The virtualized DMZ takes advantage of virtualization technologies to reduce the DMZ footprint, thereby freeing valuable rack space, which in turn reduces power consumption and overall operating costs. Server and infrastructure virtualization are two main components of the virtualized DMZ. Through the use of server virtualization, applications residing in the DMZ are moved to virtual machines, many of which can reside on the same physical server.
In a virtualized server environment, applications can reside on virtual machines, and multiple virtual machines may reside within the same physical server. Traffic may not need to leave the physical server and pass through a physical access switch for one virtual machine to communicate with another. In this environment, a virtual network (vnet) is created within each server. Multiple VLANs, IP subnets, and access ports can all reside within the server as part of a virtual network.
The Cisco Nexus™ 1000V Series Switches address these concerns by allowing network and server teams to maintain their traditional roles and responsibilities in a virtual networking environment through features and functions comparable to those in today’s physical network switches