Microsegmentation

As an orchestrator of the Data Center infrastructure, Aruba Fabric Composer manages and automates network and compute/storage infrastructure and can use API-based, third-party integrations. These integrations can be used to create microsegmentation on the compute host and the network from a single UI.

Aruba Fabric Composer orchestrates end-to-end microsegmentation functionality in conjunction with: 

Therefore, when orchestrating a microsegmentation solution, Aruba Fabric Composer focuses on two main concepts: Segmentation and Policies.

  • Segmentation, which is responsible for isolation of endpoints. This is done by PVLAN implementation.
  • Policies, which consist of rules that execute actions for endpoints. This is done by permit/deny/log and so on.

In Aruba Fabric Composer 6.4.0, policies must be enforced by the Stateful Distributed Firewall.