Objective 4.2 – Deploy VMware NSX Components

Knowledge

  • Install NSX Manager
    • Deploy OVF Template
    • Select source (URL or Browse to local file)
    • Review details (shows product, version, size, description etc)
    • Accept EULA
    • Specify a name (NSX Manager) and location (folder or datacentre)
    • Select the storage (datastore)
    • Setup networks (which port group the VM will be on)
    • Customize template (enter passwords, network properties)
    • Ready to complete (review config and click Finish)
  • Register NSX Manager with vCenter Server
    • Connect to NSX Manager Web Frontend
    • Manage vCenter Registration
    • Click on Edit
    • Enter DNS name, username, password
    • Yes to proceed with this registration
    • Yes to proceed with the SSL certificate
    • Shows status “Connected”
  • Install NSX License
    • Open the Web Client
    • Navigate to Administration > Licensing
    • Click “+” under License Keys
    • Paste in the NSX license key and click Finish
  • Prepare ESXi hosts
    • Log in to Web Client
    • Navigate to Networking & Security
    • Installation/Host Preparation
    • Select the Cluster and click “Install”
    • This installs VIBs to hosts
  • Deploy NSX Controllers
    • Must be odd number of Controllers – recommended 3
    • Use anti-affinity rules to keep separate (create manually)
    • Web Client, Networking & Security
    • Installation
    • Click “+” by NSX Controller nodes
    • Enter Datacenter, Cluster/RP, Datastore, Host, Connected To, IP Pool, Password
    • VM is then deployed and built
  • Assign Segment ID pool and Multicast addresses
    • Log in to Web Client
    • Navigate to Networking & Security
    • Installation/Logical Network Preparation
    • Click “Segment ID”
    • Click “Edit”
    • Enter the Segment ID pool range
    • If Multicast addressing is to be used, click the “Enable multicast addressing” checkbox, and enter the multicast addresses range.
    • Click OK.
  • Configure VXLAN Transport
    • VXLAN Replication Modes:
      • Unicast – Ease of entry. More work for hypervisor, but requires fewer network changes.
      • Hybrid – Requires IGMP Snooping on the switch. Uses multicast locally, but unicast across WAN.
      • Multicast – Offload more work to network infrastructur
    • Log in to Web Client
    • Navigate to Networking & Security
    • Installation/Host Preparation
    • Select the Cluster and click on “Configure” under the VXLAN column
    • Select the Switch, VLAN, MTU, choice of DHCP/IP Pool, Teaming policy, VTEP ID
      • If using IP Pool, all hosts need to be on shared L2, or manually reconfigured afterwards.
    • Click on “Transport Zones”
    • Click on “+” to start the New Transport Zone dialog
    • Enter Name, Description, Control Plane Mode (Multicast/Unicast/Hybrid), and choose the Clusters to Add.
  •  Install NSX Edge
    • A VM that provides services such as VPN, Stretch L2, Dynamic Routing etc
    • Log in to Web Client
    • Navigate to Networking & Security
    • Click on NSX Edges
    • Click on “+”
    • Select Edge Services Gateway
    • Select checkbox option to choose High Availability if required
    • Enter the Name, Hostname, Description, TenantEnter CLI credentials (enable SSH if required)
    • Configure the Datacenter, Appliance size
    • Configure interfaces (need Internal and Uplink)
    • Choose correct MTU (1500 for internal)
  • Install vShield Endpoint
    • On NSX 6.1 vShield Endpoint has been replaced with the Data Security and Guest Introspection appliances
    • Log in to Web Client
    • Navigate to Networking & Security
    • Click on Installation and Service Deployments
    • Click “+” and the “Deploy Network & Security Services” dialog starts
    • Select “VMware Endpoint”, Next
    • Select the Cluster to deploy the Endpoints to, Next
    • Select the Datastore on which to place the Endpoint, Next
    • Select the Management Network for the Endpoint, Next
    • The Endpoints are now deployed from OVFs
    • Monitor the Installation status and it will go from In Progress to Succeeded.
  • Install Data Security
    • Log in to Web Client
    • Navigate to Networking & Security
    • Click on Data Security
    • Click on Edit for “Regulations and standards to detect”
    • Click on “All”
    • Select the regulations to monitor for, Next
    • Enter Data Patterns, if prompted to enter them for the chosen regulations
    • Click Finish
    • Click on Edit for “Files to scan”
    • Make changes to the Size/Modified Date/File Extension Type if necessary
    • Click Save
    • Click Publish Changes
    • Click Start
  • Create an IP pool
    • Log in to Web Client
    • Navigate to Networking & Security
    • Click on NSX Managers
    • Click on the IP address of the NSX Manager
    • Navigate to “Manage” and “Grouping Objects”
    • Select IP Pools, and click on “+” to add a new IP pool
    • Enter the Name of the pool, Gateway, Prefix length, Primary DNS, Secondary DNS, DNS Suffix and Static IP Pool details.
    • Click OK.

Tools

  • NSX Installation and Upgrade Guide
  • NSX Manager
  • vSphere Web Client
Advertisements

One thought on “Objective 4.2 – Deploy VMware NSX Components

  1. Pingback: VMware VCP-NV NSX Study Resources | darrylcauldwell.com

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s