What is Microsegmentation

Microsegmentation is the security technique in which the network is divided or compartmentalised into specific, definable zones. Each of these zones uses different policies to specify how data, applications, and even virtual machines within it can be accessed and controlled.


Microsegmentation is crucial because it allows IT administrators to create customised security policies specific to each zone or individual subnetwork (the microsegment). This reduces the risk of getting the entire network compromised in case of an attack because the threat is contained in the microsegment it infiltrates, thus preventing lateral movement attacks. This means said attack or security breach would be limited or isolated to just the subnetwork where the attack occurred and not affect the entire system.


Unparalleled Live Traffic Visibility

All VM access points are monitored to provide complete, real-time traffic visibility. New traffic and application during a specific period can also be monitored and visualised to show even subtle changes in the virtual network.

Reduced Attack Surface

CloudHive’s Virtual Security Service Modules (vSSM) are deployed on each physical server to enable micro-segmentation for inter-VM or inter-network communication, while east-west traffic is secured with L2-L7 security services and advanced security features. Real-time mitigation also blocks, impedes or quarantines active attacks.

Effortless Scaling

CloudHive seamlessly integrates with major virtualisation platforms such as VMware and OpenStack, and its on-demand security services can be applied to any and all new workloads and VMs through the scalability of vSSM. CloudHive also supports vMotion to ensure security services persist in the event the VM moves.

Improved Efficiency at Reduced Costs.

CloudHive Layer 2 deployment does not impact existing network topology but it minimises deployment and configuration overhead through unique configuration optimisation tools and features. Simplified management of a single appliance also reduces operational errors and improves overall efficiency, even as the total cost of ownership is reduced since CloudHive does not require any upgrade or expansion.

Real-Time Monitoring of Service Performance.

CloudHive provides complete monitoring of service chains in terms of service quality, network quality and computing resources. It also provides rapid troubleshooting capability with advanced data analysis.

Find Out More

Microsegmentation has become the panacea for securing cloud-based data centres. To truly protect your cloud data centre, you need a microsegmentation solution that is as virtual, flexible and elastic as the infrastructure it serves. It needs to be able to insert itself deeply into the virtual environment to protect data transfers and virtual resources as they deploy, grow, shrink and migrate within the data centre. It must also be hypervisor-aware and tightly integrated with virtual and cloud management and orchestration platforms.


Visit the link below to find out how Hillstone can give you the solution that fulfils all the above requirements.


Hillstone Micro-segmentation