Arista NDR vs VMware NSX comparison

Arista and Broadcom are both solutions in the Network Traffic Analysis (NTA) category. Arista is ranked #8 with an average rating of 9.0, while Broadcom is ranked #7 with an average rating of 7.9. Arista holds a 6.9% mindshare in NTA, compared to Broadcom’s 2.4% mindshare. Additionally, 100% of Arista users are willing to recommend the solution, compared to 88% of Broadcom users who would recommend it.

Arista NDR

Read 14 Arista NDR reviews

2,149 Views
946 Comparison Views

100% willing to recommend

VMware NSX

Read 106 VMware NSX reviews

6,667 Views
200 Comparison Views

88% willing to recommend

Arista NDR

VMware NSX

Comparison Buyer's Guide

Download the report

Executive SummaryUpdated on Aug 6, 2024

VMware NSX and Arista NDR are prominent in network solutions. VMware NSX has an advantage in network virtualization, while Arista NDR excels in network detection and response.

Features: VMware NSX offers comprehensive network virtualization and security, including micro-segmentation. It provides robust network management and enhanced security. Arista NDR specializes in detecting and responding to network threats using advanced AI and machine learning. It excels in identifying anomalies and potential security breaches while offering superior threat detection capabilities.

Room for Improvement: VMware NSX could enhance its integration with third-party tools, simplify configuration processes, and improve user documentation. Arista NDR users desire more intuitive configurability, enhanced analytics reporting, and better real-time monitoring features.

Ease of Deployment and Customer Service: VMware NSX is complex to deploy and configure but benefits from comprehensive support. Arista NDR has efficient deployment and user-friendly setup, though its customer service has mixed reviews in terms of responsiveness and support quality.

Pricing and ROI: VMware NSX has a high setup cost justified by significant ROI due to enhanced security and management efficiencies. Arista NDR is cost-effective with reasonable setup costs and strong ROI from superior threat detection, reducing security incidents.

To learn more, read our detailed Arista NDR vs. VMware NSX Report (Updated: September 2025).

Buyer's Guide

Arista NDR vs. VMware NSX

September 2025

Download the complete report

Helped 869,566 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Arista NDR

Ranking in Network Traffic Analysis (NTA)

8th

Ranking in Network Detection and Response (NDR)

11th

Average Rating

9.0

Reviews Sentiment

7.6

Number of Reviews

Ranking in other categories

No ranking in other categories

VMware NSX

Ranking in Network Traffic Analysis (NTA)

7th

Ranking in Network Detection and Response (NDR)

9th

Average Rating

8.0

Reviews Sentiment

6.8

Number of Reviews

106

Ranking in other categories

Network Virtualization (2nd), Cloud and Data Center Security (3rd), Network Automation (5th), Microsegmentation Software (1st)

Mindshare comparison

As of October 2025, in the Network Traffic Analysis (NTA) category, the mindshare of Arista NDR is 6.9%, down from 7.7% compared to the previous year. The mindshare of VMware NSX is 2.4%, up from 1.1% compared to the previous year. It is calculated based on PeerSpot user engagement data.

Network Traffic Analysis (NTA) Market Share Distribution
Product	Market Share (%)
VMware NSX	2.4%
Arista NDR	6.9%
Other	90.7%

Network Traffic Analysis (NTA)

