The existing IT infrastructure of a company in the aviation technology sector needed to be optimized to enhance IT security without the addition of new hardware. The existing IT infrastructure was based on three vSphere environments.
The project encompassed several key aspects aimed at providing a comprehensive solution to the current challenges. Initially, the internal security was only shielded at the network perimeter, and there was no possibility of acquiring new hardware. To address this issue, the solution strategy involved securing the existing vSphere environment with VMware NSX. This included setting up three clusters: DMZ, VDI, and Internal – each tailored to meet different requirements. A particular focus was on ensuring VS-NfD compatibility throughout the environment. Additionally, there was an extended requirement to provide VDI-based development environments to revive older projects for testing and quality assurance purposes, thus optimizing the development process.
The project presented several challenges that needed to be addressed. It was a brownfield project that required integrating into an existing and complex IT infrastructure. A strict division of clusters was necessary to ensure separate management of VDI, DMZ, and Internal. Additionally, a dynamic routing system had to be introduced. It was also crucial to maintain continuous operations and either avoid completely or minimize downtime.
The project implementation involved successfully deploying VMware NSX to enhance security and flexibility. A structured and segmented network infrastructure with clearly defined clusters was also established. By introducing dynamic routing protocols, network performance was further optimized. The planning and execution of the transition were carried out to ensure minimal downtime.
They were highly positive and palpable. Significant improvements in internal security and network performance were achieved. The provision of VDI environments for development projects was successfully executed. Furthermore, compliance with VS-NfD security standards and guidelines was met. "The NSX brownfield implementation with high security requirements in the VS-NfD environment requires careful planning, clear guidelines, and precise execution," the IT-Manager of the Client added.
