Accepted Solutions
Hi rizello,
NSX Edge = centralized routing
on a medium-large environment normally we have NSX Edge clusters & NSX Edge Racks
traffic from/to outside NSX environment (e.g. internet) going to the edge cluster/racks first
gateway IP address is in the nsx edge gateway vm
NSX DLR = distributed routing
VM to VM communication do not need to traverse to edge cluster/rack
gateway IP addresses are distributed across esxi hosts which prepared for NSX
in a very small environment e.g. only 1 esxi hosts for example, having DLR does not make any differences.
but when you have multiple esxi hosts and VMs on different subnet/vxlan/logical switches are distributed across esxi hosts,
NSX DLR helps to route VMs between different logical switches optimizing east-west traffic
the picture is taken from the NSX design guide, more explanation is also available on the design guide
VMware® NSX for vSphere Network Virtualization Design Guide ver 3.0
Hi rizello,
NSX Edge = centralized routing
on a medium-large environment normally we have NSX Edge clusters & NSX Edge Racks
traffic from/to outside NSX environment (e.g. internet) going to the edge cluster/racks first
gateway IP address is in the nsx edge gateway vm
NSX DLR = distributed routing
VM to VM communication do not need to traverse to edge cluster/rack
gateway IP addresses are distributed across esxi hosts which prepared for NSX
in a very small environment e.g. only 1 esxi hosts for example, having DLR does not make any differences.
but when you have multiple esxi hosts and VMs on different subnet/vxlan/logical switches are distributed across esxi hosts,
NSX DLR helps to route VMs between different logical switches optimizing east-west traffic
the picture is taken from the NSX design guide, more explanation is also available on the design guide
VMware® NSX for vSphere Network Virtualization Design Guide ver 3.0
Hi
Sorry for replying on old thread . You had mentioned
"without it NSX can still route traffic between VLANs on the same host, or across hosts using VXLAN encapsulation without having to hairpin up to a northbound router."
Can u please explain how ? Following is what i think :
In order that VM1 talks to VM2 , you either need a routing device present right inside the host [ which can be a DLR ] .. Or you have to take traffic out of host to a physical routing device and get back to host A
Now the second option that I mentioned is a hairpin at external router .
Can you explain how routing could be done without DLR / external router in following cases :
a) VMs on same host
b) VMs on diff hosts
Thanks
Gaurav
You wrote :
"If both VMs are on different hosts, naturally traffic will flow to the upstream switches to which the physical host is connected. However, routing is still performed in the ESXi kernel DLR."
I don't think so that DLR will come in play (correct me if i am wrong here). For example :
In this case , is DLR coming in play ? No .. The routing is completely taken care by a physical device here
To me DLR has a use case when devices talk within host .. ESG has a use case when there is a use case of "data centre interconnect " or "talk to external world"..
Please correct me if i am wrong here
Well, you're not completely wrong 
If your VMs are behind a DLR, routing will be handled by the DLR (within a host and between hosts, it doesn't matter). The traffic will then be sent to the destination host through VXLAN. This VXLAN traffic can of course be routed.
And indeed, the ESG is used for North/South routing, to and from the datacenter.