@SilenCN
Question1:
You configure interfaces on your T0. And for each interface you explicitly tell on which Edge Node that T0-interface is.
Then based on that configuration, all the Edge Node...
See more...
@SilenCN
Question1:
You configure interfaces on your T0. And for each interface you explicitly tell on which Edge Node that T0-interface is.
Then based on that configuration, all the Edge Nodes with an interface will have that T0.
And if you have configured the T0 in A/A; then all those Edge Nodes will participate to N/S via ECMP.
Question2:
No there is no ability to do "Local-Egress" with NSX Multisite Design, as you can see in the "NSX Multi-Location Design Guide" - chapter 3.3.2.3 (Google it to find that document).
Two NSX Anti-Malware Presentations:
101 level for a quick NSX Malware Detection and Prevention presentation
what's new in NSX 4.0.1.1
what it is
how it works
and its reporting capabili...
See more...
Two NSX Anti-Malware Presentations:
101 level for a quick NSX Malware Detection and Prevention presentation
what's new in NSX 4.0.1.1
what it is
how it works
and its reporting capabilities
301 level for deeper NSX Malware Detection and Prevention presentation
with the same points as 101, plus
packet walk of Gateway and Distributed Malware Detection and Prevention
reporting
requirements / limitations / scale
high-availability
malware file DB population
installation
upgrade
troubleshooting
NSX Malware Detection and Prevention demo is also available here.
Note: Those ToI may be updated in the future so always check you have the latest version.
101 ToI version is 1.1 (for NSX 4.1) done on 09/19/2023.
301 ToI version is 1.4 (for NSX 4.1) done on 11/07/2023.
Older NSX-T releases are also attached if needed.
One Malware Detection and Prevention demo is proposed here. NSX-T Malware Detection and Prevention presentation is also available here. Enjoy the demo. Dimitri
Two NSX Physical Server Presentations:
101 level for a quick NSX Physical Server presentation
topologies with Physical Servers
NSX services supported with Physical Servers
301 le...
See more...
Two NSX Physical Server Presentations:
101 level for a quick NSX Physical Server presentation
topologies with Physical Servers
NSX services supported with Physical Servers
301 level for deeper NSXPhysical Server presentation
with the same points as 101, plus
detailed supported topologies
preparation and installation
troubleshooting
Note: This document may be updated in the future so always check you have the latest version.
NSX-T 4.0-4.1:
The latest physical server 101 ToI version for NSX 4.0-4.1 release is 1.0 done on 03/15/2023
The latest physical server 301 ToI version for NSX 4.0-4.1 release is 1.5 done on 10/30/2023.
Updated version 1.1 03/08/2023 = Updated deck with NSX 4.1 enhancement (support on all Linux of topology VLAN bond mode 1 with bond configured in Linux).
Updated version 1.3 04/14/2023 = update on licenses (NSXROBO licenses doesn't support Physical Server).
Updated version 1.4 08/18/2023 = update on NSX Intelligence support and no SE Linux support.
Updated version 1.5 10/10/2023 = update on 4?1?2 new topology supported
NSX-T 3.2:
The latest physical server encyclopedia version for NSX-T 3.2 release is 1.6 done on 04/14/2023.
Updated version 1.1 04/11/2022 = clarification of DFW services supported slide 10.
Updated version 1.2 05/25/2022 = clarification of the different topologies supported.
Updated version 1.3 06/10/2022 = clarification/correction of the different topologies supported.
Updated version 1.5 12/08/2022 = update on pNICs support. Now all pNICs are supported (in case of Overlay on Windows, the pNIC driver must support jumbo packets though).
Updated version 1.6 04/14/2023 = update on licenses (NSX ROBO licenses doesn't support Physical Server).
Updated version 1.7 08/18/2023 = update on NSX Intelligence support and SELinux not supported.
@jeffersonc47 The NSX-T 3.2 brings some enhancement in Multi-Location: Multisite + Network Introspection / Endpoint Protection Federation + LM Network Introspection / LM Endpoint Protection GM ...
See more...
@jeffersonc47 The NSX-T 3.2 brings some enhancement in Multi-Location: Multisite + Network Introspection / Endpoint Protection Federation + LM Network Introspection / LM Endpoint Protection GM Sync VM Tag AD/LDAP support in GM I expect the NSX-T Multi-Location Design Guide for NSX-T 3.2 to be available end of this week
Your understanding is correct North-South: Green segments go to public (internet) via T0 on Location-C, Blue segments go to public (internet) via T0 that resides on Location-A And this wherever...
See more...
Your understanding is correct North-South: Green segments go to public (internet) via T0 on Location-C, Blue segments go to public (internet) via T0 that resides on Location-A And this wherever location the Blue or Green VMs are. East-West: The router attached to the Segment is distributed. So for instance The Location-B_VM_Blue_TopSegment talking to the Location-B_VM_Blue_BottomSegment will have its L3 traffic in Location-B only The Location-A_VM_Green_TopSegment talking to the Location-B_VM_Green_BottomSegment will have its L3 traffic between Location-A and Location-B (not Location-C)
@kermic You are correct about the SRM / vSphere Replication comment. I just fixed it in the lasted Design Guide. And about your asynchronous replication question, you're also correct. It's support...
