Distributed Network Encryption (DNE) authenticates and encrypts intra-data center traffic between two endpoints such as VMs, VIFs, or security groups within data centers managed by the same NSX Manager. DNE is an optional feature in NSX-T.