Screen Shot 2025-07-15 at 9.37.19 AM.png

Cisco Orchestration

ReSTNSX has been delivering network security automation solutions for VMware NSX based data centers since 2017.

Cisco Hypershield is the next-generation AI-powered micro-segmentation platform that provides distributed zero-trust security at cloud scale.

Our new app, called Fabrix, simplifies the migration to Hypershield while enhancing security visibilty for existing policies. Whether you're working with Cisco ASA, FTD, ACI or 3rd party firewalls, the platform intelligently parses, enriches and exports rules using eBPF ready YAML or PARC formats.

Fabrix will be released Aug 15, 2025. Read more below or get in touch to see a preview.

Platform Highlights

Unified Visibilty

Gain complete firewall visibility across your Cisco and Vmware environments. Fabrix uncovers firewall policies in the disparate security silos and presents a unified console for easy access to metrics that matter.

Conversion

Easily convert firewall rules into modern Cisco Hypershield policies. Fabrix transforms static IP-based rules into enriched TSA/eBPF and L4 policies using real-time workload, tag, and process metadata with no manual mapping required.

Rule Generation

Quickly generate Cisco Hypershield firewall rules. Just select your VMs from vCenter or import Netflow data and Fabrix will build TSA/eBPF or L4 Policiies using real-time workload insights, OS, tags and process-to-port mappings.

Integrated Tools

Instantly trace any firewall rule across your Cisco and VMware stacks. Whether it's in ASA, FTD, ACI, Hypershield of NSX, tools such as Rule Locator pinpoints the source, impact and workloads affected - so you can act with confidence.

At last, visibility...

The Fabrix platform bridges the gap between networking, virtualization, and security by delivering end-to-end visibility into your firewall posture. It integrates deeply with Cisco ASA, FTD, ACI, ISE, VMware NSX and vCenter to extract, enrich, and correlate firewall rules with real-time workload context. In one location you can see all your tags, policies and coverage. This unified view ensures policies are aligned with application behavior, reducing risk, improving auditability, and accelerating segmentation strategies across hybrid Cisco environments.

I am here, now I need to go there...

Similar to CloudControl's policy engine for synchronizing VMware NSX policies between environments, the Fabrix policy engine enables synchronization from VMware NSX, vCenter and other CIsco security devices to Hypershield and ISE. Policy Engine is built to continuously ingest, interpret, and convert firewall policies from Cisco ASA, FTD, ACI and VMware NSX / vCenter. Additionally, Fabrix enriches these policies with real-time workload context including OS, processes and tags. As a result, L4-L7 rules now become application/process aware in the Hypershield realm.

Additionally, Fabrix supports converting 3rd party firewalls such as Checkpoint, Palo Alto and Fortinet to Hypershield workload or edge (L4) policies.

Whether running as a one-time conversion or an ongoing synchronization, the policy engine is designed to get you onto Hypershield as efficiently as possible.

I just need to build a rule...

With Fabrix's Rule Generator tool, you can easily create one, two or many Hypershield rules with a few clicks. By connecting Fabrix to your vCenter, it can glean app/process information for enriching the Hypershield rule. Even if Fabrix is unaware of the process/port mapping, users can easily identify applications to the Hypershield rule is application aware with L4 information.

Additionally, users can import Netflow CSV files to generate rules. These rules can also be enriched by app/process information as a meta field in the import process.

How do I...

Find a firewall rule across all your Cisco and VMware security platforms? Fabrix can help. Users can search by IP or Virtual Machine name and Rule Locator will search all policies that affect that source/destination. Even if tags, groups or supernets are leveraged in policies, Fabrix is aware and has a full index of VMware NSX, vCenter, Cisco ISE and other data sources to quickly present you with the information.

Rule Locator is one of many tools Fabrix is delivering for the hybrid data centers.