GigaVUE Cloud Suite for VMware

Intelligent Traffic and Application Visibility with Comprehensive

Virtualization and Automation for VMware Environments

VMware vCenter GigaVUE-FM

NSX-T Manager

Centralized Tools

Deep
APP APP APP APP APP APP APP APP Observability Application
Pipeline
Performance

OS OS OS OS OS OS OS OS
V Series V Series

Network
Performance
ESXi HYPERVISOR ESXi HYPERVISOR

SERVER SERVER Security

OR

Certified integration of GigaVUE Cloud Suite™ with VMware vCenter and NSX-T.

Key Features and Benefits

Traffic acquisition and local Traffic aggregation, expanded Centralized multi-cloud

workload-based processing processing, and distribution management and orchestration
to tools

• Reduce application downtime • Flexibly send traffic to • Realize a fully automated

aggregating visibility nodes or environment including support
• Automatically scale vTAPs
directly to tools for vMotion
up/down on demand

• Acquire all East-West VM • Selectively process traffic • Automatically instantiate and

with GigaSMART® Application configure GigaVUE V Series using
workload traffic
Intelligence NSX-T Dynamic Service Insertion
• Minimal VM impact with DPDK
for high performance and • Increase overall efficiency by • ATS automatically selects VMs and
capacity eliminating duplicated packets interfaces to simplify horizontal
scaling configuration
• Acquire traffic using tunnel-as- • Filter any packet content by
a-source, including from virtual searching for patterns based • Single-pane-of-glass management,
on strings and offsets or PCRE orchestration, and visualization
TAPs in Ericsson and Nokia
Regular Expression across multiple clouds
environments

© 2023 Gigamon. All rights reserved. 1

 DATA SHEET | GIGAVUE CLOUD SUITE FOR VMWARE

Figure 2. Easy-to-use and intuitive graphical user interface with drop-down menus.

Limitations of physical networking and traditional security compliance. This platform supports Gigamon Application
in an increasingly dynamic virtual world create artificial Intelligence to automatically identify thousands of
barriers to fast provisioning of networking and security applications, granularly drop irrelevant content, and send
services and simplified network operations. Manual specific app traffic to specific tools. Additionally, advanced
provisioning and fragmented management interfaces L4–7 metadata is generated to provide contextual
reduce efficiency and limit the ability of enterprises to insights.
rapidly and securely deploy, move, and scale applications
and data to meet business demands.

Paramount to securing and monitoring the software- Accelerate Application Migration to

defined data center (SDDC) infrastructure is the ability
the Cloud
to have an immediate and rich understanding of
activity in your end-to-end network. To accomplish this, Using GigaVUE Cloud Suite for VMware, security
security, application, and network monitoring solutions architects can ensure an effective security posture in
require traffic visibility of both virtual and physical the private and hybrid cloud, thereby accelerating the
infrastructure. This requirement can be challenging. onboarding of applications to VMware.

Pervasive visibility into the data center enables GigaVUE Cloud Suite for VMware, as shown in Figure 1,
application and security monitoring tools to analyze acquires traffic with a single, lightweight V Series VM
congestion points, security threats, and application installed on each of the various hypervisors running
behavior. This helps automate, secure, and optimize the workloads of interest. The platform integrates with
data center network. VMware’s vCenter and/or NSX-T APIs to discover the
cloud infrastructure. It then deploys the V Series
GigaVUE Cloud SuiteTM, a key component of the Gigamon instances that copy, optionally process, and either
Deep Observability Pipeline, is a fully VMware-certified transmit traffic to a second stage V Series or GigaVUE
deep observability pipeline that acquires, optimizes, and HC Series for aggregation and expanded processing,
distributes selected traffic to security and monitoring or send traffic directly to tools. First-stage V Series
tools. This enables enterprises and service providers to visibility nodes are capable of processing all GigaSMART
extend their security posture and network monitoring to data de-duplication applications, Application Metadata
VMware and accelerate the time to detect and mitigate Intelligence, as well as applying multiple filtering
threats and operational issues, while helping to assure

© 2023 Gigamon. All rights reserved. 2

 DATA SHEET | GIGAVUE CLOUD SUITE FOR VMWARE

Figure 3. Straightforward seven-step process for provisioning, configuration, and monitoring.

techniques, including Application Filtering Intelligence attributes to rapidly detect and respond to threats,
and adaptive packet filtering. Second-stage V Series vulnerabilities, compliance violations, and operational
collect aggregated traffic from the desired hosted issues across the infrastructure. Leveraging over 7,000
workloads and apply additional advanced traffic application-aware metadata attributes enables SIEMs
intelligence prior to sending selected traffic to security to find and help resolve numerous security threats
and monitoring tools. and vulnerabilities.

