Category : VMware

Written by Christopher Lewis on July 30, 2017 .

Skills and Abilities

Objective 2.3 - Configure and Manage Routing

  • Deploy the appropriate NSX Edge (ESG/DLR) device according to a deployment plan.
  • Configure centralized and distributed routing.
  • Configure default gateway parameters.
  • Configure static routes.
  • Select and configure appropriate dynamic routing protocol according to a deployment plan:
    • OSPF
    • BGP
    • IS-IS
  • Configure route redistribution to support a multi-protocol environment.

Objective Prerequisites

The following prerequisites are assumed for this Objective:

  • A working VMware vSphere 6.x environment.
  • A working VMware NSX 6.x environment.

Objective Breakdown

Deploy the appropriate NSX Edge (ESG/DLR) device according to a deployment plan

A VMware NSX Edge Services Gateway (ESG) is deployed for North/South traffic and the additional services, such as NAT and Load Balancing. In most circumstances, a VMware NSX Distributed Logical Router (DLR) is deployed for East/West traffic. Although it is possible to configure a uplink to allow North/South traffic on a DLR.

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 30, 2017 .

Skills and Abilities

Objective 5.3 - Configure and Manage Role Based Access Control

  • Implement identity service support for Active Directory, NIS, and LDAP with Single Sign-On (SSO).
  • Manage User rights:
    • Assign roles to user accounts
    • Change a user role
    • Delete/disable/enable a user account

Objective Prerequisites

The following prerequisites are assumed for this Objective:

  • A working VMware vSphere 6.x environment.
  • A working VMware NSX 6.x environment.

Objective Breakdown

Implement identity service support for Active Directory, NIS, and LDAP with Single Sign-On (SSO)

Configuring SSO requires that NTP is configured correctly within the VMware NSX Manager. This is covered in HOWTO: Deploy and Configure the VMware NSX Manager Virtual Appliance - Part 2

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 30, 2017 .

Skills and Abilities

Objective 8.1 - Administer and Execute calls using the VMware NSX vSphere API

  • Construct and execute an API call using correct syntax and formatting
  • Programmatically configure system parameters including:
    • NSX controller syslog
    • Modify DLR declared dead time
  • Analyze, modify, and successfully retrieve configuration data using an existing API call.

Objective Prerequisites

The following prerequisites are assumed for this Objective:

  • A working VMware vSphere 6.x environment.
  • A working VMware NSX 6.x implementation.

Objective Breakdown

Construct and execute an API call using correct syntax and formatting

For API calls I tend to use Postman. I’m not sure how you can get the incorrect syntax when using the API guide from VMware. Within Postman, you choose the Request Type (i.e. GET, POST, DELETE, etc) and then enter the full URL of the API call.

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 30, 2017 .

Skills and Abilities

Objective 2.1 - Create and Manage Logical Switches

  • Create/Delete Logical Switches
  • Assign and configure IP addresses
  • Connect a Logical Switch to an NSX Edge
  • Deploy services on a Logical Switch
  • Connect/Disconnect virtual machines to/from a Logical Switch
  • Test Logical Switch connectivity

Objective Prerequisites

The following prerequisites are assumed for this Objective:

  • A working VMware vSphere 6.x environment.
  • A working VMware NSX-V 6.x environment.

The following are additional prerequisites for creating a NSX Logical Switch:

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 30, 2017 .

Skills and Abilities

Objective 1.3 - Configure and Manage Transport Zones

  • Create Transport Zones according to a deployment plan
  • Configure the control plane mode for a Transport Zone
  • Add clusters to Transport Zones
  • Remove clusters from Transport Zones

Objective Prerequisites

The following prerequisites are assumed for this Objective:

  • A working VMware vSphere 6.x environment.
  • The VMware NSX Manager has been deployed.
  • At least one VMware NSX Controller has been deployed (if required).

Objective Breakdown

Create Transport Zones according to a deployment plan

A Transport Zone defines which hosts a Logical Switch can reach. A Transport Zone can span multiple host clusters.

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 30, 2017 .

Skills and Abilities

Objective 1.2 - Prepare Host Clusters for Network Virtualization

  • Prepare vSphere Distributed Switching for NSX
  • Prepare a cluster for NSX
    • Add/Remove Hosts from cluster
  • Configure the appropriate teaming policy for a given implementation
  • Configure VXLAN Transport parameters according to a deployment plan

Objective Prerequisites

The following prerequisites are assumed for this Objective:

  • A working VMware vSphere 6.x environment.
  • The VMware NSX Manager has been deployed.
  • At least one VMware NSX Controller has been deployed (if required).

Objective Breakdown

Prepare vSphere Distributed Switching for NSX

I’m unsure what they will expect for us to configure. However, I would suggest that they will expect the creation of a Distributed Switch with the right port groups and the right MTU value (1600). I won’t be covering the creation of vDS here, if you are unsure how to do this, then check out the VMware article .

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 30, 2017 .

When you add a host from a VMware NSX enabled cluster, the NSX VIBs are automatically installed. The process steps for adding hosts to a VMware NSX enabled cluster is the same as if you were adding a host from a standard vSphere cluster.

Prerequisites

This post assumes the following:

  • The target VMware ESXi host(s) are already connected to vCenter Server.
  • The target VMware ESxi host(s) are already connected to any relevant Distributed Switches.

Add a Host to a VMware NSX enabled Cluster

Note: These steps assume you are not even logged into vCenter Server. Skip the first few steps if you are!

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 30, 2017 .

When you remove a host from a VMware NSX enabled cluster, the NSX VIBs are automatically removed. The process steps for removing hosts from a VMware NSX enabled cluster is the same as if you were removing a host from a standard vSphere cluster.

Remove a Host from a VMware NSX enabled Cluster

Note: These steps assume you are not even logged into vCenter Server. Skip the first few steps if you are!

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 29, 2017 .

Skills and Abilities

Objective 1.1 - Deploy VMware NSX Infrastructure components

  • Deploy the NSX Manager virtual appliance
  • Integrate the NSX Manager with vCenter Server
    • Configure Single Sign On
    • Specify a Syslog Server
  • Implement and Configure NSX Controllers
  • Exclude virtual machines from firewall protection according to a deployment plan

Objective Prerequisites

The following prerequisites are assumed for this Objective:

  • A working VMware vSphere 6.x environment.

Objective Breakdown

Deploy the NSX Manager virtual appliance

See HOWTO: Deploy and Configure the VMware NSX Manager Virtual Appliance - Part 1

VMware NSX-V VCAP6-NV VCIX6-NV HOWTO

Written by Christopher Lewis on July 29, 2017 .

In this post, we’ll look at the final step of deploying the VMware NSX infrastructure, excluding VMs from the firewall protection. The default rule if DENY ALL which is due to security by design reasons but can cause all sorts of problems!

VMware recommends that the following machines are excluded:

  • vCenter Server (including Platform Services Controllers)
  • Partner service virtual machines.
  • Virtual machines that require promiscuous mode.
  • The SQL server that your Windows-based vCenter uses.
  • vCenter Web server, if you are running it separately.

Adding Virtual Machines to the Exclusion List

Note: These steps assume you are not even logged into vCenter Server. Skip the first few steps if you are!

VMware NSX-V VCAP6-NV VCIX6-NV DFW HOWTO