Book Image

VMware NSX Network Essentials

By : sreejith c
Book Image

VMware NSX Network Essentials

By: sreejith c

Overview of this book

VMware NSX is at the forefront of the software-defined networking revolution. It makes it even easier for organizations to unlock the full benefits of a software-defined data center – scalability, flexibility – while adding in vital security and automation features to keep any sysadmin happy. Software alone won’t power your business – with NSX you can use it more effectively than ever before, optimizing your resources and reducing costs. Getting started should be easy – this guide makes sure it is. It takes you through the core components of NSX, demonstrating how to set it up, customize it within your current network architecture. You’ll learn the principles of effective design, as well as some things you may need to take into consideration when you’re creating your virtual networks. We’ll also show you how to construct and maintain virtual networks, and how to deal with any tricky situations and failures. By the end, you’ll be confident you can deliver, scale and secure an exemplary virtualized network with NSX.

Related Content you might be interested in

Current Title:

Small book image
VMware NSX Network Essentials
sreejith c
Sep, 2016 | 274 pages
No titles found
Table of Contents (15 chapters)
VMware NSX Network Essentials
VMware NSX Network Essentials
Credits
Credits
Foreword
Foreword
About the Author
About the Author
About the Reviewer
About the Reviewer
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Introduction to Network Virtualization
Introduction to Network Virtualization
The traditional network model
The three pillars of a Software Defined Data Center
Introducing the NSX-V network virtualization platform
The power of server virtualization and network virtualization
How to leverage NSX
VMware NSX features
Summary
2
NSX Architecture
NSX Architecture
Introducing network planes
NSX vSphere components
Overlay networks
The VLAN packet
A VXLAN overview
Summary
3
NSX Manager Installation and Configuration
NSX Manager Installation and Configuration
NSX Manager requirements
NSX Manager installation
NSX Manager deployment consideration
Controller requirements
NSX Controller design consideration
The NSX data plane
Summary
4
NSX Virtual Networks and Logical Router
NSX Virtual Networks and Logical Router
NSX logical switches
Understanding replication modes
Testing connectivity
The Distributed Logical Router
Layer 2 bridges
Summary
5
NSX Edge Services
NSX Edge Services
Introducing Edge services
Introducing Edge form factor
Introducing OSP, BGP, and ISIS
Deploying an NSX Edge gateway
Configuring OSPF on NSX Edge
Configuring OSPF routing on Distributed Logical Router
NSX routing design decisions
NSX Edge NAT
NSX Edge logical load balancer
Design considerations while load balancing
Generating a certificate
Setting up a load balancer
Virtual Private Network 
Summary
6
NSX Security Features
NSX Security Features
NSX Distributed Firewall
NSX flow monitoring
NSX SpoofGuard
Distributed Firewall takeaways
Summary
7
NSX Cross vCenter
NSX Cross vCenter
Understanding NSX cross vCenter Server
Components of NSX cross vCenter Server
Universal Synchronisation Service
Universal segment ID
Cross vCenter universal logical switch creation
Cross vCenter Server Universal Logical Routers
Network choke points
Summary
8
NSX Troubleshooting
NSX Troubleshooting
NSX Manager installation and registration issues
Troubleshooting NSX Manager
VMware Installation Bundle
Control plane and data plane log collection
NSX Controller log collection
NSX user world agents
Collecting centralized logs from NSX Manager
VXLAN troubleshooting
Packet capturing and analysis
NSX upgrade checklist and planning order
The future of NSX
Summary
References

NSX routing design decisions

Assume that we have already decided what routing protocol is required for a particular use case. Design factors are key in ensuring that they work flawlessly:

  • If we are a service provider, and multi tenancy is required for DLR control VM and Edge Services Gateway (ESG), we should deploy a separate instance, which would ease the management. We can also achieve true isolation between the tenants.

  • Area Border Router (ABR) should be a physical router.

  • If we are not leveraging the High Availability (HA) feature for ESG and DLR, ensure that tenant ESG and DLR VM are not residing on the same ESXi host. However, recommended practice would be to leverage HA for DLR control VM and ESG with vSphere HA.

  • If there is a shortage of interfaces in ESG, we should leverage the trunk interface so that multiple DLR can be connected to the same ESG.

  • DLR to DLR peering is not possible.

  • IPsec with dynamic routing is not supported.

  • Use route summarization wherever we can.

  • DLR control VM doesn...

Previous Section
End of Section 8
Next Section