VMware NSX

 View Only
Back to discussions
Expand all | Collapse all

About FW when using load balancer with NSX Edge

  • 1.  About FW when using load balancer with NSX Edge

    Posted Nov 10, 2017 01:32 PM

    Is it mandatory to enable FW when using load balancers with NSX Edge?



  • 2.  RE: About FW when using load balancer with NSX Edge

    Posted Nov 10, 2017 04:31 PM

    Hi,

    There are two ways to deploy the Load Balancer: one armed and in-line (difference depicted below). One armed requires NAT, which in turn requires the firewall. In-line doesn't require the firewall, because it doesn't require NAT.



  • 3.  RE: About FW when using load balancer with NSX Edge
    Best Answer

    Broadcom Employee
    Posted Nov 10, 2017 04:59 PM

    Inline doesn't require SNAT as the source remains unchanged, however, it actually still requires DNAT so firewall needs to be enabled on the ESG either way.

    The Load Balancer Configuration Verification and Troubleshooting Using the UI  guide alludes to this as  a pre-requisite: 



  • 4.  RE: About FW when using load balancer with NSX Edge

    Posted Nov 10, 2017 05:36 PM

    I stand corrected!



  • 5.  RE: About FW when using load balancer with NSX Edge

    Posted Nov 14, 2017 12:17 PM

    Thankyou!



  • 6.  RE: About FW when using load balancer with NSX Edge

    Posted Nov 14, 2017 12:17 PM

    Thnakyou!