With Micro-segmentation, you can control East-West traffic between application instances running in the AWS cloud.

With NSX Cloud micro-segmentation security, you can control East-West traffic between application instances running in the AWS cloud. NSX Cloud applies policy based on VM attributes, and the policy stays applied even when the instance moves. You can define a policy for example, to isolate a VM to avoid the spread of advanced persistent threat. Once this policy configuration is applied, it is used across multiple VPCs and availability zones without having to recreate them for each VPC.

IT can enforce security controls on North-South traffic flowing to and from individual instances and the Internet. Micro-segmentation security can also be enforced at the instance-level. You can define security rules based on, for example, VM name, OS type, AMI ID, and user-defined tags.

NSX Cloud also enables real-time logging and monitoring of security events by integrating with common security information and event management (SIEM) tools.