Through NFV, organisations can tap into software-centric capabilities offered by service providers to access advanced networking capabilities without having to purchase, deploy and manage cumbersome appliances. And while NFV can be leveraged to simplify the network, the technology is also ideal for enabling new security capabilities to increase the organisation’s security capabilities.
For example, virtual firewall capabilities can be implemented with stateful packet inspection. IPsec can be enabled for secure site-to-site communication with other branch offices, while real-time network visibility gives network administrators valuable insights into what goes on within the network.
Organisations that require higher levels of security can also tap into virtual Unified Threat Management (UTM) capabilities for advanced capabilities such as intrusion detection system (IDS) and intrusion prevention system (IPS). Advanced Layer 7 capability means inline antivirus scanning can be performed on the application layer to protect users who are browsing the Internet or downloading emails.
Moreover, URL filtering makes it easier for IT to govern applications that employees can access. For instance, Facebook may be banned due to company policy, but marketing may require it as a component of their job function. While governance at this level has traditionally been difficult, URL filtering can offer manageable and available application-level control for individual business units.
Of course, the greatest appeal of NFV would probably be the ability for businesses to configure and enable the above-mentioned capabilities through a centralised online portal. This offers a simplified way for companies to take full control of their security with the ability to enable new security services as their organisation grows.