Arista NDR vs VMware NSX comparison

Arista and VMware are both solutions in the Network Traffic Analysis (NTA) category. Arista is ranked #6 with an average rating of 9.0, while VMware is ranked #8 with an average rating of 7.7. Arista holds a 6.9% mindshare in NTA, compared to VMware’s 2.1% mindshare. Additionally, 100% of Arista users are willing to recommend the solution, compared to 88% of VMware users who would recommend it.

Arista NDR

Read 14 Arista NDR reviews

1,168 Views
707 Comparison Views

100% willing to recommend

VMware NSX

Read 102 VMware NSX reviews

175 Views
117 Comparison Views

88% willing to recommend

Arista NDR

VMware NSX

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Aug 6, 2024

VMware NSX and Arista NDR are prominent in network solutions. VMware NSX has an advantage in network virtualization, while Arista NDR excels in network detection and response.

Features: VMware NSX offers comprehensive network virtualization and security, including micro-segmentation. It provides robust network management and enhanced security. Arista NDR specializes in detecting and responding to network threats using advanced AI and machine learning. It excels in identifying anomalies and potential security breaches while offering superior threat detection capabilities.

Room for Improvement: VMware NSX could enhance its integration with third-party tools, simplify configuration processes, and improve user documentation. Arista NDR users desire more intuitive configurability, enhanced analytics reporting, and better real-time monitoring features.

Ease of Deployment and Customer Service: VMware NSX is complex to deploy and configure but benefits from comprehensive support. Arista NDR has efficient deployment and user-friendly setup, though its customer service has mixed reviews in terms of responsiveness and support quality.

Pricing and ROI: VMware NSX has a high setup cost justified by significant ROI due to enhanced security and management efficiencies. Arista NDR is cost-effective with reasonable setup costs and strong ROI from superior threat detection, reducing security incidents.

To learn more, read our detailed Arista NDR vs. VMware NSX Report (Updated: March 2025).

Buyer's Guide

Arista NDR vs. VMware NSX

March 2025

Download the complete report

Helped 845,406 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Arista NDR

Ranking in Network Traffic Analysis (NTA)

6th

Ranking in Network Detection and Response (NDR)

10th

Average Rating

9.0

Reviews Sentiment

7.6

Number of Reviews

Ranking in other categories

No ranking in other categories

VMware NSX

Ranking in Network Traffic Analysis (NTA)

8th

Ranking in Network Detection and Response (NDR)

9th

Average Rating

8.0

Reviews Sentiment

6.9

Number of Reviews

102

Ranking in other categories

Network Virtualization (2nd), Cloud and Data Center Security (3rd), Network Automation (5th), Microsegmentation Software (1st)

Mindshare comparison

As of April 2025, in the Network Traffic Analysis (NTA) category, the mindshare of Arista NDR is 6.9%, down from 7.7% compared to the previous year. The mindshare of VMware NSX is 2.1%, up from 0.6% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Network Traffic Analysis (NTA)

Featured Reviews

reviewer1719513

Chief Technology Officer at a financial services firm with 11-50 employees

it's much easier to create your own queries and hunt for threats

We take in IOCs from my SOC and from AlienVault, and then we focus on traffic that hits IOCs and alerts us to it. The one thing that the Awake platform lacks is the ability to automate the ingestion of IOCs rather than having to import CSV files or JSON files manually. Awake didn't support the manual importation of CSV and JSON in version 3.0, but they added it in version 4.0. It's helpful, but it still has to be a specific CSV format. Automated IOCs are on the roadmap. Hopefully, they will be able to automate the ingestion of IOCs by Q1 next year. I'm currently leveraging Mind Meld, an open-source tool by Palo Alto, to ingest IOCs from external parties. I aggregate those lists and spit them out as a massive list of domains, hashes, file names, IPS. Then we aggregate those into their own specific categories, like a URL category. Awake ingests that just like the Palo Alto firewall does, and then it alerts me if traffic attempts to go into it. Some of that is already on the Palo Alto firewall, which blocks it, but that doesn't mean that there is no attempted communication. I want to know if there's a communication attempt because there might be an indicator on that specific device trying to reach an IOC. Yes, my Palo Alto blocked it, but there's still something odd sitting there, and what if it can reach a different IOC that I don't have information about? I want to focus on it. I could do that by leveraging Awake if it could ingest the IOCs automatically. That's something I leverage Awake for today. I still have to manually import it, which is cumbersome because I have to manipulate the files that I get from the different IOC providers into a specific format that it understands. Once they add the ability to automate that, it'll be more useful.

