Getting Started with NSX-T: Logical Routing and Switching: The Basic Principles of Building Software
Iwan Hoogendoorn
Résumé
This primer on NSX-T helps you understand the capabilities and features of NSX-T, how to configure and manage NSX-T, and integrate NSX-T with other software. The book is the first in a series that will teach you the basics of NSX-T, which is an update of VMware's original software-defined networking (SDN) architecture aimed at making networks agile and flexible.
You will become familiar with VMware's software-defined data center (SDDC) ecosystem and how NSX-T fits in. You will understand NSX-T components such as NSX-T Manager, NSX-T Edge Transport Nodes, and NSX-T Host Transport Nodes. And you will learn how to install and configure network services such as East/West and North/South routing capabilities, layer two switching, VRF, EVPN, multicast, and layer two bridging.
The book provides best practices on how to configure routing and switching features, and teaches you how to get the required visibility of not only your NSX-T platform but also your NSX-T-enabled network infrastructure.
The book explains security, advanced network features, and multi-site capabilities and demonstrates how network and security services can be offered across multiple on-premise locations with a single pane of glass for networking and security policy management. The interface with public cloud services is discussed and the book explains NSX-T operation in an on-premise private cloud and positioning and integrating NSX-T on a public cloud (off premises).
What You Will Learn
- Understand how NSX-T fits in the VMware SDDC ecosystem
- Know what NSX-T is, its components, and the terminology used
- Install NSX-T
- Configure NSX-T network services
- Manage the NSX-T network
Who This Book Is For
Virtualization administrators, system integrators, and network administrators
* Chapter 1
o Title: NSX-T and the VMware SDDC ecosystem
o Chapter Goal: Provide information on the SDDC and what the position is of NSX-T.
o Number of Pages: 5
o Subtopics:
The VMware's SDDC ecosystem
Compute
Storage
Software Defined Networking
* Chapter 2
o Title: An Introduction to NSX-T
o Chapter Goal: Provide information on the product, the problem that can be solved and use-cases that can be satisfied.
o Number of Pages: 10
o Subtopics:
NSX-T Components
NSX-T Use Cases
* Chapter 3
o Title: The NSX-T installation on a vSphere environment
o Chapter Goal: Explain the components of NSX-T and how these are deployed including the prerequisites.
o Number of Pages: 20
o Subtopics:
NSX-T Installation Planning & Prerequisites
NSX-T Manager Installation
Edge Transport Installation (VM)
Edge Transport Installation (BM)
Host Transport Node Installation (ESXi)
* Chapter 4
o Title: Tier-0 Gateways
o Chapter Goal: Configure North/South Routing using the T0 Gateway with different kind of features.
o Number of Pages: 20
o Subtopics:
Deploy a T0 Gateway
Configure Routing
Configure Multicast
IPv6 Routing
T0 High Availability
VRF Deployment
EVPN Deployment
* Chapter 5
o Title: Tier-1 Gateways
o Chapter Goal: Create and Configure T1 Gateways.
o Number of Pages: 5
o Subtopics:
Deploy a T0 Gateway
Configure Routing
* Chapter 6
o Title: Segments
o Chapter Goal: Create and Configure L2 Segments with various service capabilities.
o Number of Pages: 10
o Subtopics:
Attach segments
DHCP & DHCP Static Binds
L2 Bridging
Add a Metadata Proxy Server
* Chapter 7
o Title: Host Switches
o Chapter Goal: Explanation on the interrogability with the vSphere Distributed Switch and the defense between the N-VDS.
o Number of Pages: 5
o Subtopics:
NSX-T with the vSphere Distributed Switch
NSX-T N-VDS
Enhanced Networking Stack
Chapter 8
o Title: Virtual Private Network (VPN)
o Chapter Goal: Know the differ types of VPN and how to configure and monitor them.
o Number of Pages: 10
o Subtopics:
IPSEC (L3 VPN)
L2 VPN
Configuration of VPN
* L3
* L4
Monitoring of VPN sessions
* Chapter 9
o Title: Network Address Translation (NAT)
o Chapter Goal: Know the difference between SNAT and DNAT and explanation on how to configure NAT.
o Number of Pages: 5
o Subtopics:
SNAT
DNAT
Configure NAT Services
* Chapter 10
o Title: Load Balancing (LB)
o Chapter Goal: Discuss Load Balancing capabilities and configuration.
o Number of Pages: 10
o Subtopics:
Load Balancing Concepts
Distributed Load Balancer
Setting up the Load Balancer Components
* Chapter 11
o Title: IP Address Management (IPAM)
o Chapter Goal: DNS and DHCP IP address Management using the internal NSX-T Tools.
o Number of Pages: 5
o Subtopics:
DNS Zone
DNS Forwarding Zone
DHCP Profile
IP Address Pool
IP Address Block
* Chapter 12
o Title: Network Settings
o Chapter Goal: Getting to know the Network setting that can be configured to finetune your network services.