Featured Reviews

reviewer1719513

Chief Technology Officer at a financial services firm with 11-50 employees

it's much easier to create your own queries and hunt for threats

We take in IOCs from my SOC and from AlienVault, and then we focus on traffic that hits IOCs and alerts us to it. The one thing that the Awake platform lacks is the ability to automate the ingestion of IOCs rather than having to import CSV files or JSON files manually. Awake didn't support the manual importation of CSV and JSON in version 3.0, but they added it in version 4.0. It's helpful, but it still has to be a specific CSV format. Automated IOCs are on the roadmap. Hopefully, they will be able to automate the ingestion of IOCs by Q1 next year. I'm currently leveraging Mind Meld, an open-source tool by Palo Alto, to ingest IOCs from external parties. I aggregate those lists and spit them out as a massive list of domains, hashes, file names, IPS. Then we aggregate those into their own specific categories, like a URL category. Awake ingests that just like the Palo Alto firewall does, and then it alerts me if traffic attempts to go into it. Some of that is already on the Palo Alto firewall, which blocks it, but that doesn't mean that there is no attempted communication. I want to know if there's a communication attempt because there might be an indicator on that specific device trying to reach an IOC. Yes, my Palo Alto blocked it, but there's still something odd sitting there, and what if it can reach a different IOC that I don't have information about? I want to focus on it. I could do that by leveraging Awake if it could ingest the IOCs automatically. That's something I leverage Awake for today. I still have to manually import it, which is cumbersome because I have to manipulate the files that I get from the different IOC providers into a specific format that it understands. Once they add the ability to automate that, it'll be more useful.

Read full review

TAIYAB HASAN

Windows Redhat Linux Vmware & Azure & Cloud & Nutanix Ahv-Vmware & Backup Senior System Administrator at Al Dawaa Medical Services

Has improved network visibility and security through micro-segmentation and SDN capabilities

This feature gives us flexibility and allows us to manage everything under one pane. We can see everything on one console, including network operations and behavior. Monitoring and security are among the best features for VMware NSX. For micro-segmentation, it's integrated with our endpoint security. If there are any issues with servers or VMs, it notifies us so we can isolate the servers and investigate. It provides distributed security features such as firewall and intrusion, IDS, IPS. The security level with IPS and IDS in VMware NSX is excellent. It also provides logical switching and routing which gives an extra layer for Layer 2 and Layer 3 switching requirements. The solution provides flexibility, automation, and self-service capabilities, resulting in cost savings as extensive expertise isn't required. Once automation and self-service are implemented, many tasks can be completed automatically. Load balancing is another excellent feature. Multiple servers can run on load balancing features, which is particularly useful since we have many application servers running. Sharing loads between servers provides the best performance.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The most valuable portion is that they offer a threat-hunting service. Using their platform, and all of the data that they're collecting, they actually help us be proactive by having really expert folks that have insight, not just into our accounts, but into other accounts as well. They can be proactive and say, 'Well, we saw this incident at some other customer. We ran that same kind of analysis for you and we didn't see that type of activity in your network.'"

"Other solutions will say, "Hey, this device is doing something weird." But they don't aggregate that data point with other data points. With Awake you have what's called a "fact pattern." For example, if there's a smart toaster on the third floor that is beaconing out to an IP address in North Korea, sure that's bizarre. But if that toaster was made in North Korea it's not bizarre. Taking those two data points together, and automating something using machine-learning is something that no other solution is doing right now."

"The query language that they have is quite valuable, especially because the sensor itself is storing some network activity and we're able to query that. That has been useful in a pinch because we don't necessarily use it just for threat hunting, but we also use it for debugging network issues. We can use it to ask questions and get answers about our network. For example: Which users and devices are using the VPN for RDP access? We can write a query pretty quickly and get an answer for that."

"It gives us something that is almost like an auditing tool for all of our network controls, to see how they are performing. This is related to compliance so that we can see how we are doing with what we have already implemented. There are things that we implemented, but we really didn't know if they were working or not. We have that visibility now."

"The interface itself is clean and easy to use, yet customizable. I like that I can create my own dashboards fairly easily so that I can see what is important to me. Also, the query language is pretty easy to use. I haven't needed to use it a ton, but as I need to go in and do different queries based on their requests, it has been fairly simple to use."

"The most valuable feature is the ability to see suspicious activity for devices inside my network. It helps me to quickly identify that activity and do analysis to see if it's expected or I need to mitigate that activity quickly."

"The security knowledge graph has been very helpful in the sense that whenever you try a new security solution, especially one that's in the detection and response market, you're always worried about getting a lot of false positives or getting too many alerts and not being able to pick out the good from the bad or things that are actual security incidents versus normal day to day operations. We've been pleasantly surprised that Awake does a really good job of only alerting about things that we actually want to look into and understand. They do a good job of understanding normal operations out-of-the-box."

