VMware NSX Community Blog

 View Only
This document supersedes the NSX Design Guide starting with VCF version 9.0. For VCF 5.2 or standalone NSX 4.2 deployments, the content of the NSX Design guide is still relevant. Download Here VCF Virtual Networking VMware NSX is the software component that powers VMware Cloud Foundation's virtual networking capabilities, including Virtual Private Clouds (VPCs) and advanced network services. NSX serves as a foundational component for any private cloud deployment where the goal is to achieve a cloud operational model and provide a true cloud experience for users. By abstracting network services from underlying hardware and delivering them ...
0 comments
MTUs in NSX The Maximum Transmission Unit (MTU) is the size of the largest frame/packet an interface can receive or send. Because traffic from one endpoint to another goes through several devices in a data center, there are also several interdependent MTU configurations that need to be managed. NSX overlay model introduces an almost requirement for changing the MTU of the physical networking infrastructure. The goal for this document is to clarify the relation between the different MTUs at stake and to give some simple recommendation for their respective values in the context of NSX.
0 comments
Moving from NVDS to VDS NSX can be deployed on an ESXi host using two different kinds of virtual switches: the NSX Virtual Switch (NVDS) or the vSphere Distributed Switch (VDS). The VDS-based model supersedes the other, and the NVDS is being deprecated as of NSX 4.0. This document focuses on the transition NVDS to VDS. Actions Actions
0 comments
NSX Edge Bridge White Paper NSX leverages the overlay model, where layer 2 connectivity between virtual machines (VMs) is achieved using point-to-point tunnels over a traditional routed IP network. This provides the last building block for a complete virtualization of the datacenter, where a solution can be deployed programmatically with no dependency on the physical infrastructure. Even in highly virtualized environments, customers often have some few workloads that cannot be virtualized, because of licensing or application-specific reasons. Those VLAN backed workloads typically communicate with overlay backed VMs at layer 3, through Tier0 gateways instantiated ...
0 comments
Here is a demo showing the NSX 4.2 new VLAN to NSX Migration capabilities. . The first part of the demo (from the start to 5'58") shows the migration workflow. . The second part of the demo (from 5'58" to the end) shows a few benefits of moving an existing application on VLANs to NSX Logical Networks Enjoy, Dimitri
0 comments
Here is one NSX Multisite demo focused on Disaster Recovery . Enjoy. Dimitri Note: There are also multiple demos embedded in the NSX Multisite 101 ToI (at the end after the "Key Takeaways" section).
0 comments
This NSX-T LB Encyclopedia document goes over all the Configuration and Management questions you may have on NSX-T LB and much more! It lists all NSX-T LB capabilities (LB Deployment, Monitor, Server Pool, L4 VIP, L7-HTTP VIP, L7-HTTPS VIP, LB Rules, and Troubleshooting) with detailed examples for each. You can find another great document to learn the basics about NSX-T native LB capabilities: NSX-T LB ToI This ToI highlights NSX-T native LB capabilities and its latest NSX-T 3.1 enhancements.
0 comments
This NSX-T LB ToI document highlights NSX-T LB capabilities and its latest NSX-T 3.1 enhancements. You can find another great document to learn everything about NSX-T LB Configuration and Management: NSX-T LB Encyclopedia The encycloepdia goes over all the Configuration and Management questions you may have on NSX-T LB and much more! It lists all NSX-T LB capabilities (LB Deployment, Monitor, Server Pool, L4 VIP, L7-HTTP VIP, L7-HTTPS VIP, LB Rules, and Troubleshooting) with detailed examples for each.
0 comments
NSX Multisite solution is perfect for customers who want a "Smaller NSX Management Footprint" (with only 3x NSX Mgr VMs for all their locations), and accept a "DR Recovery Procedure with few more requirements or steps". Note: For other use cases: NSX Federation. This NSX Multisite 101 ToI highlights NSX MultiSite capabilities including the l atest enhancements, w hat is NSX Multisite, NSX Multisite Capabilities, and r ecorded demos. NSX 4.0-4.1-4.2 Multisite 101 ToI version is 1.0 done on 03/02/2023 NSX-T 3.2 Multisite 101 ToI version is 1.1 done on 01/10/2023 For deeper information, we also ...
