NSX-T Preparation

Check the Lab environment is ready

Cloud Master 2019 - Lab Console - VMware Learning Platform

Make sure the Lab status is Ready.

If the Lab is not READY, contact the staff for assistance.

Login to NSX-T Manager

Launch Google Chrome available from desktop

On the bookmarks bar, select RegionB - Cloud > NSX-T Manager

Username: admin
Password: VMware1!VMware1!

Click LOG IN.

Scroll down the End License Agreement. Click the checkbox and then click CONTINUE.

Uncheck the box marked Join the VMware Customer Experience Improvement Program, and click SAVE.

Add New Compute Manager

At the top bar, click on System.

Expand the Fabric menu, and click on Compute Managers. Click ADD.

Name: vcsa-01b.corp.justaname
Domain Name/IP Address: vcsa-01b.corp.local
Type: vCenter
Username: administrator@regionb.local
Password: VMware1!

Click ADD.

If a warning shows up, click ADD.

This is to allow easier visibility of transport nodes (ESXis) whenever a new one is added into vCenter

Create a new IP Pool

Go to Advanced Networking & Security > Inventory > Groups > IP Pools.

Click ADD.

Name: TEP-pool

Click the +ADD button at the top of the table to begin entering details for the new IP pool.

IP Range: 192.168.230.57 - 192.168.230.59
Gateway: 192.168.230.1
CIDR: 192.168.230.0/24
DNS Servers: 192.168.110.10
DNS Suffix: corp.local

Click ADD.

This is to provide a pool of IPs that the GENEVE Tunnel EndPoint (TEP) vmkernels can use.

Add Transport Nodes

Go to System> Fabric > Nodes > Host Transport Nodes

Under the Managed By dropdown, select vcsa-01b.corp.justaname

Expand the Compute Cluster RegionB01-COMP02.

Check the ESXi host and go to Configure NSX.

On the host details screen, click NEXT.

Click on OR Create New Transport Zone.

Name: Cloud-OverlayTZ
N-VDS Name: cloud-nvds
Host Membership Criteria: Standard
Traffic Type: Overlay

Click ADD.

This is to create an overlay (GENEVE) Transport Zone to be associated with a Transport Node (and later Edge Node)

This Transport Zone is linked to an N-VDS called "cloud-nvds" which the Transport Node will create

Standard N-VDS boasts all the feature-sets of NSX-T while Enhanced Datapath N-VDS has few features not available yet in exchange for high network performance throughput

Your new Cloud-Overlay-TZ is automatically filled in.

N-VDS Name: Cloud-nvds (it should be available from the dropdown menu)
NIOC Profile: nsx-default-nioc-hostswitch-profile
Uplink Profile: nsx-default-uplink-hostswitch-profile
LLDP Profile: LLDP [Send Packet Disabled]
IP Assignment: Use IP Pool
IP Pool: TEP-pool
Physical NICs: uplink-1

Leave the settings as default and click FINISH.

Once the NSX-T VIBs install is completed, select the Transport Node (ESXi) esx-04b.corp.local

Click Configure NSX once again.

On the host details screen, click NEXT again to re-configure NSX on esx-04b.corp.local

Configure Physical NICs to vmnic2 : uplink-1

Click on Add PNIC

Configure another Physical NICs to vmnic3 : uplink-2

Click FINISH

This is to assign the 2 unused PNICs to become the uplinks of the cloud-nvds switch on esx-04b.corp.local transport node

Status should come Up in Green

Create a new Edge VM

Go to Fabric > Nodes > Edge Transport Nodes.

Click on ADD EDGE VM.

 

Name: en-01b
Host name/FQDN: en-01b.corp.local
Form Factor: Small

Click NEXT.

Size of Edge VM depends on performance and scalability required. For POC / this lab, small will be sufficient.

Expand CLI Credentials:

   CLD User Name: admin
   
CLI Password: VMware1!VMware1!
   
CLI Confirm Password: VMware1!VMware1!
   
Allow SSH Login: Yes

Expand Root Credentials:

   System Root Password: VMware1!VMware1!
   
System Root Confirm Password: VMware1!VMware1!
   
Allow Root SSH Login: Yes

Click NEXT.

