NSX

This is a collection of posts I have put together when working through the VCIX-NV and VCP-NV, working on my home lab, hands on labs or working on customer deployments. In my opinion SDN and in particular NSX are going to become a huge part of the vSphere landscape, some of the functionality and features are already incredibly powerful and will change the way we deploy or work with virtualised estates now and in the future!

I plan on updating this page to reference posts I write up as I write then. As always the information may not be recommended best practise or the most efficient way to do things… posts are my own etc. etc.

NSX Manager and Controllers

NSX – Deploy the NSX Manager Virtual Appliance
NSX – Integrate the NSX Manager with vCenter Server
NSX – Configure NSX Manager Syslog
NSX – Implement and Configure NSX Controllers
NSX – Schedule/Backup/Restore NSX Manager data
NSX – Troubleshoot NSX Manager services
NSX – Download Technical Supports logs from NSX Manager
NSX – Troubleshoot NSX Controller cluster status, roles and connectivity
NSX – Manage User rights
NSX – NSX controller syslog

Host Preparation and Logical Network Preparation

NSX – Host Preparation
NSX – Prepare vSphere Distributed Switching for NSX
NSX – Export/Restore vSphere Distributed Switch configuration
NSX – Prepare Host Clusters for Network Virtualization
NSX – Configure the Appropriate NSX VTEP Teaming Policy
NSX – VXLAN Configuration
NSX – Segment IDs
NSX – Transport Zones
NSX – Add clusters to Transport Zones
NSX – Remove clusters from Transport Zones
NSX – Troubleshoot host preparation issues

Logical Switches

NSX – Logical Switch
NSX – Connect a Logical Switch to a NSX Edge
NSX – Deploy services on a Logical Switch
NSX – Connect/Disconnect VMs to/from a Logical Switch
NSX – Test Logical Switch connectivity

Distributed Logical Router (DLR)

NSX – Distributed Logical Router (Basics)
NSX – DLR DHCP Relay
NSX – Modify DLR declared dead time

Edge Server Gateway (ESG)

NSX – Edge Service Gateway (Basics)
NSX – ESG DHCP
NSX – Create/edit DHCP Static Binding

Distributed Firewall (DFW) and Edge Firewall

NSX – Exclude VM from NSX DFW Protection
NSX – Save/Export/Import/Load Distributed Firewall configurations
NSX – Troubleshoot distributed and edge firewall implementations
NSX – Implement identity service support for Active Directory, NIS, and LDAP with Single Sign-On (SSO)
NSX – Create/configure Firewall rule sections for specific departments
NSX – Create/configure Identity-based firewall (IDFW) for specific users/groups
NSX – Filter firewall rules to narrow a scope

NSX Load Balancer

NSX – Configure the appropriate Load Balancer model for a given application topology
NSX – Configure SSL off-loading
NSX – Configure a Service Monitor to Define Health Check Parameters for a Specific Type of Network Traffic
NSX – Optimize a server pool to manage and share backend servers
NSX – Configure an application profile and rules
NSX – Configure virtual servers

Service Composer

NSX – Export/Import Service Composer profiles
NSX – Configure Security Groups
NSX – Configure Security Policies
NSX – Create/edit/delete Security Tags

DNS

NSX – Configure DNS services

NAT

NSX – Configure NAT services to provide access to services running on privately addressed virtual machines

Universal Objects

NSX – Configure NSX manager roles (Primary, Secondary, Standalone, Transit)
NSX – Deploy/configure Universal Controller Cluster
NSX – Configure Universal segment ID pools
NSX – Create/manage Universal transport zones
NSX – Create/configure Universal Logical Switches
NSX – Configure Universal MAC sets
NSX – Configure Universal IP sets
NSX – Configure Universal security groups
NSX – Configure Universal firewall rules
NSX – Configure Universal services and service groups
NSX – Create/configure Universal Distributed Logical Routers
NSX – Configure local egress

Bridging

NSX – Add Layer 2 Bridging

Routing (DLR and ESG – IS-IS, OSPF, BGP)

NSX – Configure default gateway parameters
NSX – Configure static routes
NSX – IS-IS
NSX – BGP
NSX – OSPF
NSX – Configure centralized and distributed routing
NSX – Configure route redistribution to support a multi-protocol environment

Troubleshooting

NSX – Troubleshoot Logical Switch transport zone and NSX Edge mappings
NSX – Troubleshoot Logical Router interface and route mappings
NSX – Configure logging for NSX components according to a deployment plan
NSX – Monitor health of networking services
NSX – Monitor health and status of infrastructure components
NSX – Monitor and analyze virtual machine traffic with Flow Monitoring
NSX – Enable SSH after Edge is deployed
NSX – Download Technical Support logs from NSX Edge instances
NSX – Troubleshoot DHCP/DNS/NAT service issues
NSX – Configure Activity Monitoring for a Security Policy
NSX – Troubleshoot Logical Load Balancer implementation issues

Spoofguard

NSX – Configure SpoofGuard policies to enhance security

API Calls

NSX – Construct and execute an API call using correct syntax and formatting

Guest and Network Introspection

NSX – Enable data collection for single/multiple virtual machines
NSX – Configure Guest Introspection
NSX – Configure Network Introspection

VPN

NSX – Configure SSL VPN service to allow remote users to access private networks
NSX – Configure IPSec VPN service to enable site to site communication
NSX – Troubleshoot VPN service issues
NSX – Configure L2 VPN service to stretch multiple logical networks across geographical sites