Data Center Security

 View Only

  • 1.  Symantec Data Center Security implementation

    Posted May 01, 2018 04:42 AM

    Hello

    We are using SVA (security virtual appliance) in our virtual environment that is integrated by VMware vShield. the SEPM version is 12.1.6 MP9 and as you might know upgrading to SEP 14 is not possible for our case since SEPM 14 does not more support SVA and shared insight cache features. so as we need to keep SVA in our environment to support more than 1000 VMs to offload AV scanning from every single VM, we have decided to replace a new product from Symantec to support it and we get to Symantec Data Center Security; Server.

    As we checked related information for this product we are facing to inconsistent information regarding its need to NSX or vShield platform for implementation. In some documents Symantec declared that since releasing version 6.6 the dependency to this platforms has been gone while in 6.7 version data sheet having NSX environment is mentioned. Now we are confused in implementation phase and looking for a clear answer.

    It would be appreciated if you provide any more details and advices.

     

    BR

    Kurt



  • 2.  RE: Symantec Data Center Security implementation

    Posted May 02, 2018 01:42 PM

    Hi Kurt

    The most updated DCS:SA Platform Support Matrix (6.7 MP3 Page 28) shows that vShield is not supported, just NSX Advanced or Enterprise.

     

     

     

     

     



  • 3.  RE: Symantec Data Center Security implementation

    Posted May 02, 2018 05:14 PM

    Hi Orionx

    Thank you but my questions is that does Server editon need NSX environment or not?

    Since we do not have NSX platform in our environment what is ths solution for implementing DCS;Server? we have to buy and run NSX?!

     

    Thanks



  • 4.  RE: Symantec Data Center Security implementation

    Posted May 02, 2018 08:10 PM

    Well the most comprehensive documentation about DCS:Server and how it works is located at Data Center Security: Server workflow diagram and yes, you will require NSX if you have just DCS:Server.

     

     



  • 5.  RE: Symantec Data Center Security implementation

    Broadcom Employee
    Posted May 17, 2018 07:25 AM
    If you have vShield from VMWare, you can use the included license for NSX for antivirus offloading.

    https://kb.vmware.com/s/article/2145269

    vShield Endpoint License in NSX 6.2.4

    vShield Endpoint is a component of vCloud Network and Security (vCNS). This component allows you to offload antivirus and anti-malware agent processing to a dedicated secure virtual appliance. With the release of NSX 6.2.4, the default license is NSX for vShield Endpoint, allowing you to manage your vShield Endpoint environment with NSX. Customers who purchased vSphere with vShield Endpoint (Essential Plus and later) will be able to download NSX. This means that NSX will appear on the vSphere download site like vCNS. To ensure customers do not use any other unlicensed NSX features (eg. VXLAN, DFW, Edge services), the license key will have hard enforcement to prevent NSX host preparation and block Edge creation.



  • 6.  RE: Symantec Data Center Security implementation

    Posted May 18, 2018 10:49 AM

    Thumbs up to Jim's response above!

    In a nutshell, if you have a current paid-for vSphere license, you are covered for "Basic" NSX, which provides the Guest Introspection functionality used by DCS:S for Agentless Malware Protection.  You only need NSX Advanced or NSX Enterprise (the expensinve ones) if you want to use the Agentless Network IPS function of DCS:S.