You have multiple virtual machines in a hypervisor deployment within a data center. Your client wants to enforce security measures on east-west traffic between virtual machines. Which solution should you recommend in this situation?
A. JATP
B. Sky ATP
C. Virtual Chassis
D. vSRX
agreed. D is correct
“Another security consideration is for traffic passing between VMs within a virtualized server, which is also considered to be west and east directional traffic. The concern with this traffic is that there is, in many cases, low to no visibility, which makes evaluation and security policy enforcement difficult to say the least. To ensure visibility of this traffic and incorporate evaluation and policy enforcement, you can deploy a vSRX instance in the virtualized server. Once the vSRX VM is running in the virtualized server, you then configure the server’s virtual switches in such a way that all interVM traffic within the server is forced through the vSRX VM for evaluation and policy enforcement.” – From Juniper Networks Design Fundamentals Student Guide
Yes, I agree. Answer should be D.
Juniper JNCDA study guide
Creating Design Data Center – Incorporating Security
– Security should be incorporated for traffic passing between VMs within a virtualized server in the west and east direction.
– Use vSRX VMs to inspect and filter traffic within a virtualized server
Correct Ans. should be D.
East-West traffic are VM to VM traffic and in such scenario an another firewall VM would suffice. JATP is a hardware solution attached to SRX.