Setup guide
Figure 1‑1. Multi-Interface Edge
vShield Edge
MPLS VPN
Internet
Interface 1
Interface 3
Interface 2
Interface 4
Interface 6
Interface 5
DMZ
network
Accounting
network
Marketing
network
Engineering
network
VPN
Load
Balancing
DNS
DHCP
availability
High
vShield Edge
vShield Endpoint
vShield Endpoint offloads antivirus and anti-malware agent processing to a dedicated secure virtual
appliance delivered by VMware partners. Since the secure virtual appliance (unlike a guest virtual machine)
doesn't go offline, it can continuously update antivirus signatures thereby giving uninterrupted protection
to the virtual machines on the host. Also, new virtual machines (or existing virtual machines that went
offline) are immediately protected with the most current antivirus signatures when they come online.
vShield Endpoint installs as a hypervisor module and security virtual appliance from a third-party antivirus
vendor (VMware partners) on an ESX host. The hypervisor scans guest virtual machines from the outside,
removing the need for agents in every virtual machine. This makes vShield Endpoint efficient in avoiding
resource bottlenecks while optimizing memory use.
Chapter 1 Introduction to vShield
VMware, Inc. 9