VMware Networking Community
SpencerLaV
Contributor
Contributor
‎03-10-2021 02:47 AM

Transport VLAN and Transport Zone

Hi everyone.

I have question about VLAN type Transport Zone for microsegmentation only use case.

Is there issue with assigning a VLAN on Uplink Profile that is used for the type VLAN Transport zone for microsegmentation only? With no overlay?

Example is assign VLAN on Uplink Profile (insted of leave at 0) attach that U.P. to type VLAN transport zone and use that tz for microsegmentation. What is impact? I think it will work for microsegmentation anyway even without overlay and TEP but want expert opinion.

 

Thank you 

 

0 Kudos
4 Replies
Sreec
VMware Employee
VMware Employee
‎03-10-2021 03:08 AM

Transport VLAN set in the uplink profile tags overlays traffic only. If you don't have any overlay traffic requirements, don't define any VLANs. 

Cheers,
Sree | VCIX-5X| VCAP-5X| VExpert 7x|Cisco Certified Specialist
Please KUDO helpful posts and mark the thread as solved if answered
0 Kudos
SpencerLaV
Contributor
Contributor
‎03-10-2021 03:16 AM

Thank u Sreec. I appreciate you take trouble to reply. Thx

But what interest me is if can work? (even though not recommend) Because if i am correct in my thinking assigning VLAN on uplink prof for non-overlay transport zone would just be ignored yes?

Does that make sense? I ask mostly to help understand true function of components etc.

Thank you again!

0 Kudos
Sreec
VMware Employee
VMware Employee
‎03-10-2021 04:11 AM

If you have NSX-T Edge nodes, they will need connectivity with VLAN backed network for upstream connectivity and an overlay-backed network (TEP). So when you deploy the Edges you will have to point to a profile that is created for the same purpose and Edges will have external(VLAN) connectivity with segments(VLAN Tagged) peered with the physical routers. So in a nutshell, no matter what VLAN we are specifying in the Uplink profile, if there is no overlay traffic it will be of no use. 

Cheers,
Sree | VCIX-5X| VCAP-5X| VExpert 7x|Cisco Certified Specialist
Please KUDO helpful posts and mark the thread as solved if answered
0 Kudos
shank89
Expert
Expert
‎03-10-2021 10:04 AM

To interject here, it sounds like you are wanting to perform microseg without overlay, and were just confused about what the transport VLAN was?

While yes, the transport VLAN is set in the uplink profile, and is the VLAN used for transporting the GENEVE packets from one endpoint to another.

It is also possible to perform microsegmentation on a pure VLAN only environment in NSX-T. 

 This post should assist you. https://vdives.com/2020/05/20/nsx-t-3-0-lab-micro-seg-only-deployment-wizard/

Shashank Mohan

VCIX-NV 2022 | VCP-DCV2019 | CCNP Specialist

https://lab2prod.com.au
LinkedIn https://www.linkedin.com/in/shankmohan/
Twitter @ShankMohan
Author of NSX-T Logical Routing: https://link.springer.com/book/10.1007/978-1-4842-7458-3
0 Kudos