hi
I have a doubt on Connectivity between Two transport Zones in NSX. As per Transport Zones in VMware documentation
1. There is a 1:1 relation between Logical SWitch and Transport Zones
2. A logical switch cannot be part of Two Transport Zones
3. We cannot attach a DLR or ESG to two transport Zones
4. To acheive Security Isolation, We should map the VM's to a seperate Transport zone so that Other VM's part of other transport zones does not visibility of these VM's.
My understanding we can Interpret a transport zone as a Tenant and achieve a Isoloation. In case if I want to have communication between Vm's in two transport zones how do we achieve. Can some one explain or point me to VMWare documentation on routing between TRansport zones.
regards
vempati
Your understanding is correct as transport zones can not have common DLR, so in order to route traffic between TZ you need to have a ESG in place, which can route traffic from one TZ to another. Its same as two different companies/tenants.
dear vempati73, By any chance did you look at this article.
A Multi-Tenant Topology in VMware NSX - ipcraft.net
Hello,
Kindly check the following URLs which more explain the TZ concept:
Please consider marking this answer "CORRECT" or "Helpful" if you think your question have been answered correctly.
Cheers,
VCIX6-NV|VCP-NV|VCP-DC|
hi
Thanks for sharing the link, yes i came across the link while googling for the answer.
To achieve Communication between transport zones, assuming TZ as Tenant, configure a ESG and enable routing between the Tenant ESG.
hope my understanding correct
regards
vempati chalapathy
hi
Thanks for reply, I gone through the links, Answer i am looking was not addressed in the link.
regards
vempati chalapathy
Your understanding is correct as transport zones can not have common DLR, so in order to route traffic between TZ you need to have a ESG in place, which can route traffic from one TZ to another. Its same as two different companies/tenants.
100%
Please consider marking this answer "CORRECT" or "Helpful" if you think your question have been answered correctly.
Cheers,
VCIX6-NV|VCP-NV|VCP-DC|