DefinIT

VCIX-NV Objective 1.1 Deploy VMware NSX Components

| 27/10/2014 |

<< Back to VCIX-NV menu

Deploy the NSX Manager Virtual Appliance

image image

image image

image image

image image

imageimage

image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-CFB0DC96-C329-490E-B2A9-D92C5704E853.html

Integrate the NSX Manager with vCenter Server

Log onto the web client of the newly deployed vCenter Server (user name “admin”, password configured in appliance deploy)

Navigate to the NSX Management Service, and click Configure next to the vCenter Server

image image

Additionally, configure lookup service if required:

image

image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-D18A11DF-3D85-4B80-8713-D611648D43F4.html

Implement and Configure NSX Controllers

Log into vSphere Web client, go to Networking and Security, select Installation from the left hand menu and then the Management tab.

Click the image to add a new NSX Controller node

Select the NSX Manager, the Datacenter to deploy to, the Cluster or Resource Pool on which the controller VM will run, the Datastore that the controller VM will deploy to, (optionally) the specific host the controller VM will run on. Select the Port Group or Distributed Port Group to connect the controller to the management network. Finally select the IP pool the controller VM should get its IP addressing from (see the final objective in 1.1 – IP Pools)

image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-ADAED74E-4796-4826-B138-2F9EFF0AB427.html

Prepare Host Clusters for Network Virtualization

Log into vSphere Web client, go to Networking and Security, select Installation from the left hand menu and then the Host Preparation tab.

Click on the image link for the cluster to be prepared.

When the process completes you can see the version in the Installation Status column and a tick on the Firewall column.

image

You can verify the VIBs are installed on an ESXi host using esxcli

image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-07ED3DD6-BF82-4097-8702-4587FA88CFE2.html

Implement NSX Edge Services Gateway devices

Log into vSphere Web client, go to Networking and Security, select NSX Edges from the left hand menu.

Click the image to add a new NSX Edge configuration

image image

image

Click the image to add a new NSX Edge Appliance

Select the Cluster or Resource Pool to run the Appliance VM, the Datastore to store the Appliance, (optional) select a specific host and a Folder to put the Virtual Machine in.

image

image

Click the image to add a new NSX Edge Interface

Name the interface, choose whether it’s an uplink (connecting to outside world) or an internal. Select the network that the interface should be connected to, and whether it’s connected or not. Click the image to add a new IP configuration to the interface. Specify a MAC address for the interface (or leave blank to auto-generate). If you selected HA then you have to specify a second MAC (or leave both blank).

image image

Depending on your routing requirements, specify a default gateway – or not.

image

Configure the default Firewall Policy – set to Deny All by default – if required. Configure HA options if using HA appliance. Finish the wizard.

image image

image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-6FB89057-CD13-48AF-82F2-550B89F89FC5.html

Implement Logical Routers

Edge router is very similar implementation to Edge Gateway – steps 1,2 and 3 are the same apart from picking Logical Router.

Log into vSphere Web client, go to Networking and Security, select NSX Edges from the left hand menu.

Click the image to add a new NSX Edge configuration, select the Logical (Distributed) Router and enter a name as a minimum.

image image

image image

Connect the DLR to a management network and give it an IP address. Configure additional interfaces on other networks and specify IP addresses for those also.

image image

image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-B62E566F-8EBB-4A59-936D-E56AD994985F.html

Deploy vShield Endpoints

Log into vSphere Web client, go to Networking and Security, select Installation from the left hand menu and then the Service Deployments tab.

Click the image to add a new Service Deployment, select VMware Endpoint (or vShield Endpoint, depending on the version!)

image

Select the datacenter and cluster(s) to deploy to

image

Select the datastore to use for Endpoint service management

image

Select a network for the management IP configuration, and choose between DHCP and an IP Pool to assign the IP configurations. The network must be able to talk to the NSX Manager’s port group, and be available to all hosts.

Datastore and Network configuration can also be specified on a per-host basis, you must specify configuration for both datastore and network if that is the case.

image

Check the configuration and deploy

image

Monitor the deployment status by clicking on the “unknown” Service Status link:

image image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-62B22E0C-ABAC-42D8-93AA-BDFCD0A43FEA.html

Ensure that the VMware Tools installation is either “complete” or “custom” and “NSX Driver” is installed (see http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-D04D1521-8EBC-449F-AD57-EF829075A25D.html

Implement Data Security

Installing VMware Endpoint is a pre-requisite for installing Data Security.

Log into vSphere Web client, go to Networking and Security, select Installation from the left hand menu and then the Service Deployments tab.

Click the image to add a new Service Deployment, select VMware Data Security. The remainder is as above.

image image

image image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-0E44989B-AF27-46FF-B21E-A6F8E6707D1B.html

Create IP Pools

Creating an IP pool is actually one of the first things you do after you’ve deployed the NSX Manager – it’s only here in the order because this reflects the exam blueprint!

Log into vSphere Web client, go to Networking and Security, select NSX Managers in the left hand menu and then select the NSX manager you wish to create an IP pool for.

image

Select the “Manage” tab, then the “Grouping Objects” tab, then the IP Pools page from the menu (no, I have no idea why it’s that well hidden!)

image

Click the image to add a new IP pool and configure a name, a default gateway for the pool, a prefix length (CIDR), optional DNS servers and suffix, and then a range or ranges of IPs to be used.

image

Documentation: http://pubs.vmware.com/NSX-6/index.jsp#com.vmware.nsx.install.doc/GUID-A5EBCAF2-2FE6-4DD0-89E7-0D1D20C8F533.html