The Architecture and Design document for the VMware Validated Design for Micro-Segmentation use case contains a validated model of the use case and provides a detailed design of each component.

The document discusses the building blocks and the main principles of each layer and provides the available design options according to the design objective. A set of design decisions clearly lays out the decisions that were made and includes justification and potential implementation of each decision.

See the Planning and Preparation document for the VMware Validated Design for Micro-Segmentation for more information about supported product versions.

Note:

Design decisions in this document are based on design decisions in the Architecture and Design document for the VMware Validated Design for the Software-Defined Data Center, but some decision have been removed or changed. As a result, the decisions are not always numbered consecutively.

Intended Audience

The Architecture and Design document is intended for cloud architects, infrastructure administrators and cloud administrators who are familiar with and want to use VMware software to deploy in a short time and manage an SDDC that meets the requirements for capacity, scalability, backup and restore, and extensibility for disaster recovery support.

VMware Validated Design for the SDDC and this Use Case Documentation

For details on product deployment, see the sections on vSphere, NSX and vRealize LogInsight in the VMware Validated Design for Software-Defined Data Center Deployment for Region A documentation. After initial deployment, the product documentation for vSphere and for NSX for vSphere enables you to set up your environment. Because this documentation is already available, the Validated Design for Micro-Segmentation does not include detailed step-by-step instructions for each task.

Some of the information in this guide, in particular illustrations, show a dual-region design or include VMware vSAN.

The Validated Design for Micro-Segmentation is a single-region design that does not include VMware vSAN. However, this design uses the vRealize Log Insight design from the VMware Validated Design for the SDDC. Because of that, vRealize Log Insight uses two regions.

This design can be expanded to use vSAN or to use two regions for all components.