 

Compute Manager: vcsa-01b.corp.justaname
Cluster: RegionB01-EDGE
Datastore: RegionB01-ISCSI01-COMP01

Click NEXT.

This section is used to decide where the Edge Node VM will be installed on.

IP Assignment: Static
Management IP: 192.168.210.61/24
Default Gateway: 192.168.210.1
Management Interface: ESXi-RegionB01-vDS-COMP
Search Domain Names: corp.local
DNS Servers: 192.168.110.10
NTP Servers: 192.168.110.10

Click NEXT.

Choose earlier created transport zone to be added
Transport Zone: Cloud-Overlay-TZ

Click on OR Create New Transport Zone to create a new Transport Zone

Name: VLAN-TZ
N-VDS Name: vlan-nvds
Host Membership Criteria: Standard
Traffic Type: VLAN

Click ADD.

This is to create a VLAN Transport Zone to be associated with a Edge Node in order to provide VLAN uplinks for communications with the underlay network

An N-VDS named "vlan-nvds" will be created in the Edge Node for this communication.

Move on to configure the new node switch.

Edge Switch Name: cloud-nvds
Uplink Profile: nsx-edge-single-nic-uplink-profile
IP Assignment: Use IP Pool
IP Pool: TEP-pool
DPDK Fastpath Interfaces: uplink-1

Click Select Interface.

Select ESXi-RegionB01-vDS-COMP.

Click SAVE.

This is to assign the port-group to the TEPs of the Edge Node VMs

Click on ADD N-VDS.

Edge Switch Name: vlan-nvds
Uplink Profile: nsx-edge-single-nic-uplink-profile
DPDK Fastpath Interfaces: uplink-1

Click on Select Interface.

 

Select ESXi-RegionB01-vDS-COMP.

Click SAVE.

This is to assign the port-group for the uplink(s) on Tier-0 router

If you are assigning VLANs to the uplinks from Tier-0, then the port-group should be configured as "trunk".  This is similar concept to physical switchports being configured to trunk ports and we assign VLANs on the port-group.

Because this lab's underlay does not support VLANs, we are leaving this as VLAN untagged

Click FINISH.

Wait for the Configuration State and Node Status to change to green before proceeding with the lab.

Add Edge Cluster

Go to System > Fabric > Nodes > Edge Clusters

Click ADD.

Name: Ext-Nw-Edge_cluster
Edge Cluster Profile: nsx-default-edge-high-availability-profile
Member Type: Edge Node
Under the available column, select en-01b and click the right arrow to move it to the Selected column.

Click ADD.

Create New Segment

Go to Networking > Segments

Click ADD SEGMENT.

Segment Name: Ext-Nw-VLAN0
Connected Gateway & Type: None
Transport Zone: VLAN-TZ | VLAN
VLAN: 0

Click SAVE.

This is to create an untagged VLAN segment (or synonymous to port-group) to be used be the Tier-0 router

Click NO to finish editing.

Go to Networking > Tier-0 Gateways

Click on ADD TIER-0 GATEWAY

Tier-0 Gateway Name: Ext-Nw-T0
HA Mode: Active Standby
Fail Over: Non Preemptive
Edge Cluster: Ext-Nw-Edge_cluster

Click SAVE

Active-Standby HA mode is only used when we require stateful services (e.g. firewall or NAT) on the Tier-0 router.

Preemptive is required when we want the primary node to be active node every time it becomes available.

When asked whether we want to continue configuring the Tier-0, click YES

Select Interfaces from the dropdown menu.

Click Set.

Name: Uplink
Type: External
IP Address / Mask: 192.168.210.100/24
Connected To(Segment): Ext-Nw-VLAN0
Edge Node: en-01b

Click SAVE.

Click CLOSE.

This assigns IP of 192.168.210.100/24 to the Tier-0 router uplink and places the Tier-0 router on en-01b Edge Node.

Click CLOSE.

Click SAVE.

Click on the Routing dropdown menu.

Next to the header Static Routes, click Set.

Click ADD STATIC ROUTE.

Name: Default Gateway
Network: 0.0.0.0/0

Click Set Next Hops.

IP Address: 192.168.210.1
Admin Distance: 1

Click ADD.

This creates a default route for the Tier-0 router to next-hop of 192.168.210.1

Click APPLY.

Click SAVE.

Click CLOSE EDITING.