See more...
@kermic You are correct about the SRM / vSphere Replication comment. I just fixed it in the lasted Design Guide. And about your asynchronous replication question, you're also correct. It's supported since NSX-T 3.0.2 (https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.0/administration/GUID-F3A0A27E-88C0-4A64-8754-33CED93985D3.html). Thanks, Dimitri
@delsaadany There is indeed only 1 ppt here under attachment (the NSX-T LB Encyclopedia). Note: I mention on that page also another great document (NSX-T LB ToI) for people's information.
This deck offers a nice presentation of what is NSX Federation and how it works.
A very similar deck was used at VMworld 2020 session VCNC1178D here and watching is a nice option as it gives "voi...
See more...
This deck offers a nice presentation of what is NSX Federation and how it works.
A very similar deck was used at VMworld 2020 session VCNC1178D here and watching is a nice option as it gives "voice over" the deck.
Federation demos are also available here.
Note1:
This ToI may be updated in the future so always check you have the latest version.
. NSX 4.0-4.1 Federation 101 ToI version is 1.0 done on 10/30/2023.
. NSX-T 3.2 Federation 101 ToI version is 1.1 done on 08/26/2022.
Note2:
For deeper information, we also offer the "NSX Federation Multi-Location Design Guide (Federation + Multisite)" here.
NSX-T offers two technical solutions for Multi-Locations On-Prem Data Centers:
NSX-T Federation
NSX-T Multisite
This NSX-T Multi-Location Design Guide offers guidance and best practices f...
See more...
NSX-T offers two technical solutions for Multi-Locations On-Prem Data Centers:
NSX-T Federation
NSX-T Multisite
This NSX-T Multi-Location Design Guide offers guidance and best practices for Network & Security services in your On-Prem locations.
FYI there is also some other nice documents on this use case:
NSX-T Federation Presentation (ppt deck here with a link to demos)
NSX-T Multisite Presentation (ppt deck here with embedded demos)
Note: This document may be updated in the future so always check you have the latest version.
The Design Guide version for NSX-T 4.1 release is 1.4 done on 08/22/2023.
The Design Guide version for NSX-T 4.0 release is 1.10 done on 08/22/2023.
The Design Guide version for NSX-T 3.2 release is 1.19 done on 08/22/2023.
The Design Guide version for NSX-T 3.1 release is 1.31 done on 06/21/2023.
Three Federation demos are proposed here: 1. Federation Network & Security Services demo: "Federation-Demo1-Network&Security.mp4" 2. Federation Disaster Recovery(Network/Security & Compute) with S...
See more...
Three Federation demos are proposed here: 1. Federation Network & Security Services demo: "Federation-Demo1-Network&Security.mp4" 2. Federation Disaster Recovery(Network/Security & Compute) with Stretched Networks + SRM: "Federation-Demo2-DR.mp4" 3. Federation Disaster Recovery(Network/Security & Compute) with GSLB: "Federation-Demo3-DR_GSLB.mp4" Enjoy the demos. Dimitri Note1: For information on NSX-T Federation we offer the "NSX-T Federation Presentation" here. Note2: For deeper information, we also offer the "NSX-T Federation Multi-Location Design Guide (Federation + Multisite)" here.
Idea 1: Try HTTP 1.0 and HTTP 1.1 in your tests. Idea2: I suggest you look at the slide "Why Pool Member down". You'll see the Edge Node CLI command to understand the reason why the pool member...
See more...
Idea 1: Try HTTP 1.0 and HTTP 1.1 in your tests. Idea2: I suggest you look at the slide "Why Pool Member down". You'll see the Edge Node CLI command to understand the reason why the pool member is considered down. Anyway, I suggest you open a bug to VMware, since it looks like there is a regression issue here.
The exact steps of NSX-T Manager recovery are well detailed in the deck. And you even have embedded videos for each step (ppt section "Demo Script/Manual"). I let you look at those in detail. ...
See more...
The exact steps of NSX-T Manager recovery are well detailed in the deck. And you even have embedded videos for each step (ppt section "Demo Script/Manual"). I let you look at those in detail. Thanks, Dimitri
You're correct. Those "internal T0/T1 subnets" will be different after the move of T1 to a T0-DR. However, T0/T1 routing is something "internal". There is nothing to do on the NSX-T Managers no...
See more...
You're correct. Those "internal T0/T1 subnets" will be different after the move of T1 to a T0-DR. However, T0/T1 routing is something "internal". There is nothing to do on the NSX-T Managers nor the physical fabric. You can watch the embedded demo videos of the recovery to validate that by yourself. Dimitri
