Networks

VCP-NV: Configure and Manage Service Composer

March 24, 2015

Service composer is a tool built into NSX which allows security policies to be built. These policies can be assigned to groups of virtual machines, and new virtual machines will inherit the policy settings when they are added into a group. Security policies define how things will be protected, whilst security groups define what will […]

0 comments Read the full article →

VCP-NV: NSX Firewall Services

March 11, 2015

This will be a single post to look at two of the VCP-NV objectives around NSX firewall services. There are two firewall deployments available in a NSX solution – the edge firewall which addresses north-south traffic at the perimeter and the distributed firewall, which focuses on east-west traffic. These firewall types can be deployed together […]

0 comments Read the full article →

VCP-NV: Configure and Manage Edge Services High Availability

March 4, 2015

The NSX Edge router can be deployed in a highly available configuration, by creating two edge appliances. When you are installing your first edge router you get the option to enable HA, as seen here: I wrote in detail about deploying an edge router in this post. If you didn’t choose to enable HA when […]

0 comments Read the full article →

VCP-NV: Configure and Manage Logical Virtual Private Networks – IPSec VPN and L2 VPN

March 4, 2015

Following on from my previous post, which looked at configuring the NSX SSL VPN-Plus, this post will look at the other two VPN types available with NSX – IPSec VPN and L2 VPN. The administration guide covers both in detail and is recommended reading if you’re studying for the VCP-NV certification. This post will run […]

0 comments Read the full article →

VCP-NV: Configure and Manage Logical Virtual Private Networks – SSL VPN-Plus

March 3, 2015

As stated in the administration guide, NSX supports a number of different types of VPN. These are: SSL VPN-Plus – To allow end users to connect to applications/services IPSec VPN – Providing connectivity between sites L2 VPN – Allows you to configure a tunnel between sites in order to ‘stretch’ L2 networks This post will […]

0 comments Read the full article →

VCP-NV: Configure and Manage DHCP/DNS/NAT

February 23, 2015

Along with Load balancing, VPN and routing services, an NSX Edge router can also provide DHCP, DNS and NAT services. This post will look at how to configure and manage each, starting with DHCP. Configuring DHCP on a NSX Services Gateway An NSX Edge Services Gateway can act as a DHCP server, providing IP addresses […]

0 comments Read the full article →

VCP-NV: Configure and Manage Logical Load Balancing

February 9, 2015

As stated in the NSX Administration Guide, the NSX Load Balancer enables network traffic to follow multiple paths to a specific destination. This load distribution is transparent to end users. As with other load balancers, in a nutshell, you map an external, or public IP, address to a number of internal servers for load balancing. […]

0 comments Read the full article →

VCP-NV: OSFP Route Distribution

February 4, 2015

In my last VCP-NV post, I looked at deploying an edge router and then connecting it to a distributed logical router via a ‘transit’ logical switch. This provides the means for virtual machines connected to NSX logical switches to access the physical network via the NSX Edge router. However, because the virtual machines are connected […]

0 comments Read the full article →

VCP-NV: Deploying an Edge Services Gateway

February 3, 2015

This post is the first of two posts on deploying NSX Edge Routers. This will look at the deployment and configuration, whilst an upcoming post will deal with implementing routing protocols in order to share routes with NSX distributed logical routers and with physical routers. There are two router types with NSX: The NSX Edge […]

0 comments Read the full article →

VCP-NV: Configure and Manage Logical Routers

January 20, 2015

My previous post on VCP-NV looked at deploying a logical router for use as a L2 bridge between a NSX logical switch and a regular port group. This post will look at using a logical router to provide connectivity between logical networks. Deploying a Logical Router Navigate to the Networking and Security area within the […]

0 comments Read the full article →