nsx and waf from avi networks integration

elpampa · ‎11-11-2020

good morning,
i am in charge of evaluating for our onprem vpshere infrastructure this product (nsx plus the waf of avi networks) and i am searching for every possible info/experience of usage about it (how does it works interally, how it integrates with esx kernel and nsx components...)

any help will be appreciated, thank you.

p0wertje · ‎11-11-2020

Hello,

To understand the components: https://avinetworks.com/docs/20.1/nsx-t-design-guide/
Avi uses SE (service engines) this are vms deployed on the esx hosts. On the SE you can run a VS (virtual server)
The VS can have a WAF.

Avi networks does not insert any kernel modules like nsx does.
In version 20 it is possible to have a nsx-cloud. Avi controller programs a static route (of the VS) on the t1 pointing to the SE ip address. (see the design link)

For a setup with nsx and avi you need (production)
3x nsx controller/manager
3x avi controller

Vmware has been talking about better/improved integration between avi and nsx in a later phase. But for now there is no date attached to it.

--

Chris

Cheers,
p0wertje | VCIX6-NV | JNCIS-ENT | vExpert
Please kudo helpful posts and mark the thread as solved if solved

All

nsx and waf from avi networks integration