"The query language makes it easy to query the records on the network, to do searches for the various threat activities that we're looking for. The dashboard, the Security Knowledge Graph, displays information meaningfully and easily. I am able to find the information that I want to find pretty quickly."

More Arista NDR pros

"The micro-segmentation and the ability to create policy rules are valuable."

"NSX's stand-out function is the distributed firewall. The firewall system is just top-notch, and I haven't seen another solution like it."

"I really like the management dashboard, the tailor-made assurance, the telemetry, and the ease of integration with all other solutions of VMware, such as vSphere."

"Their technical support is very good. They help us figure out solutions when we have problems."

"The most powerful feature of VMware NSX is the micro-segmentation that allows us to separate the different protocols our application works with."

"Though I haven't been working a lot on VMware NSX, it's good to have. What I like the most about it is that its console is good, and it doesn't take a lot of effort in terms of doing my daily tasks on it or what it's meant for. VMware NSX is still a preferred product in the market."

"From a security standpoint, the customer was able to better secure critical workloads while routing L2/L3 worked normally, giving them more confidence that they would be ready for any potential security incident mitigation or outage (DR)."

"The most valuable feature of VMware NSX is the DFW (distributed firewall)"

More VMware NSX pros

Cons

"They've been focused on really developing their data science, their ability to detect, but over time, they need to be able to tie into other systems because other systems might detect something that they don't."

"While the appliance is very good, and I think they're working on it, it would probably help if they integrated the management team cases into the appliance so that everything we are working on with them would be accessible on our platform, on the dashboard, on the portal. Right now, Awake is just an additional team that uses the appliance that we use and then we communicate with them directly. Communication isn't through the portal."

"One concern I do have with Awake is that, ideally, it should be able identify high-risk users and devices and entities. However, we don't have confidence in their entity resolution, and we've provided this feedback to Awake. My understanding is that this is where some of the AI/ML is, and it hasn't been reliable in correctly identifying which device an activity is associated with. We have also encountered issues where it has merged two devices into one entity profile when they shouldn't be merged. The entity resolution is the weakest point of Awake so far."

"When I looked at the competitors, such as Darktrace, they all have prettier interfaces. If Awake could make it a little more user-friendly, that would go a long way."

"Awake Security needs to move to a 24/7 support model in the MNDR space. Once they do that, it will make them even better."

"I would like to see a bit more in terms of encrypted traffic. With the advent of programs that live off the land, a smart attacker is going to leverage encryption to execute their operation. So I would like to see improvements there, where possible. Currently, we're not going to be decrypting encrypted traffic. What other approaches could be used?"

"There's room for improvement with some of the definitions, because I don't have time and I'm not a Tier 4 analyst. I believe that is something they're working towards."

"The one thing that the Awake platform lacks is the ability to automate the ingestion of IOCs rather than having to import CSV files or JSON files manually."

More Arista NDR cons

"It might be nice to have more AI in the future."

"If you're worried that NSX is too complex, I would tell you to take another look. If you compare NSX to a similar solution you might find it to be a bit more complex. Usually, the guy that comes in to implement NSX isn't the network guy and will lack the knowledge for the program. He can lack the knowledge for this program and will therefore think it's complex. You need somebody with network experience."

"An area for improvement in VMware NSX is that it uses up more resources and is heavy on the network. What I'd like to see in the next release of the solution is more automation."

"VMware NSX should be able to scale for different customers, even the big ones. Its scalability needs improvement. Stability for it should also be improved."

"Traffic flow introspection topology visibility is definitely needed because at the moment, NSX-T lacks in this area."

"The ticket support response time from VMware could be improved. Often, callbacks are delayed, which can be problematic if the servers are in production."

"The tool's setup is complex and we need support to implement it."

"We had some complexities implementing into the other parts of a network."

More VMware NSX cons

Pricing and Cost Advice

"Because I represent a hedge fund, I have some leverage. I told them that they had to meet my conditions if they wanted me as a client. It was the same way with Awake. They wanted an initial four-year agreement. Initially, we signed on for a one-year contract, but they wanted the four-year deal when it came time for the renewal. I told them that I was not doing that. I said that they either had to do it on my terms, or I'd go somewhere else."