With this solution, you can take advantage of: • Reduced data costs: Optimize costs with pervasive
visibility for security and monitoring without increasing
•  omplete infrastructure virtualization with
C load on compute instances as more security and
automation: The entire environment, including monitoring tools are deployed. Acquire traffic once from
the Gigamon Deep Observability Pipeline, can compute instances and leverage Application Intelligence
be implemented in software with automated to filter out irrelevant traffic and minimize the burden
orchestration tools. This provides superior agility with on tools; their efficiency and effectiveness are greatly
minimal manual interventions and allows proactive improved.
architectural modifications to enable maximum
efficiency. • Operational efficiency: One common software-based
platform for visibility across the entire IT environment
• Increased security: Centralize visibility for security enables consistent insight in VMware. Acquire network
and performance monitoring of all projects in an traffic with minimal impact to the host’s utilization and
organization. Network and security operations and apply traffic intelligence before distributing to multiple
incident response teams can use network and security and monitoring tools for analysis.
application visibility enhanced with L4–7 metadata

© 2023 Gigamon. All rights reserved. 3

 DATA SHEET | GIGAVUE CLOUD SUITE FOR VMWARE

• Operational agility: • Automatic instantiation, configuration, vMotion-

based VM relocation, and monitoring via vCenter
– R
 apidly detect changes in projects being
and NSX-T with fabric manager enables operational
monitored
simplicity
– A
 utomatic Target Selection: Automatically
extract network traffic of interest anywhere • Dynamically select VM and network interfaces based
in the infrastructure being monitored, without on the rules defined in the inclusion and exclusion
having to specify the target compute instances maps in the monitoring session to enhance filtering
to monitor and granularly target specific workloads

– F
 lexibility to perform the analysis of traffic
anywhere GigaVUE V Series: Data Aggregation
– A
 utomate and orchestrate visibility using a tight
coupling between Fabric Manager’s open REST For traffic aggregation and enhanced processing,
APIs and VMware’s vCenter and NSX-T V Series can also be provisioned as visibility nodes
and centrally deployed in host or cluster (NSX-T)
– Easily upgrade all V Series instances within formats. These instances receive copied packets from
multiple ESXi/NSX-T monitoring domains the data acquisition V Series or from other devices
simultaneously to newer versions while retaining such as virtual TAPs from Ericsson and Nokia, via
the same policy configurations tunnel-as-a-source methods, combine these streams,
and apply additional data de-duplication GigaSMART
applications — including application filtering and
application metadata generation — to optimize flows
GigaVUE Cloud Suite Components and distribute to the appropriate tools.

GigaVUE V Series: Data Acquisition Key capabilities and benefits include:

For traffic acquisition and optional GigaSMART-based

• Deployment of a fully virtualized architecture to
processing — including Application
realize software-defined data centers (SDDC)
Intelligence — V Series are provisioned as data
acquisition VMs and deployed as a VMware ESXi guest • Flexible filtering mechanism with elastic monitoring
on each hypervisor. These instances receive copied session support for traffic filtering based on any
packets from each of the other VMs on the same header or payload content, as well as on more than
server through service insertion on a virtual switch 3,500 identified applications, packet manipulation,
(VDS or VSS). They may be configured to partially or and forwarding
fully process traffic and send either directly to the end • Rich optimization to reduce load on operational
security or monitoring tools or to a V Series or HC Series tools, accelerate time to troubleshoot and remediate
for aggregation, expanded processing, and distribution. network and security issues

• Automatically instantiate unlimited V Series instances

Key capabilities and benefits include:
in a cluster without extra expense, to
ensure performance
• Single, lightweight VM per hypervisor minimizes
impact on compute nodes and delivers high • Supports multiple ingress protocols including VXLAN,
throughput by leveraging DPDK ERSPAN, L2GRE, and REP (raw endpoint) and L2GRE
for egress
• Locally process GigaSMART apps, such as all
application filtering and application metadata • Maintain regulatory compliance by masking sensitive
generation, and data de-duplication, to offload tools, and private data
and utilize Flow Mapping® for optimized flows and • Enhanced visibility into tunneled application flows
IPsec tunneling for secure transmissions

