VMware Networking Community
petitbleuavassy
Contributor
Contributor

Firewall vlan segment supervision

I need to set up supervision rules on an nsx-t 3.1 already deployed without edge with only vlan segments.
I have an advanced license of NSX. So I'm not allowed to use nsx intelligent, which won't work anyway because it's a vlan. From my point of view, LTA is also non-functional because it needs an overlay. So I see that the log file in each esxi schant that I have no vrealize to make a centralization. Do you have another solution to suggest so that I can debug my rules in the event of a problem?

0 Kudos
1 Reply
bmcb555
Enthusiast
Enthusiast

It'll need more licensing but you can use VRNI for what you're trying to accomplish. 

https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/products/vrealize/vmw-vrni-solutio...

You add your NSX Managers + vCenters to the VRNI and it gathers the flow information much the same way as nsx intelligence. It'll then report back to you what rules are being hit based on how you build the search criteria. It requires two VMs to function

0 Kudos