VMware Networking Community
hungnn300981
Contributor
Contributor
‎07-14-2021 06:39 PM

New to VMware NSX, need to separate set of servers from other

Hi

I am new to Vmware NSX- T and have been assigned the task to separate a set of servers from other servers and users zone

Just wonder if someone can help point me to right direction how to set that up?

The company already got NSX T setup with transport zone, firewall, gateway, distributed switch, segmentation

I believe I will need to create a separate segmentation, put all servers i want to isolate into this segment and create inbound/outbound rule?

Reply
0 Kudos
1 Reply
p0wertje
Hot Shot
Hot Shot
‎07-14-2021 11:44 PM

Hi,

Yes, that can be about it.
NSX-T is flexible. It can also separate the servers that are in the same segment (micro-segmenting)
This means for example.
- 10 webservers in 1 segment, same ip-subnet. With the NSX-T distributed firewall, you will be able to block traffic even between te 10 servers

See page 111 of the reference design guide for more background information.
VMware® NSX-T Reference Design - VMware Technology Network VMTN

 

Cheers,
p0wertje | VCIX6-NV | JNCIS-ENT | vExpert
Please kudo helpful posts and mark the thread as solved if solved
Reply
0 Kudos