o Number of Pages: 10
o Subtopics:
Multicast
VNI Pools
Gateway Settings
Gateway QoS Profile
BFD Profile
IP Discovery Profiles
MAC Discovery Profiles
* Chapter 13
o Title: Security
o Chapter Goal: The theory about the Security Services offered by NSX-T followed by the deployment's details and steps with proper verification.
o Number of Pages: 35
o Subtopics:
Identity based Firewall
Layer-7 Context Profiles
Gateway Firewalls
Distributed Firewall
Distributed IDS
East/West Third-party service insertion
North/South Third-party service insertion
Security Profiles
Time-Based Firewall Policy
Network Introspection Settings
End-Point Protection
Bare Metal Server Security
* Chapter 14
o Title: Multi-Site
o Chapter Goal: Design Principles regarding Multi Site routing
o Number of Pages: 30
o Subtopics:
Multi-Site Capabilities
NSX-T Federation overview
Networking with Federation
Security with Federation
Backup & Restore with Federation
* Chapter 15
o Title: System Operations
o Chapter Goal: Monitoring of the NSX-T Fabric using different VMware related tools.
o Number of Pages: 15
o Subtopics:
Monitoring / Events and Alarms
Logging
vRealize Log insight integration
vRealize Operations integration
Other Operation Tools Integration
* Chapter 16
o Title: Network Operations
o Chapter Goal: Tools to verify the Routing and Routing performance.
o Number of Pages: 10
o Subtopics:
Network Monitoring
Logging
vRealize Network insight integration
IPFIX
Network Performance Testing using IPERF Tools
* Chapter 17
o Title: Authentication and Authorization
o Chapter Goal: Information on how to integrate NSX-T with an external LDAP server and create user (groups) with different roles and rights (RBAC).
o Number of Pages: 5
o Subtopics:
vIDM Integration & LDAP Integration
LDAP only integration
RBAC
* Chapter 18
o Title: Public Cloud Integration
o Chapter Goal: NSX-T is also used in all major Public Clouds. This chapter gives you an overview on what is deployed there and how NSX-T can be consumed in these Public Clouds.
o Number of Pages: 10
o Subtopics:
Forwarding Policies
VMC on AWS
Azure VMware Solution (AVS)
Google Cloud VMware Engine
* Chapter 19
o Title: Automation
o Chapter Goal: Get familiar on the out-of-the-box automation capabilities and vRO extensibility.
o Number of Pages: 20
o Subtopics:
vCloud Director
* Allowing Tenants to Create / Use NSX-T Related automated network and security Services
vRealize Automation / vRealize Orchestration
* Allowing Tenants to Create / Use NSX-T Related automated network and security Services
NSX-T API Capabilities
Iwan Hoogendoorn started his IT career in 1999 as a help desk agent. He began learning Microsoft products and obtained MCP, MCSA, MCDBA, and MCSE certifications.
While working as a Microsoft Systems Engineer, he developed additional skills and knowledge in computer networking with Cisco products. He dreamed of working for Cisco but first needed to finish his bachelor's degree in ICT, which he completed in 2009.
In 2010, Iwan began working for his dream company, Cisco. After finishing his master's degree in computer science at the University of Amsterdam and becoming a CCIE (#13084) in six different technology areas, he wanted to learn something new and network virtualization was the next logical step.
Iwan decided to learn VMware NSX and got the opportunity to work for VMware in 2016 as a Senior NSX PSO Consultant. In his time at VMware, he gained more knowledge on private and public clouds and the related products that VMware developed to build the Software-Defined Data Center (SDDC).
After working for four years as a Senior NSX PSO Consultant (primarily with VMware NSX-v and NSX-T), Iwan was promoted to Staff SDDC Consultant focusing on the full SDDC stack, including Hyperscaler offerings on public clouds such as AWS (VMC on AWS), Microsoft (Azure VMware Solution), and Google (Google Cloud VMware Engine).
Iwan is certified on multiple VMware products, including NSX, and is actively working with VMware certification to develop network-related exams for VMware. He is also AWS and TOGAF certified.
Caractéristiques techniques
| PAPIER | |
| Éditeur(s) | Apress |
| Auteur(s) | Iwan Hoogendoorn |
| Parution | 08/02/2021 |
| Nb. de pages | 367 |
| EAN13 | 9781484267073 |
Avantages Eyrolles.com
Consultez aussi
- Les meilleures ventes en Graphisme & Photo
- Les meilleures ventes en Informatique
- Les meilleures ventes en Construction
- Les meilleures ventes en Entreprise & Droit
- Les meilleures ventes en Sciences
- Les meilleures ventes en Littérature
- Les meilleures ventes en Arts & Loisirs
- Les meilleures ventes en Vie pratique
- Les meilleures ventes en Voyage et Tourisme
- Les meilleures ventes en BD et Jeunesse