© 2023 Gigamon. All rights reserved. 4

 DATA SHEET | GIGAVUE CLOUD SUITE FOR VMWARE

GigaVUE Physical Appliances: Data Aggregation • Use VMware NSX Data Center Dynamic Service
Insertion to associate visibility policies with security
Traffic aggregation, intelligence, and distribution can
groups, thereby providing continuous and automated
alternatively leverage the GigaVUE HC Series visibility
traffic visibility for applications as they scale up
nodes, which are deployed within the visibility tier.
Advanced transformations on the aggregated network • Direct the V Series for data acquisition to copy their
traffic can be performed before it is delivered to the micro-segments’ traffic, process accordingly, and
tools. send it to V Series or HC Series for aggregation and
further processing, or send directly to tools
Key capabilities and benefits include: • Track vMotion events across distributed resource
scheduler (DRS) and high-availability (HA) cluster
• Automatically identify over 3,500 applications environments to couple visibility policies to the
using deep packet inspection; selectively filter and monitored VMs and migrate them with the VMs as
distribute to the proper security and monitoring tools they move across physical hosts
• Generate more than 7,000 application-metadata • Dynamically adjust traffic received or orchestrate new
attributes and send to SIEM and other tools to further traffic policies
refine distribution rules, troubleshoot issues and
• Automatically discover and display end-to-end
identify security risks
topology and view the visibility tier and vCenter VM
• Transform headers: Modify content in the header instances as a topology
(L2–L4) to ensure security and segregation of sensitive
• For visibility tiers based on physical appliances,
information
configure and monitor GigaVUE HC Series and
• Handle sensitive data, including slicing, sampling, forwards traffic to tools
and masking packets to optimize traffic sent to tools,
reducing tool overload Works with NSX-T to support Host mode (one V Series
node per host) or Cluster mode (n V Series nodes per
cluster)
GigaVUE-FM: Management and Orchestration

GigaVUE-FM handles centralized orchestration and

management. Using RESTful APIs and tight coupling
to VMware vCenter and NSX-T, GigaVUE-FM directs the
automatic instantiation and configuration of V Series
for data acquisition on each server with workloads to
be scrutinized, as well as those used for aggregation.
GigaVUE-FM monitors and controls operations to
simplify network management. To deploy V Series
nodes, FM can either be selected as the web server that
provides uploaded image versions via a connection to
NSX-T Manager, or an external image server URL can be
used (default option).

Key capabilities and benefits include:

• Enable SecOps and NetOps teams to automate the

selection, filtering, and forwarding of the
ever-growing East-West virtual traffic for security and
monitoring analytics

© 2023 Gigamon. All rights reserved. 5

 DATA SHEET | GIGAVUE CLOUD SUITE FOR VMWARE

Minimum Requirements for GigaVUE Cloud Suite Components

Solution Component Minimum per Host Description

GigaVUE V Series Small: 4 x vCPU, 8GB RAM vNICs (three or more):

Medium: 8 x vCPU, 16GB RAM • Maximum: 10 network adapters
Large: 16 x vCPU, 32GB RAM 10xvNICs • Network Adapter 1; V Series management port
• N
 etwork Adapter 2; V Series tunneling port to on-premises
physical or virtual visibility fabric nodes or to tools
• Network Adapters-ESXi 3–10; V Series network ports
• Network Adapters-NSX-T: 3 for V Series network ports

GigaVUE-FM 4 x vCPU, 16GB RAM, 40GB root disk Fabric manager:

• N
 eeds to be able to access the V Series nodes to issue the
commands
• A
 utomatically spins up additional V Series for
aggregation nodes based on a predefined configuration
in the user interface*

For on-premises GigaVUE-FM requirements and ordering

information, please refer to the GigaVUE-FM data sheet.

*Based on the number of virtual TAP points, GigaVUE V Series nodes will be auto-launched by GigaVUE-FM.

Ordering Information
GigaVUE Cloud Suite for VMware can be purchased as a tiered data licensing subscription from Gigamon.
The table below lists the SKUs for procurement

Part Number Description

VBL-50T-BN-CORE Monthly Term license for CoreVUE software up to 50TB per day in V Series for cloud and virtual
environments. Capabilities included: Advanced Tunneling, Slicing, Masking, Advanced Load
Balancing. Min Term is 12 months. Includes bundled Elite-Plus Support.

VBL-250T-BN-CORE Monthly Term license for CoreVUE software up to 250TB per day in V Series for cloud and
virtual environments. Capabilities included: Advanced Tunneling, Slicing, Masking, Advanced
Load Balancing. Min Term is 12 months. Includes bundled Elite-Plus Support.