Read full review

DanielBass

Senior IT Strategy Consultant at a financial services firm with 1,001-5,000 employees

Improves network security with micro-segmentation but setup is complex

I value the ability to dynamically configure our network on the fly using VMware NSX. This flexibility is a huge advantage because it allows us to avoid static configurations that come with traditional hardware setups. Additionally, the micro-segmentation feature is beneficial for adhering to strict security regulations from our security department.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"This solution help us monitor devices used on our network by insiders, contractors, partners, or suppliers. Its correlation and identification of specific endpoints is very good, especially since we have a large, virtualized environment. It discerns this fairly well. Some of the issues that we have had with other tools is we sometimes are not able to tell the difference between users on some of those virtualized instances."

"We appreciate the value of the AML (structured query language). We receive security intel feeds for a specific type of malware or ransomware. AML queries looking for the activity is applied in almost real-time. Ultimately, this determines if the activity was not observed on the network."

"The interface itself is clean and easy to use, yet customizable. I like that I can create my own dashboards fairly easily so that I can see what is important to me. Also, the query language is pretty easy to use. I haven't needed to use it a ton, but as I need to go in and do different queries based on their requests, it has been fairly simple to use."

"Arista NDR's scalability is very good, making it easy to add more hardware components. You can order additional hardware and integrate it by stacking it with the existing setup. This feature cannot be seen in other NDR tools."

"Other solutions will say, "Hey, this device is doing something weird." But they don't aggregate that data point with other data points. With Awake you have what's called a "fact pattern." For example, if there's a smart toaster on the third floor that is beaconing out to an IP address in North Korea, sure that's bizarre. But if that toaster was made in North Korea it's not bizarre. Taking those two data points together, and automating something using machine-learning is something that no other solution is doing right now."

"This solution’s encrypted traffic analysis helps us stay in compliance with government regulations. It is all about understanding data exfiltration, what is ingressing and egressing in our network. One common attack vector is exfiltrating data using encryption. My capabilities to see potential data exfiltration over encrypted traffic is second to none now."

"The query language makes it easy to query the records on the network, to do searches for the various threat activities that we're looking for. The dashboard, the Security Knowledge Graph, displays information meaningfully and easily. I am able to find the information that I want to find pretty quickly."

"The most valuable feature is the ability to see suspicious activity for devices inside my network. It helps me to quickly identify that activity and do analysis to see if it's expected or I need to mitigate that activity quickly."

More Arista NDR pros

"The most powerful feature of VMware NSX is the micro-segmentation that allows us to separate the different protocols our application works with."

"The most valuable features are ease of use and user interface."

"I value the ability to dynamically configure our network on the fly using VMware NSX."

"This is a good firewall and overall it is rich in features."

"The micro-segmentation and the ability to create policy rules are valuable."

"The ability to scale from different clouds. At the moment, the scalability of the product is the number one thing that I saw."

"Though I haven't been working a lot on VMware NSX, it's good to have. What I like the most about it is that its console is good, and it doesn't take a lot of effort in terms of doing my daily tasks on it or what it's meant for. VMware NSX is still a preferred product in the market."

"The alert features are the most valuable."

More VMware NSX pros

Cons

"Be prepared to update your SOPs to have your analysts work in another tool separately. There are some limitations in the integrations right now. One of the things that I want from a security standpoint is integration with multiple tools so I don't need to have my analysts logging into each individual tool."

"They've been focused on really developing their data science, their ability to detect, but over time, they need to be able to tie into other systems because other systems might detect something that they don't."

"I would like to see the capability to import what's known as STIX/TAXII in an IOC format. It currently doesn't offer this."

"One thing I would like to see is a little bit more education or experience on AWS cloud for their managed services team. We've explained how we have the information set up, that the traffic coming in goes to the AWS load balancer and then gets sent on to our internal servers... but when I get notices they always tell me this traffic is coming from the IPs belonging to the load balancers, not the source IPs. So a little bit more education for their team about how AWS manages the traffic might help out."

"While the appliance is very good, and I think they're working on it, it would probably help if they integrated the management team cases into the appliance so that everything we are working on with them would be accessible on our platform, on the dashboard, on the portal. Right now, Awake is just an additional team that uses the appliance that we use and then we communicate with them directly. Communication isn't through the portal."

