks.
What does this mean for a VMware deployment?
To realise the benefits of SDCC technology, organisations need deep insights that go beyond traditional North-South traffic views, and span the entire virtualised infrastructure, from the perimeter to the edge. Full and complete visibility of all traffic is crucial, from North to South, and from East to West. After all, when an organisation runs hundreds and even thousands of applications and continuously delivers new releases utilizing agile technologies, microservices and virtualised environments, the clear waters weโre used to when delivering new applications by utilising waterfall methodologies, monolithic software architectures and physical environments, suddenly become an awful lot muddier.
Only through having smart data insights based on full visibility can businesses gain a complete view into application performance, security assurance, and user experience. Without it, they risk blind spots, which can hinder innovation, efficiency and security, while increasing the risk of outages and downtime.
As the pressure on enterprises to deliver new applications and services faster, with higher quality and security continues to grow, an organisationโs digital future will depend on its ability to gain an end-to-end visibility into its infrastructure, applications and their respective dependencies.
Michael Segal is director of solutions marketing atย NetScoutย
As Area Vice President Strategy at NETSCOUT, Michael is responsible for developing and executing strategic and content marketing plans. As part of an agile marketing organisation these activities include situation analysis, differentiation, positioning, messaging, content creation and continuous improvement based on the feedback loop from the paid, earned, shared, and owned (PESO) channels metrics. Michael's technical areas of expertise include SaaS/Cloud, virtualization, Mobile IP, security, IP networking, Wi-Fi/wireless, VoIP and remote access. Michael holds patents in areas of networking and wireless mobility.