Book Image

VMware NSX Network Essentials

By : sreejith c
Book Image

VMware NSX Network Essentials

By: sreejith c

Overview of this book

VMware NSX is at the forefront of the software-defined networking revolution. It makes it even easier for organizations to unlock the full benefits of a software-defined data center – scalability, flexibility – while adding in vital security and automation features to keep any sysadmin happy. Software alone won’t power your business – with NSX you can use it more effectively than ever before, optimizing your resources and reducing costs. Getting started should be easy – this guide makes sure it is. It takes you through the core components of NSX, demonstrating how to set it up, customize it within your current network architecture. You’ll learn the principles of effective design, as well as some things you may need to take into consideration when you’re creating your virtual networks. We’ll also show you how to construct and maintain virtual networks, and how to deal with any tricky situations and failures. By the end, you’ll be confident you can deliver, scale and secure an exemplary virtualized network with NSX.

Related Content you might be interested in

Current Title:

Small book image
VMware NSX Network Essentials
sreejith c
Sep, 2016 | 274 pages
No titles found
Table of Contents (15 chapters)
VMware NSX Network Essentials
VMware NSX Network Essentials
Credits
Credits
Foreword
Foreword
About the Author
About the Author
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introduction to Network Virtualization
Introduction to Network Virtualization
The traditional network model
The three pillars of a Software Defined Data Center
Introducing the NSX-V network virtualization platform
The power of server virtualization and network virtualization
How to leverage NSX
VMware NSX features
Summary
2
NSX Architecture
NSX Architecture
Introducing network planes
NSX vSphere components
Overlay networks
The VLAN packet
A VXLAN overview
Summary
3
NSX Manager Installation and Configuration
NSX Manager Installation and Configuration
NSX Manager requirements
NSX Manager installation
NSX Manager deployment consideration
Controller requirements
NSX Controller design consideration
The NSX data plane
Summary
4
NSX Virtual Networks and Logical Router
NSX Virtual Networks and Logical Router
NSX logical switches
Understanding replication modes
Testing connectivity
The Distributed Logical Router
Layer 2 bridges
Summary
5
NSX Edge Services
NSX Edge Services
Introducing Edge services
Introducing Edge form factor
Introducing OSP, BGP, and ISIS
Deploying an NSX Edge gateway
Configuring OSPF on NSX Edge
Configuring OSPF routing on Distributed Logical Router
NSX routing design decisions
NSX Edge NAT
NSX Edge logical load balancer
Design considerations while load balancing
Generating a certificate
Setting up a load balancer
Virtual Private Network 
Summary
6
NSX Security Features
NSX Security Features
NSX Distributed Firewall
NSX flow monitoring
NSX SpoofGuard
Distributed Firewall takeaways
Summary
7
NSX Cross vCenter
NSX Cross vCenter
Understanding NSX cross vCenter Server
Components of NSX cross vCenter Server
Universal Synchronisation Service
Universal segment ID
Cross vCenter universal logical switch creation
Cross vCenter Server Universal Logical Routers
Network choke points
Summary
8
NSX Troubleshooting
NSX Troubleshooting
NSX Manager installation and registration issues
Troubleshooting NSX Manager
VMware Installation Bundle
Control plane and data plane log collection
NSX Controller log collection
NSX user world agents
Collecting centralized logs from NSX Manager
VXLAN troubleshooting
Packet capturing and analysis
NSX upgrade checklist and planning order
The future of NSX
Summary
References

Virtual Private Network 

NSX Edge supports several types of VPN service, such as SSL-VPN, L2-VPN, and IPsec VPN. They are as follows:

  • SSL VPN-plus: The prime reason someone would go for an SSL VPN connection would be for users (roaming profiles) who need to access private networks that are behind a perimeter device.

  • IPsec VPN: NSX supports site to site VPN between the NSX Edge gateway and most of the third-party IPsec VPN devices.

  • L2 VPN: In the current cloud era, we have a lot of use cases where an on-premises network needs an extension all the way to another site, which can be a private cloud or any other public cloud service, such as vCloud Air, AWS, and Azure. Please don't confuse this with a direct connect solution. Virtual machines in L2 VPN will be on the same subnet, irrespective of being moved between the sites.

Let's discuss these topics a bit more in depth to learn about their features and where NSX would fit, and finally, we will focus on a few design decisions.

SSL VPN

The NSX...

Previous Section
End of Section 14
Next Section