0 comments
NSX-T offers two technical solutions for multi-location on-prem Data Centers: NSX-T Federation NSX-T Multisite Those NSX-T Multi-Location Design Guides offer guidance and best practices for Network & Security services in your On-Prem locations. Design Guide version for NSX-T 4.2 release is 1.3 done on 03/24/2025 Design Guide version for NSX-T 4.1 release is 1.11 done on 03/24/2025 Design Guide version for NSX-T 4.0 release is 1.11 done on 03/24/2025 Design Guide version for NSX-T 3.2 release is 1.21 done on 03/24/2025 FYI there is also some other nice documents on this use case: ...
0 comments
Three Federation demos are proposed here: Federation Network & Security Services demo Federation Disaster Recovery(Network/Security & Compute) with Stretched Networks + SRM Federation Disaster Recovery(Network/Security & Compute) with GSLB Enjoy the demos. Dimitri Note1: For information on NSX-T Federation we offer the "NSX-T Federation Presentation" . Note2: For deeper information, we also offer the "NSX-T Federation Multi-Location Design Guide (Federation + Multisite)" .
0 comments
This NSX Federation 101 ToI deck offers a nice presentation of what is NSX Federation and how it works. NSX 4.0-4.1-4.2 Federation 101 ToI version is 1.0 done on 10/30/2023 NSX-T 3.2 Federation 101 ToI version is 1.1 done on 08/26/2022 Federation demos are also available here . For deeper information, we also offer the "NSX Federation Multi-Location Design Guide (Federation + Multisite)" here.
0 comments
The NSX NAT 301 ToI document goes over all the Configuration and Management questions you may have on NSX NAT and much more! Its table of contents is: Presentation Requirements / Limitation Scale Configuration (UI/API) High-Availability Status Statistics Troubleshooting Note: Version 1.5 - updated on 05/21/2025.
0 comments
The NSX DHCP 301 ToI document goes over all the Configuration and Management questions you may have on NSX DHCP and much more! Its table of content is: Presentation Requirements / Limitation Scale Configuration (UI/API) High-Availability Status Statistics DHCP Leases
0 comments
Highlights: This updated version of the document aligns with NSX version 3.2 (Guidelines are still valid and 100% applicable to the NSX 4.1 version). It includes the following updates: NSX vCenter server plug-in for the **** security for applications use case Distributed Firewall on vCenter distributed virtual port-groups for VLAN-only micro-segmentation NSX Application platform as an optional component to support NSX intelligence and Advanced Threat Prevention features for both the **** security for applications and the data center in a box use cases NSX Next-Generation gateway firewall as an optional component for the data center in a ...
0 comments
This is the NSX Design Guide Page blog. The latest doc updates are aligned to NSX version 4.2.1 This release includes many updates, but the most notable are: We dedicated a new chapter (Chapter 10) to the design of NSX in the context of VMware Cloud Foundation. We have a new section in the performance chapter (Chapter 8) that covers Enhanced Data Path. We discuss the TEP groups feature and its benefits in terms of performance and high availability in the Logical Switching chapter (Chapter 3) Then, many other updates, such as the support for inter-SR routing for VRFs and its design implications (Ch4), the possibility to apply ...
0 comments
Starting with NSX version 4.1, many more certificates are visible in NSX. Those certificates have always been present on the platform, even in previous versions, but it was impossible to lifecycle them. This document will help the reader understand the purpose of all the certificates part of the NSX platform. It will provide examples covering common certificate-related tasks an NSX administrator may tackle while administering NSX. To make these examples reproducible, they are presented in the form of bash scripts. We opted to use bash for maximum portability. The scripts mainly use curl to perform API calls to the NSX API and use the jq to process the returned ...
0 comments