"Arista NDR needs to open legal offices to be closer to customers and partners. It needs more visibility in the NDR market in the Middle East. While they are doing well, they lack sufficient engineers. They need to hire more engineers to meet the demand and expand their presence. The current team is good but not enough to fully capture the market."

"I enjoy the query language, but it could be a bit more user-friendly, especially for new users who come across it... They should push it more into a natural language style as opposed to a query language."

"I would like to see a bit more in terms of encrypted traffic. With the advent of programs that live off the land, a smart attacker is going to leverage encryption to execute their operation. So I would like to see improvements there, where possible. Currently, we're not going to be decrypting encrypted traffic. What other approaches could be used?"

More Arista NDR cons

"Since most people are very much used to physical networking, they find it difficult to use VMware NSX in the initial stage."

"If there are other solutions already in place, it can be difficult to implement."

"In the future, the solution should be compliant with internet NIC."

"We would like tenant segmentation available in future releases."

"It could be more user-friendly, but it's manageable. When we add a specific node to this particular NSX and the configuration changes, it won't push through the errors where required, but it'll accept it. However, while using it, we will have issues. It can also be more stable."

"The solution could improve by having a more streamlined setup."

"The price is rather high."

"Our technical team is always looking for the solutions that they work with to offer more convenient integrations."

More VMware NSX cons

Pricing and Cost Advice

"The pricing seems pretty reasonable for what we get out of it. We also found it to be more competitive than some other vendors that we've looked at."

"The solution is very good and the pricing is also better than others..."

"Awake Security was the least expensive among their competitors. Everyone was within $15,000 of each other. The other solutions were not providing the MNDR service, which is standard with Awake Security's pricing/licensing model."

"Awake's pricing was very competitive. It's not a cheap option though. It's an investment to utilize it, but it's one that we decided was worth the cost, with the managed services. At our scale, it was a much better option to utilize their software and their managed services to handle this, rather than hiring another person to be an analyst. It was quite cost-effective for us."

"We switched to Awake Security because they were able to offer a model that was significantly less expensive and the value that we get out of it is higher."

"Because I represent a hedge fund, I have some leverage. I told them that they had to meet my conditions if they wanted me as a client. It was the same way with Awake. They wanted an initial four-year agreement. Initially, we signed on for a one-year contract, but they wanted the four-year deal when it came time for the renewal. I told them that I was not doing that. I said that they either had to do it on my terms, or I'd go somewhere else."

"The solution has saved thousands of dollars within the first day. Our ROI has to be in the tens of thousands of dollars since October last year."

"We haven't had to hire a dedicated network engineer because NSX handles 90 percent of it. The reduced overhead in terms of managing networks has been the biggest plus."

"The solution is very expensive."

"The price of VMware NSX is reasonable."

"There is a license required for this solution and there is also a support license available. The price of the solution could be better."

"The solution is free and the price for the support can be expensive."

"There is a license required for this solution, we pay annually."

"The pricing is higher than other options from Palo Alto, Fortinet, and Cisco because it is sold in a bundle."

"The cost of the solution is a bit high."

More VMware NSX pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Network Traffic Analysis (NTA) solutions are best for your needs.

See recommendations

845,406 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

16%

Financial Services Firm

11%

Government

Educational Organization

Computer Software Company

16%

Financial Services Firm

14%

Government

Manufacturing Company

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

Questions from the Community

What do you like most about Arista NDR?

Arista NDR's scalability is very good, making it easy to add more hardware components. You can order additional hardware and integrate it by stacking it with the existing setup. This feature cannot...

See all answers

What is your experience regarding pricing and costs for Arista NDR?

The tool's pricing is expensive but it is competitive.

See all answers

What needs improvement with Arista NDR?

Arista NDR needs to open legal offices to be closer to customers and partners. It needs more visibility in the NDR market in the Middle East. While they are doing well, they lack sufficient enginee...

See all answers

What are the biggest differences between Cisco ACI and VMware NSX?

There are some very major differences between both the Products and to name a few. -Cisco ACI have physical network gear (9K Switches) where the Code runs in ACI Policy Mode & the UCS server wh...

See all answers

What are the biggest differences between Cisco ACI and VMware NSX?

Once you know your way around the Cisco ecosystem, using Cisco ACI is not so difficult. It is a global product, so when you change one interface, changes are automatically reflected on every switch...

See all answers

What do you like most about VMware NSX?

The product has valuable features for security and network extension.

