VMware Networking Community
BlueGrass168
Contributor
Contributor

Is it a necessary to change the MTU size to 1700 if I just use DFW of NSX?

Hi all,

 

We plan to deploy NSX DFW as second Tier firewall on the network.

We are not going to use any routing/switching technology of NSX, should I change the Distribution switch MTU to 1700 for this case?

 

Thanks.

Reply
0 Kudos
3 Replies
ukonstantin
Enthusiast
Enthusiast

When you still use NSX-T only for the DFW it is still not necessary to change the MTU to 1700. But anyway it is recommended for a long-term plan. Maybe if an overlay will later implemented. 

regards

Udo 

Reply
0 Kudos
Perttu
Enthusiast
Enthusiast

Hi,

Enabling jumbo frames aka setting MTU higher than 1500 on VDS is kind of an indication that jumbos are also supported in physical infrastructure as well. If it is not set there, I wouldn't change it on VDS either.

When you're choosing overlays, then you should check that all paths between TEPs in a same TZ are jumbo enabled concerning every on all intermediate switches and routers while in your control.

Reply
0 Kudos
ukonstantin
Enthusiast
Enthusiast

In most datacenter infrastructure environments (Cisco, Aruba etc..) the MTU Size is per default set to Jumbo frames. 

Reply
0 Kudos