"We switched to Awake Security because they were able to offer a model that was significantly less expensive and the value that we get out of it is higher."

"The solution has saved thousands of dollars within the first day. Our ROI has to be in the tens of thousands of dollars since October last year."

"Awake's pricing was very competitive. It's not a cheap option though. It's an investment to utilize it, but it's one that we decided was worth the cost, with the managed services. At our scale, it was a much better option to utilize their software and their managed services to handle this, rather than hiring another person to be an analyst. It was quite cost-effective for us."

"The pricing seems pretty reasonable for what we get out of it. We also found it to be more competitive than some other vendors that we've looked at."

"The solution is very good and the pricing is also better than others..."

"Awake Security was the least expensive among their competitors. Everyone was within $15,000 of each other. The other solutions were not providing the MNDR service, which is standard with Awake Security's pricing/licensing model."

"The price could be better. We pay for the license every three years. The last time I checked, it cost around three million pesos in the Philipines. Most of the expense will go towards implementation and renovation."

"The price of VMware NSX is reasonable."

"The implementation of VMware NSX can be cost-intensive, especially if an organization is looking for a comprehensive solution. The costs can vary based on factors like the level of conversation and discounts obtained during negotiations. Some government organizations, for instance, may find the prices relatively high, leading to concerns about budget hikes, especially when deploying the solution across the entire organization. Regarding maintenance and support, they are typically included in the standard licensing costs for enterprise-level businesses. While these costs can be significant, many companies opt for standard licensing to ensure they have access to necessary support and maintenance services."

"VMware NSX is expensive and everything is licensed. We have to pay for each individual feature."

"VMware has a subscription and perpetual license. In the New Year, they're changing many things about the licensing model. Previously, NSX was licensed according to the number of sockets inside the appliance, so we bought VMware licenses based on that. However, that may have changed this year. We are still contacting the vendors to understand the new licensing strategy."

"The solution is free and the price for the support can be expensive."

"The licensing fees are expensive and we pay on a yearly basis."

"The price is significantly high and it can be a hurdle for many potential users."

More VMware NSX pricing and cost advice

See which vendors are best for you

Use our free recommendation engine to learn which Network Traffic Analysis (NTA) solutions are best for your needs.

See recommendations

869,566 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Computer Software Company

14%

Financial Services Firm

11%

Government

Comms Service Provider

Computer Software Company

15%

Financial Services Firm

12%

Manufacturing Company

Government

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	5
Midsize Enterprise	2
Large Enterprise	7

By reviewers
Company Size	Count
Small Business	33
Midsize Enterprise	23
Large Enterprise	69

Questions from the Community

What do you like most about Arista NDR?

Arista NDR's scalability is very good, making it easy to add more hardware components. You can order additional hardware and integrate it by stacking it with the existing setup. This feature cannot...

See all answers

What is your experience regarding pricing and costs for Arista NDR?

The tool's pricing is expensive but it is competitive.

See all answers

What needs improvement with Arista NDR?

Arista NDR needs to open legal offices to be closer to customers and partners. It needs more visibility in the NDR market in the Middle East. While they are doing well, they lack sufficient enginee...

See all answers

What are the biggest differences between Cisco ACI and VMware NSX?

There are some very major differences between both the Products and to name a few. -Cisco ACI have physical network gear (9K Switches) where the Code runs in ACI Policy Mode & the UCS server wh...

See all answers

What are the biggest differences between Cisco ACI and VMware NSX?

Once you know your way around the Cisco ecosystem, using Cisco ACI is not so difficult. It is a global product, so when you change one interface, changes are automatically reflected on every switch...

See all answers

What do you like most about VMware NSX?

The product has valuable features for security and network extension.

