VMware has pumped out a key version of its core networking software with over 100 new features and added security and application-management support all designed to help customers build and run large scale virtual networks.\nThese enhancements are part of NSX-T30, the latest version of VMware's flagship networking package that supports everything from private or public cloud-native applications to bare-metal workloads\u00a0 running on multivendor hypervisors.\u00a0It also supports network-virtualization stacks in Amazon Web Services, Microsoft Azure Google Cloud, IBM Cloud as well as leading Kubernetes container technologies.\n\nNSX-T is the underpinning for VMware\u2019s software-defined Virtual Cloud Networking architecture that defines how enterprises can build and control network connectivity and security from the data center across the WAN to multi-cloud environments.\nTom Gillis senior vice president and general manager of VMware\u2019s networking and security business said Virtual Cloud Network customers now exceed 15,000, including 89 of the Fortune 100 and eight of the top 10 telcos, and has grown on average 50% each fiscal year since its introduction in May of 2018.\n\u201cThe driving idea enabled through NSX and the Virtual Cloud Network is to let customers have a public cloud experience and efficiencies, on-premise, removing the inefficient IT ticket requests and long waits for networking and security changes,\u201d Gillis said.\u00a0 \u201cOur data shows customers can experience as much as a 59% reduction in capital expenditures and 55% reduction in operational expenditures over traditional networking solutions with VCN.\u201d\nAnalysts said VMware has number of goals with VCN and NSX.\n\u201cFrom a customer perspective, they\u2019re seeing that VMware is evolving and extending its Virtual Cloud Network portfolio in an attempt to the meet the changing needs of the distributed applications and workloads that are increasingly critical to business outcomes and success. The network must be intelligently automated, serve traditional and modern applications, and support a mix of underlying infrastructure (VMs, bare metal, containers)," said Brad Casemore, IDC research vice president, data center networks.\u00a0\n\u201cVMware\u2019s goal is to make NSX invaluable to the VMware installed base as those customers modernize their on-premises data-center network infrastructure and similarly seek to provide consistent network and security polices for modern applications running in public clouds," Casemore said. "As the data center becomes distributed in a multicloud world, the data-center network must become a multicloud data-center network. On the VeloCloud [VMware\u2019s SD-WAN offering] side, the focus is on modernizing the WAN to accommodate delivery of these applications to the branch.\u201d\nOne new feature of NSX is the ability to control and synchronize multiple virtual networks as a single entity. Called NSX Federation, the feature lets customers set network configuration, management and policy setting across large environments.\u00a0\nNSX Federation would let customers generate \u201cfault tolerant zones\u201d where they could contain network problems in a single zone, minimizing problems and preventing them from spreading, VMware stated.\u00a0\nAnother feature has security policies\u202fattach to and\u202fmove with workloads,\u202fensuring that policy compliance is maintained during workload failover or migration between locations, wrote VMware\u2019s Umesh Mahajan, senior vice president of NSX in a blog about the upgrades.\nRelated to security, the Service-defined Firewall in the\u202fNSX\u202fplatform has been enhanced \u202fas well. \u201cNSX Distributed IDS\/IPS\u202fis an advanced threat-detection engine purpose-built to detect lateral threat movement on east-west traffic across multi-cloud environments,\u201d Umesh stated. \u201cUnlike traditional architectures that hairpin traffic to discrete appliances, NSX\u00a0Distributed IDS\/IPS\u00a0distributes the analysis out to every workload and curates the signatures evaluated by each engine based\u00a0on\u00a0precise knowledge of running applications.\u201d\nThe firewall is further enhanced with the implementation of URL Analysis for URL Classification and Reputation. The edge firewall detects access from outside the data center for granular detection and categorization of in-bound and outbound URLs, Umesh stated.\nNSX-T 3.0 also lets customers extend networking services by deploying NSX-T directly with the recently released VMware vSphere 7.0.\u00a0In March, the company rolled out its Tanzu technology across its major software components, including vSphere and Cloud Foundation in a major revamp of its key virtualization families. By embedding Kubernetes into the control plane of vSphere, it will let customers converge container and VM workloads onto a single platform with a single hypervisor, VMware stated. NSX provides the underlying networking support for all of the new software.\n\u201cNSX Federation will provide a means of Implementing fault-isolation domains and global policies synchronized across all locations. Other new features in NSX-T 3.0 include the ability to extend L2-7 container networking services to the recently released VMware vSphere with Kubernetes and VMware Cloud Foundation 4 platforms, the VMware Tanzu portfolio, and non-VMware Kubernetes platforms,\u201d Casemore said. \u201cThis is all about making NSX useful across a heterogenous, hybrid, multicloud landscape.\u201d\nIn addition to NSX, VMware also rolled out VMware vRealize Network Insight 5.2, the company\u2019s network visibility and analytics software. The new software features machine learning support for Flow Based Application Discovery will automatically group VMs into applications and tiers for a better understanding of what is occurring on the infrastructure, VMware stated.\u00a0\n\u201cvRealize Network Insight 5.2 has new end-to-end visibility of the network path from VM through to VMware Cloud on AWS including the AWS Direct Connect section. For VMware SD-WAN users, there will be additional visibility into SD-WAN application and business policy support,\u201d VMware stated.\nCasemore said VMware vRealize Network Insight 5.2, now flow-based application discovery, will help set policy and troubleshoot. \u201cOther vRNI enhancements include AWS Direct Connect support (for hybrid networking), VMware SD-WAN application and business policy statistics (again, useful in a hybrid or multicloud context), enhanced Kubernetes visibility, and support for VMware NSX-T 3.0. The latter, of course, is absolutely essential, especially with NSX-T serving as an overlay that extends across heterogenous application environments and infrastructure,\u201d he said.\nIn addition to the product announcements, VMware said it was deepening its integration with Microsoft Azure by developing support for Microsoft\u2019s Azure Edge Zones and Azure Private Edge Zones. The Edge Zones deliver Azure services and enable customers to deploy and run virtual network functions including VMware SD-WAN by VeloCloud across Azure regions and on-prem Azure Edge Zones.\nVMware said NSX-T 3.0 is available now, and VMware vRealize Network Insight 5.2 is expected to be available in Q1 of VMware\u2019s\u00a0 FY21, which ends on May 1, 2020.