Book Image

VMware NSX Network Essentials

By : sreejith c
Book Image

VMware NSX Network Essentials

By: sreejith c

Overview of this book

VMware NSX is at the forefront of the software-defined networking revolution. It makes it even easier for organizations to unlock the full benefits of a software-defined data center – scalability, flexibility – while adding in vital security and automation features to keep any sysadmin happy. Software alone won’t power your business – with NSX you can use it more effectively than ever before, optimizing your resources and reducing costs. Getting started should be easy – this guide makes sure it is. It takes you through the core components of NSX, demonstrating how to set it up, customize it within your current network architecture. You’ll learn the principles of effective design, as well as some things you may need to take into consideration when you’re creating your virtual networks. We’ll also show you how to construct and maintain virtual networks, and how to deal with any tricky situations and failures. By the end, you’ll be confident you can deliver, scale and secure an exemplary virtualized network with NSX.

Related Content you might be interested in

Current Title:

Small book image
VMware NSX Network Essentials
sreejith c
Sep, 2016 | 274 pages
No titles found
Table of Contents (15 chapters)
VMware NSX Network Essentials
VMware NSX Network Essentials
Credits
Credits
Foreword
Foreword
About the Author
About the Author
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introduction to Network Virtualization
Introduction to Network Virtualization
The traditional network model
The three pillars of a Software Defined Data Center
Introducing the NSX-V network virtualization platform
The power of server virtualization and network virtualization
How to leverage NSX
VMware NSX features
Summary
2
NSX Architecture
NSX Architecture
Introducing network planes
NSX vSphere components
Overlay networks
The VLAN packet
A VXLAN overview
Summary
3
NSX Manager Installation and Configuration
NSX Manager Installation and Configuration
NSX Manager requirements
NSX Manager installation
NSX Manager deployment consideration
Controller requirements
NSX Controller design consideration
The NSX data plane
Summary
4
NSX Virtual Networks and Logical Router
NSX Virtual Networks and Logical Router
NSX logical switches
Understanding replication modes
Testing connectivity
The Distributed Logical Router
Layer 2 bridges
Summary
5
NSX Edge Services
NSX Edge Services
Introducing Edge services
Introducing Edge form factor
Introducing OSP, BGP, and ISIS
Deploying an NSX Edge gateway
Configuring OSPF on NSX Edge
Configuring OSPF routing on Distributed Logical Router
NSX routing design decisions
NSX Edge NAT
NSX Edge logical load balancer
Design considerations while load balancing
Generating a certificate
Setting up a load balancer
Virtual Private Network 
Summary
6
NSX Security Features
NSX Security Features
NSX Distributed Firewall
NSX flow monitoring
NSX SpoofGuard
Distributed Firewall takeaways
Summary
7
NSX Cross vCenter
NSX Cross vCenter
Understanding NSX cross vCenter Server
Components of NSX cross vCenter Server
Universal Synchronisation Service
Universal segment ID
Cross vCenter universal logical switch creation
Cross vCenter Server Universal Logical Routers
Network choke points
Summary
8
NSX Troubleshooting
NSX Troubleshooting
NSX Manager installation and registration issues
Troubleshooting NSX Manager
VMware Installation Bundle
Control plane and data plane log collection
NSX Controller log collection
NSX user world agents
Collecting centralized logs from NSX Manager
VXLAN troubleshooting
Packet capturing and analysis
NSX upgrade checklist and planning order
The future of NSX
Summary
References

Packet capturing and analysis

Starting from ESXi 5.5, the pktcap-uw tool is embedded inside the hypervisor. Some of you will be familiar with the tcpdump tool, which was already available in ESXi; pktcap is a replacement for the same. The prime reason for integrating the pktcap tool captures packets are every layer which is extremely essential in NSX world. So, we are no longer limited by capturing packets at the vmkernel layer. I have been a big fan of this tool starting from the vCloud networking and security days and I strongly believe most of us will like this tool. Before jumping into packet capturing, let's be clear about the following points:

  • Pktcap, by default, collects only incoming packets, and it is unidirectional. So, if we want to capture both ingress and egress traffic, we need to add certain parameters. If not, the whole purpose of capturing the packet will be defeated.

  • Traffic direction is mentioned as -dir 0 for ingress packets.

  • Traffic direction is mentioned as -dir 1 for...

Previous Section
End of Section 10
Next Section