VMware NSX-T Data Center: Install, Configure, Manage & Troubleshooting

 

VMware NSX-T Data Center: Install, Configure, Manage

 

Course Modules

1 Course Introduction

2 VMware Virtual Cloud Network and NSX-T Data Center

• Introduce the VMware Virtual Cloud Network vision

• Discuss NSX-T Data Center solutions, use cases,and benefits

• Explain NSX-T Data Center architecture and

components

• Describe the VMware NSXTM product portfolio and

features

• Explain the management, control, data, and

consumption planes and function

3 Preparing the NSX-T Data Center Infrastructure

• Describe NSX Management Cluster

• Deploy VMware NSXTM ManagerTM nodes on

VMware ESXi and KVM hypervisors

• Navigate through the NSX Manager UI

• Explain data-plane components such as

N-VDS/VDS, transport nodes, transport zones,

profiles, and more

• Perform transport node preparation and establish

the data center infrastructure

• Verify transport node status and connectivity

4 NSX-T Data Center Logical Switching

• Introduce key components and terminology in

logical switching

• Describe the function and types of L2 segments

• Explain tunneling and the GENEVE encapsulation

• Configure logical segments and attach hosts using

NSX Manager UI

• Describe the function and types of segment profiles

• Create segment profiles and apply them to

segments and ports

• Explain the function of MAC, ARP, and TEP tables

used in packet forwarding

• Demonstrate L2 unicast packet flow

• Explain ARP suppression and BUM traffic handling

5 NSX-T Data Center Logical Routing

• Describe the logical routing function and use cases

• Introduce the two-tier routing architecture,

topologies, and components

• Explain the Tier-0 and Tier-1 Gateway functions

• Describe the logical router components: Service

Router and Distributed Router

• Discuss the architecture and function of NSX Edge

nodes

• Discuss deployment options of NSX Edge nodes

• Configure NSX Edge nodes and create NSX Edge

clusters

• Configure Tier-0 and Tier-1 Gateways

• Examine the single-tier and multitier packet flow

• Configure static routing and dynamic routing,

including BGP and OSPF

• Enable ECMP on Tier-0 Gateway

• Describe NSX Edge HA, failure detection, and

failback modes

• Configure VRF Lite

6 NSX-T Data Center Bridging

• Describe the function of logical bridging

• Discuss the logical bridging use cases

• Compare routing and bridging solutions

• Explain the components of logical bridging

• Create bridge clusters and bridge profiles

7 NSX-T Data Center Firewalls

• Describe NSX segmentation

• Identify the steps to enforce Zero-Trust with NSX

segmentation

• Describe the Distributed Firewall architecture,

components, and function

• Configure Distributed Firewall sections and rules

• Configure the Distributed Firewall on VDS

• Describe the Gateway Firewall architecture,

components, and function

• Configure Gateway Firewall sections and rules

8 NSX-T Data Center Advanced Threat Prevention

• Explain NSX IDS/IPS and its use cases

• Configure NSX IDS/IPS

• Deploy the NSX Application Platform

• Identify the components and architecture of NSX

Malware Prevention

• Configure NSX Malware Prevention for east-west

and north-south traffic

• Describe the use cases and architecture of NSX

Intelligence

• Identify the components and architecture of

VMware NSX® Network Detection and Response™

• Use NSX Network Detection and Response to

analyze network traffic events.

9 NSX-T Data Center Services

• Describe NSX-T Data Center services

• Explain and configure Network Address Translation

(NAT)

• Explain and configure DNS and DHCP services

• Describe VMware NSX® Advanced Load Balancer™

architecture, components, topologies, and use

cases.

• Configure NSX Advanced Load Balancer

• Discuss the IPSec VPN and L2 VPN function and

use cases

• Configure IPSec VPN and L2 VPN using the NSX

Manager UI

10 NSX-T Data Center User and Role Management

• Describe the function and benefits of VMware

Identity Manager™ in NSX-T Data Center

• Integrate VMware Identity Manager with NSX-T

Data Center

• Integrate LDAP with NSX-T Data Center

• Identify the various types of users, authentication

policies, and permissions

• Use role-based access control to restrict user

access

11 NSX-T Data Center Federation

• Introduce the NSX-T Data Center Federation key

concepts, terminology, and use-cases.

• Explain the onboarding process of NSX-T Data

Center Federation

• Describe the NSX-T Data Center Federation

switching and routing functions.

• Describe the NSX-T Data Center Federation security concepts.

 

 

VMware NSX-T Data Center: Troubleshooting and Operations

 

 

Course Modules

1 Course Introduction

• Introduction and course logistics

 

2 NSX-T Data Center Operations and Tools

• Explain and validate the native troubleshooting

tools (dashboards, Traceflow, live traffic analysis,

port mirroring) for the NSX-T Data Center

environment

• Configure syslog, IPFIX, and log collections for the

NSX-T Data Center environment

• Integrate NSX-T Data Center with vRealize Log

Insight and vRealize Network Insight

• Validate and review the API methods available to

configure the NSX-T Data Center environment

 

3 Troubleshooting the NSX Management Cluster

• Describe the NSX Management cluster architecture,

components, and communication channels

• Identify the workflows involved in configuring the

NSX Management cluster

• Validate and troubleshoot the NSX Management

cluster formation

4 Troubleshooting Infrastructure Preparation

• Describe the data plane architecture, components,

and communication channels

• Explain and troubleshoot VMware ESXi™ transport

node preparation issues

• Explain and troubleshoot KVM transport node

preparation issues

• Explain and troubleshoot VMware NSX® Edge™

transport node preparation issue

5 Troubleshooting Logical Switching

• Describe the architecture of logical switching

• List the modules and processes involved in

configuring logical switching

• Explain the importance of N-VDS and VDS in

transport nodes

• Describe the procedure to migrate from N-VDS to

VDS

• Review the architecture and workflows involved in

attaching workloads to segments

• Identify and troubleshoot common logical switching

issues

6 Troubleshooting Logical Routing

• Review the architecture of logical routing and NSX

Edge nodes

• Explain the workflows involved in the configuration

of Tier-0 and Tier-1 gateways

• Explain the high availability modes and validate

logical router placements

• Identify and troubleshoot common logical routing

issues using both BGP and OSPF

7 Troubleshooting Security

• Review the architecture of the Distributed Firewall

• Explain the workflows involved in configuring the

Distributed Firewall

• Review the architecture of the Gateway Firewall

• Explain the workflows involved in configuring the

Gateway Firewall

• Identify and troubleshoot common distributed

firewall and Gateway Firewall issues

8 Troubleshooting Services

• Review the NSX Advanced Load Balancer

architecture and components

• Identify and troubleshoot common NSX Advanced

Load Balancer issues

• Review of IPsec and L2 VPN architecture and

components

• Identify and troubleshoot common IPsec and L2

VPN issues

9 Datapath Walkthrough

• Verify and validate the path of the packet on the

NSX datapath (East-West and South-North)

• Identify and perform packet captures at various

points in the datapath

• Use NSX CLI and native hypervisor commands to

retrieve configurations involved in the NSX datapath