VBL-2500T-BN-CORE Monthly Term license for CoreVUE software up to 2,500TB per day in V Series for cloud and
virtual environments. Capabilities included: Advanced Tunneling, Slicing, Masking, Advanced
Load Balancing. Min Term is 12 months. Includes bundled Elite-Plus Support.

VBL-25KT-BN-CORE Monthly Term license for CoreVUE software up to 25,000TB per day in V Series for cloud and
virtual environments. Capabilities included: Advanced Tunneling, Slicing, Masking, Advanced
Load Balancing. Min Term is 12 months. Includes bundled Elite-Plus Support.

© 2023 Gigamon. All rights reserved. 6

 DATA SHEET | GIGAVUE CLOUD SUITE FOR VMWARE

Part Number Description

VBL-50T-BN-NV Monthly Term license for NetVUE software up to 50TB per day in V Series for cloud and virtual
environments. Capabilities included: CoreVUE for V Series, De-duplication, NetFlow. Min Term is
12 months. Includes bundled Elite-Plus Support.

VBL-250T-BN-NV Monthly Term license for NetVUE software up to 250TB per day in V Series for cloud and virtual
environments. Capabilities included: CoreVUE for V Series, De-duplication, NetFlow. Min Term is
12 months. Includes bundled Elite-Plus Support.

VBL-2500T-BN-NV Monthly Term license for NetVUE software up to 2,500TB per day in V Series for cloud and virtual
environments. Capabilities included: CoreVUE for V Series, De-duplication, NetFlow. Min Term is
12 months. Includes bundled Elite-Plus Support.

VBL-25KT-BN-NV Monthly Term license for NetVUE software up to 25,000TB per day in V Series for cloud and
virtual environments. Capabilities included: CoreVUE for V Series, De-duplication, NetFlow. Min
Term is 12 months. Includes bundled Elite-Plus Support.

VBL-50T-BN-SVP Monthly Term license for SecureVUE Plus software up to 50TB per day in V Series for cloud and
virtual environments. Capabilities included: NetVUE for V Series, App Metadata Intelligence, App
Filter Intelligence. Min Term is 12 months. Includes bundled Elite-Plus Support.

VBL-250T-BN-SVP Monthly Term license for SecureVUE Plus software up to 250TB per day in V Series for cloud and
virtual environments. Capabilities included: NetVUE for V Series, App Metadata Intelligence, App
Filter Intelligence. Min Term is 12 months. Includes bundled Elite-Plus Support.

VBL-2500T-BN-SVP Monthly Term license for SecureVUE Plus software up to 2,500TB per day in V Series for cloud
and virtual environments. Capabilities included: NetVUE for V Series, App Metadata Intelligence,
App Filter Intelligence. Min Term is 12 months. Includes bundled Elite-Plus Support.

VBL-25KT-BN-SVP Monthly Term license for SecureVUE Plus software up to 25,000TB per day in V Series for cloud
and virtual environments. Capabilities included: NetVUE for V Series, App Metadata Intelligence,
App Filter Intelligence. Min Term is 12 months. Includes bundled Elite-Plus Support.

Note: Licenses are managed and activated from GigaVUE-FM.

Support and Services

Gigamon offers a range of support and maintenance services. For details regarding the Gigamon Limited
Warranty and our Product Support and Software Maintenance Programs, visit gigamon.com/support-and-
services/overview-and-benefits.

© 2023 Gigamon. All rights reserved. 7

 DATA SHEET | GIGAVUE CLOUD SUITE FOR VMWARE

About Gigamon
Gigamon offers a deep observability pipeline that harnesses actionable network-derived intelligence to amplify
the power of observability tools. This powerful combination helps IT organizations to assure security
and compliance governance, speed root-cause analysis of performance bottlenecks, and lower operational
overhead associated with managing hybrid and multi-cloud IT infrastructures. The result: modern enterprises
realize the full transformational promise of the cloud. Gigamon serves more than 4,000 customers worldwide,
including over 80 percent of Fortune 100 enterprises, nine of the 10 largest mobile network providers, and
hundreds of governments and educational organizations worldwide. To learn more, please visit gigamon.com.

Worldwide Headquarters
3300 Olcott Street, Santa Clara, CA 95054 USA
+1 (408) 831-4000 | gigamon.com

© 2019-2023 Gigamon. All rights reserved. Gigamon and Gigamon logos are trademarks of Gigamon in the United States and/or other countries.
Gigamon trademarks can be found at gigamon.com/legal-trademarks. All other trademarks are the trademarks of their respective owners. Gigamon
reserves the right to change, modify, transfer, or otherwise revise this publication without notice.

09.23_11

© 2023 Gigamon. All rights reserved. 8