What's your take on virtual gateway products? Are they becoming necessary for organizations that use virtualization...
By submitting your personal information, you agree that TechTarget and its partners may contact you regarding relevant content, products and special offers.
extensively in the data center, or are traditional gateway vendors adding virtualization security features to standard gateway products?
Ask the Expert!
Have questions about network security? Send them via email today! (All questions are anonymous.)
Enterprises of many different sizes are embracing virtualization technology to cut costs and increase fault tolerance. This requires the installation of powerful virtual host servers in data centers, each of which may service dozens or hundreds of guest operating systems. Security administrators must consider the ways these devices interact with traditional security controls and plan for the increased use of virtualization in their environments.
One emerging approach is the use of virtual security gateways that are aware of the virtualization context and can regulate activity between virtual machines. Systems such as the Cisco Virtual Security Gateway and the Checkpoint Security Gateway Virtual Edition are able to reach directly into the virtual host's hypervisor and mediate the connections between systems to enforce your organization's security requirements.
The primary function a virtual security gateway serves is to segment virtual guests into security zones, similar to the manner that a network firewall separates physical servers into zones inside of a traditional data center. This is an especially important control in mixed-environment virtualization farms that commingle systems of differing sensitivity levels and/or belonging to different customers. If you're running a multi-tenant virtual environment, this technology is practically a must-have.
The bottom line? If you're looking to achieve increased control over the segmentation of virtual hosts, a virtual security gateway may be an excellent addition to your environment.
Editor's note: SearchSecurity.com expert Mike Chapple contributed to this article.
Dig Deeper on Virtualization security issues and threats
Related Q&A from Matthew Pascucci
A new version of the Ursnif Trojan uses mouse movements to bypass security efforts by beating sandbox detection. Expert Matthew Pascucci explains how...continue reading
Adobe Flash's end of life is coming, and it includes an incremental removal method, allotting security teams enough time to adjust. Matt Pascucci ...continue reading
Explore the differences of public versus private bug bounty programs, as well as the benefits of each one. Expert Mathew Pascucci explains the risk ...continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.