Skip to content
Main Menu
Remaining Time:
Main Menu
Navigation
Course Resources
Page Resource
Glossary
Bibliography
Section Status
Narration
Mute
Print
Submit All
Static Page
Exit
Reviewing the Configuration of the Predeployed NSX Manager Instance
Objective: Verify the NSX Manager appliance settings
Access Your Lab Environment
Prepare for the Lab
Verify vCenter Server and ESXi Hosts Licensing
Verify the NSX Manager Configuration
Register vCenter Server to NSX Manager
Deploying the NSX Controller Cluster
Objective: Deploy a single-node controller cluster from the NSX Manager UI
Prepare for the Lab
Deploy the Controller Cluster from NSX Manager
Review the Controller Cluster Information from NSX Manager
Review the Management Cluster and Controller Cluster Information from the NSX CLI
Preparing the NSX Infrastructure
Objective: Deploy transport zones, create IP pools, and prepare hosts for NSX usage
Prepare for the Lab
Create Transport Zones
Create IP Pools
Prepare the ESXi Hosts
Prepare the KVM Hosts
Managing Users and Roles with VMware Identity Manager
Objective: Integrate NSX Manager with a predeployed VMware Identity Manager appliance
Prepare for the Lab
Add an Active Directory Domain to vIDM
Create the OAuth Client for NSX Manager in vIDM
Gather the vIDM Appliance Thumbprint
Enable VMware Identity Manager Integration with NSX Manager
Assign NSX Roles to Domain Users and Test Permissions
Prepare for the Next Lab
Configuring Logical Switching
Objective: Create logical switches for VMs residing on ESXi and KVM hosts
Prepare for the Lab
Create Logical Switches
Attach VMs to Logical Switches
Test Layer 2 Connectivity and Verify the Logical Switching Configuration
Using Network IO Control to Allocate Network Bandwidth
Objective: Configure Network I/O Control switching profiles to allocate network bandwidth
Prepare for the Lab
Verify the Network I/O Control Support and Configure the Web-Tier VM Connectivity
Verify that the Default NIOC Profile is Applied to the ESXi Transport Nodes
Create a Test File and Transfer It between VMs Using the Default NIOC Profile
Create a New NIOC Profile and Apply It to the ESXi Transport Nodes
Transfer the Test File Again and Compare the Result
Prepare for the Next Lab
Configuring Guest VLAN Tagging
Objective: Configure a logical switch with VLAN tagging and test layer 2 connectivity
Prepare for the Lab
Create a Logical Switch
Attach the Ubuntu VMs to the New Logical Switch
Create a VLAN-tagged Subinterface on the Ubuntu VMs
Test the Tagged VLAN Connectivity
Deploying and Configuring NSX Edge Nodes
Objective: Deploy NSX Edge nodes and configure them as transport nodes
Prepare for the Lab
Deploy Two Edge Nodes from NSX Manager
Enable SSH on the Edge Nodes
Promote Edge Nodes to Transport Nodes
Configure an Edge Cluster
Configuring Tier-1 Logical Routing
Objective: Create a Tier-1 logical router and configure logical router ports
Prepare for the Lab
Create a Tier-1 Logical Router
Create Logical Router Ports
Test East-West L3 Connectivity
Configuring Tier-0 Logical Routing
Objective: Create a Tier-0 logical router and configure north-south end-to-end connectivity
Prepare for the Lab
Create a Tier-0 Logical Router
Create Uplink Logical Switches
Create Logical Router Ports
Connect the Tier-0 and Tier-1 Logical Routers
Configure BGP on the Tier-0 Logical Router
Enable Route Advertisement on the Tier-1 Logical Router
Enable Route Redistribution on the Tier-0 Logical Router
Test the End-to-End Connectivity
Configuring Equal Cost Multi-Pathing
Objective: Enable Equal Cost Multi-Pathing on routers
Prepare for the Lab
Verify the BGP Configuration
Enable Equal Cost Multi-Pathing
Verify the Result of the ECMP Configuration
Configuring Centralized Ports
