VMware NSX

 View Only
  • 1.  Multiple edge clusters in a Workload Domain

    Posted Jan 09, 2023 11:34 AM

    Hi,

    defined through Cloud Foundation (VCF) two running Workload Domains (WLD), addressed to different environments each.

    In one WLD, in which there is already a running Edge VM cluster for nort-south communications, we would like to have a second Edge VM cluster to communicate to another external network. So we deployed it through VCF, with the following outcome:

    VCF effectively created an additional 2xVM Edge cluster which allows defining T0, T1s, segments etc. like the first Edge Cluster. But VCF didn't create new vmkernel ports to get thereby a fully segregated fabric as we expected, since the existing vmkernel ports keep being vmk10 & 11. So this new Edge cluster keeps using the existing TEP host subnet, but with a new transport zone for itself.

    I would like to know if sharing the same existing fabric and TEP subnet is the expected behaviour when defining this second Edge Cluster through Cloud Foundation.

    Or maybe the best approach woud be not to deploy this second Edge Cluster but keep using a single Edge Cluster in the WCF and reconsidering its design by setting proper isolations to integrate this new external network (filters, vrfs, etc)? I don't discard this option since, even the possibility of defining multiple Edge per WLD exists in VCF, I haven't seen much reported on that.

    Best regards.

    Albert.

     

     



  • 2.  RE: Multiple edge clusters in a Workload Domain
    Best Answer

    Posted Jan 10, 2023 09:01 AM

    Hello Albert,

    First point to understand is that the ESXi host hosting your EDGE VMs is part of a overlay network and that is why it has a TEP created. This tep is only used when overlay traffic is to be sent or received on this host.

    Now you EDGE VMs are also transport nodes and they are also added to a overlay network. When you do this, TEPs are created on the EDGE VMs as well. This TEP on the VM and the TEP on your ESXi host are two separate things. VCF didnt create new TEPs (VMkernel ports) because the teps were added to the EDGE VMs.

    As far as your question about whether you should go with 2 EDGE cluster or with 1 EDGE cluster (with VRFs), it really depends on a lot of factors. Such as the level of control you want to have. VRFs provide you isolation but with less controls. You also need to analyze the load and whether one EDGE cluster with VRF would be enough or you need additional nodes/cluster.