See all answers

Comparisons

Vectra AI vs Arista NDR

Compared 22% of the time

Darktrace vs Arista NDR

Compared 15% of the time

Cisco Secure Network Analytics vs Arista NDR

Compared 11% of the time

Trend Micro Deep Discovery vs Arista NDR

Compared 8% of the time

ExtraHop Reveal(x) vs Arista NDR

Compared 6% of the time

More Arista NDR Competitors

Illumio vs VMware NSX

Compared 18% of the time

Nutanix Flow Network Security vs VMware NSX

Compared 16% of the time

Akamai Guardicore Segmentation vs VMware NSX

Compared 14% of the time

Cisco Secure Workload vs VMware NSX

Compared 8% of the time

Cisco ACI vs VMware NSX

Compared 6% of the time

More VMware NSX Competitors

Product Reports

Buyer's Guide

Arista NDR

October 2025

Download Arista NDR product report

Buyer's Guide

VMware NSX

September 2025

Download VMware NSX product report

Also Known As

Awake Security Platform

VMware Nicira, Lastline Defender

Overview

Arista NDR (formerly Awake Security) is the only advanced network detection and response company that delivers answers, not alerts. By combining artificial intelligence with human expertise, Arista NDR hunts for both insider and external attacker behaviors, while providing autonomous triage and response with full forensics across traditional, IoT, and cloud networks. Arista NDR delivers continuous diagnostics for the entire enterprise threat landscape, processes countless network data points, senses abnormalities or threats, and reacts if necessary—all in a matter of seconds. The Arista NDP platform stands out from traditional security because it is designed to mimic the human brain. It recognizes malicious intent and learns over time, giving defenders greater visibility and insight into what threats exist and how to respond to them.

The Advent of Advanced Network Detection and Response & Why it Matters

The 5 Levels of Autonomous Security paper

Arista

VMware NSX is a comprehensive tool for network virtualization and security, offering advanced features like micro-segmentation and multi-cloud networking to enhance scalability and management efficiency within enterprises.

VMware NSX revolutionizes enterprise networking by integrating security and scalability into one streamlined platform. With capabilities like dynamic policy updates and automation, it simplifies complex configurations and provides robust API integration. Its support for Layer 4 and 7 load balancing, along with its seamless integration in multi-cloud environments, makes it a preferred choice among companies. Although deployment speed and management console features require refinement, NSX is an effective solution for private cloud and hybrid environments, enabling centralized orchestration and management of complex networks.

What are the key features of VMware NSX?

Micro-segmentation: Provides secure, granular network segmentation for enhanced security.
Distributed Firewall: Offers policy-driven firewall capabilities across all network endpoints.
Automation: Enables dynamic policy updates and simplifies network configurations.
API Integration: Facilitates seamless third-party integrations and improves configuration processes.
Multi-Cloud Networking: Supports seamless integration across various cloud environments.

What benefits and ROI should users consider?

Scalability: Offers significant improvements in network scalability and management efficiency.
Security: Ensures enhanced security through advanced features like micro-segmentation.
Cost-Effectiveness: Potential to reduce costs through network automation and efficiency improvements.
Flexibility: Supports various enterprise requirements with its comprehensive feature set.

In the tech industry, VMware NSX is instrumental in managing private and hybrid cloud environments, allowing companies to replace traditional networking with software-defined networks. In finance, it helps secure transactional data through micro-segmentation. Healthcare organizations leverage its flexibility for managing sensitive patient information securely and integrating cloud services.

Broadcom

Sample Customers

- Dolby Laboratories- Seattle Genetics- ARM Energy- Ooma- Prophix- Yapstone

City of Avondale, Lumeta, Kroll Ontrack, Heartland Payment Systems, Baystate Heallth, Exostar, Tribune Media, iGATE, NTT Communications, Synergent, California Natural Resources Agency, Bloomington Public Schools, Columbia Sportswear, Join Experience S.A, Schuberg Philis

Buyer's Guide

Arista NDR vs. VMware NSX

September 2025

Free Report: Arista NDR vs. VMware NSX

Find out what your peers are saying about Arista NDR vs. VMware NSX and other solutions. Updated: September 2025.

DOWNLOAD NOW

869,566 professionals have used our research since 2012.

See our Arista NDR vs. VMware NSX report.

See our list of best Network Traffic Analysis (NTA) vendors and best Network Detection and Response (NDR) vendors.

We monitor all Network Traffic Analysis (NTA) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.