See all answers

Comparisons

Vectra AI vs Arista NDR

Compared 27% of the time

Cisco Secure Network Analytics vs Arista NDR

Compared 14% of the time

Trend Micro Deep Discovery vs Arista NDR

Compared 14% of the time

Darktrace vs Arista NDR

Compared 10% of the time

ExtraHop Reveal(x) vs Arista NDR

Compared 9% of the time

More Arista NDR Competitors

Illumio vs VMware NSX

Compared 20% of the time

Nutanix Flow Network Security vs VMware NSX

Compared 20% of the time

Akamai Guardicore Segmentation vs VMware NSX

Compared 17% of the time

Cisco Secure Workload vs VMware NSX

Compared 8% of the time

Cisco ACI vs VMware NSX

Compared 7% of the time

More VMware NSX Competitors

Product Reports

Buyer's Guide

Arista NDR

March 2025

Download Arista NDR product report

Buyer's Guide

VMware NSX

March 2025

Download VMware NSX product report

Also Known As

Awake Security Platform

VMware Nicira, Lastline Defender

Overview

Arista NDR (formerly Awake Security) is the only advanced network detection and response company that delivers answers, not alerts. By combining artificial intelligence with human expertise, Arista NDR hunts for both insider and external attacker behaviors, while providing autonomous triage and response with full forensics across traditional, IoT, and cloud networks. Arista NDR delivers continuous diagnostics for the entire enterprise threat landscape, processes countless network data points, senses abnormalities or threats, and reacts if necessary—all in a matter of seconds. The Arista NDP platform stands out from traditional security because it is designed to mimic the human brain. It recognizes malicious intent and learns over time, giving defenders greater visibility and insight into what threats exist and how to respond to them.

The Advent of Advanced Network Detection and Response & Why it Matters

The 5 Levels of Autonomous Security paper

Arista

VMware NSX is a sophisticated solution utilized for micro-segmentation, network security, software-defined networking, and private cloud construction. It aids in the transition from physical to virtual infrastructure, ensuring efficient network virtualization and security of production workloads.

VMware NSX empowers organizations to manage network functions, implement distributed firewalls, and enhance security within virtual environments. Crucial for disaster recovery and load balancing, it supports cloud-native application development and enterprise clients. Its ease of use, scalability, and seamless integration with existing VMware solutions ensure streamlined network management and swift deployment. Despite its extensive features, areas like pricing, routing functionality, and compatibility with certain platforms require attention.

What are the key features of VMware NSX?

Ease of Use: Simplifies network management with an intuitive interface.
Scalability: Adapts to growing infrastructure needs seamlessly.
Micro-Segmentation: Enhances security by dividing networks into smaller, manageable segments.
Integration: Seamlessly works with existing VMware solutions and third-party applications.
Dynamic Routing: Optimizes network traffic efficiently.
Security Options: Offers robust firewall features and security measures.
Automation: Facilitates quick deployment through comprehensive automation capabilities.
High Bandwidth: Ensures high-performance network operations.

What benefits and ROI should users look for?

Enhanced Network Security: Superior protection for virtual environments.
Efficient Disaster Recovery: Reliable support for business continuity.
Reduced Deployment Time: Fast implementation and configuration.
Improved Network Management: Centralized and streamlined control of network resources.

VMware NSX is widely implemented across industries such as finance, healthcare, and manufacturing. Organizations in these sectors utilize it to bolster security, enhance network efficiency, and support cloud-native applications. By extending on-premise networks into provider spaces and managing virtual access networks, VMware NSX significantly optimizes infrastructure operations.

VMware

Sample Customers

- Dolby Laboratories- Seattle Genetics- ARM Energy- Ooma- Prophix- Yapstone

City of Avondale, Lumeta, Kroll Ontrack, Heartland Payment Systems, Baystate Heallth, Exostar, Tribune Media, iGATE, NTT Communications, Synergent, California Natural Resources Agency, Bloomington Public Schools, Columbia Sportswear, Join Experience S.A, Schuberg Philis

Buyer's Guide

Arista NDR vs. VMware NSX

March 2025

Free Report: Arista NDR vs. VMware NSX

Find out what your peers are saying about Arista NDR vs. VMware NSX and other solutions. Updated: March 2025.

DOWNLOAD NOW

845,406 professionals have used our research since 2012.

See our Arista NDR vs. VMware NSX report.

See our list of best Network Traffic Analysis (NTA) vendors and best Network Detection and Response (NDR) vendors.

We monitor all Network Traffic Analysis (NTA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.