Objective: Configure a centralized port on the Tier-1 logical router and attach it to an overlay network
Prepare for the Lab
Configure the Tier-1 Logical Router to Run on the Edge Cluster
Create a Centralized Port on Tier-1 Logical Router
Connect a VM to the Centralized Port Logical Switch
Test the IP Connectivity Through the Centralized Port
Configuring Network Address Translation
Objective: Configure source and destination network address translation rules on the Tier-1 logical router
Prepare for the Lab
Create a Tier-1 Router for Network Address Translation
Create a Logical Switch
Attach a VM to the NAT-LS Logical Switch
Create a Logical Router Port
Configure NAT
Configure Route Advertisement and Route Redistribution
Verify the IP Connectivity
Configuring Load Balancing
Objective: Configure load balancing on the Tier-1 logical router to distribute web traffic
Prepare for the Lab
Test the Connectivity to Web Servers
Create a Load Balancer
Configure Route Advertisement and Route Redistribution for the Virtual IP
Use CLI to Verify the Load Balancer Configuration
Configure and Test the Backup Server Pool
Prepare for the Next Lab
Configuring NSX Distributed Firewall
Objective: Create NSX Distributed Firewall rules to allow or deny application traffic
Prepare for the Lab
Test the IP Connectivity
Create IP Set Objects
Change the Default Firewall Rule
Create an Intratier Firewall Rule to Allow HTTP Traffic
Create an Intertier Firewall Rule to Allow SSH Traffic
Create an Intertier Firewall Rule to Allow MySQL Traffic
Prepare for the Next Lab
Configuring the NSX Edge Firewall
Objective: Configure and test NSX edge firewall rules to control north-south traffic
Prepare for the Lab
Test SSH Connectivity
Configure an Edge Firewall Rule to Block External SSH Requests
Test the Effect of the Configured Edge Firewall Rule
Prepare for the Next Lab
Configuring SpoofGuard
Objective: Configure a SpoofGuard profile to block unauthorized VMs from accessing the network
Prepare for the Lab
Obtain the MAC and IP Address Information for VMs
Configure Manual IP-to-MAC Address Bindings for VMs
Create a SpoofGuard Profile
Attach the SpoofGuard Profile to a Logical Switch
Verify the Result of the SpoofGuard Configuration
Prepare for the Next Lab
Configuring Syslog
Objective: Configure Syslog to collect log messages
Configure Syslog on NSX Manager and Review the Collected Logs
Configure Syslog on NSX Controller and Review the Collected Logs
Configure Syslog on an NSX Edge Node and Review the Collected Logs
Generating Technical Support Bundles
Objective: Generate and download a technical support bundle for NSX Manager
Prepare for the Lab
Generate a Technical Support Bundle for NSX Manager
Download the Technical Support Bundle
Configuring Logical SPAN for Port Mirroring
Objective: Create a logical SPAN session to mirror traffic between VMs on different hosts
Prepare for the Lab
Prepare VMs for Port Mirroring
Use tcpdump for Packet Capturing
Configure a Logical SPAN Session
Capture VM Traffic
Prepare for the Next Lab
Configuring ERSPAN for Remote Mirroring Across IP Networks
Objective: Create an ERSPAN session to mirror traffic between different networks
Prepare for the Lab
Configure an ERSPAN Remote L3 Port Mirroring Session
Use Wireshark for Packet Capturing
Capture and Analyze VM Traffic
Prepare for the Next Lab
Using Traceflow to Inspect the Path of a Packet
Objective: Use Traceflow to inspect the path of a packet as it travels from source to destination
Prepare for the Lab
Configure a Traceflow Session
Examine the Traceflow Output
Using the Port Connection Tool to Visualize VM Traffic
Objective: Use the port connection tool to visualize the connection between VMs
Prepare for the Lab
Configure Port Connection Tool
Verify the Device and Port Connection Details
Bibliography
