VMware
NSX-T Data Center: Install, Configure, Manage
Course Modules
1 Course Introduction
2 VMware Virtual Cloud Network and NSX-T Data Center
• Introduce the VMware Virtual
Cloud Network vision
• Discuss NSX-T Data Center
solutions, use cases,and benefits
• Explain NSX-T Data Center
architecture and
components
• Describe the VMware NSXTM
product portfolio and
features
• Explain the management,
control, data, and
consumption planes and
function
3 Preparing the NSX-T Data Center Infrastructure
• Describe NSX Management Cluster
• Deploy VMware NSXTM ManagerTM nodes on
VMware ESXi and KVM hypervisors
• Navigate through the NSX Manager UI
• Explain data-plane components such as
N-VDS/VDS, transport nodes, transport zones,
profiles, and more
• Perform transport node preparation and establish
the data center infrastructure
• Verify transport node status and connectivity
4 NSX-T Data Center Logical Switching
• Introduce key components and terminology in
logical switching
• Describe the function and types of L2 segments
• Explain tunneling and the GENEVE encapsulation
• Configure logical segments and attach hosts using
NSX Manager UI
• Describe the function and types of segment profiles
• Create segment profiles and apply them to
segments and ports
• Explain the function of MAC, ARP, and TEP tables
used in packet forwarding
• Demonstrate L2 unicast packet flow
• Explain ARP suppression and BUM traffic handling
5 NSX-T Data Center Logical Routing
• Describe the logical routing function and use cases
• Introduce the two-tier routing architecture,
topologies, and components
• Explain the Tier-0 and Tier-1 Gateway functions
• Describe the logical router components: Service
Router and Distributed Router
• Discuss the architecture and function of NSX Edge
nodes
• Discuss deployment options of NSX Edge nodes
• Configure NSX Edge nodes and create NSX Edge
clusters
• Configure Tier-0 and Tier-1 Gateways
• Examine the single-tier and multitier packet flow
• Configure static routing and dynamic routing,
including BGP and OSPF
• Enable ECMP on Tier-0 Gateway
• Describe NSX Edge HA, failure detection, and
failback modes
• Configure VRF Lite
6 NSX-T Data Center Bridging
• Describe the function of logical bridging
• Discuss the logical bridging use cases
• Compare routing and bridging solutions
• Explain the components of logical bridging
• Create bridge clusters and bridge profiles
7 NSX-T Data Center Firewalls
• Describe NSX segmentation
• Identify the steps to enforce Zero-Trust with NSX
segmentation
• Describe the Distributed Firewall architecture,
components, and function
• Configure Distributed Firewall sections and rules
• Configure the Distributed Firewall on VDS
• Describe the Gateway Firewall architecture,
components, and function
• Configure Gateway Firewall sections and rules
8 NSX-T Data Center Advanced Threat Prevention
• Explain NSX IDS/IPS and its use cases
• Configure NSX IDS/IPS
• Deploy the NSX Application Platform
• Identify the components and architecture of NSX
Malware Prevention
• Configure NSX Malware Prevention for east-west
and north-south traffic
• Describe the use cases and architecture of NSX
Intelligence
• Identify the components and architecture of
VMware NSX® Network Detection and Response™
• Use NSX Network Detection and Response to
analyze network traffic events.
9 NSX-T Data Center Services
• Describe NSX-T Data Center services
• Explain and configure Network Address Translation
(NAT)
• Explain and configure DNS and DHCP services
• Describe VMware NSX® Advanced Load Balancer™
architecture, components, topologies, and use
cases.
• Configure NSX Advanced Load Balancer
• Discuss the IPSec VPN and L2 VPN function and
use cases
• Configure IPSec VPN and L2 VPN using the NSX
Manager UI
10 NSX-T Data Center User and Role Management
• Describe the function and benefits of VMware
Identity Manager™ in NSX-T Data Center
• Integrate VMware Identity Manager with NSX-T
Data Center
• Integrate LDAP with NSX-T Data Center
• Identify the various types of users, authentication
policies, and permissions
• Use role-based access control to restrict user
access
11 NSX-T Data Center Federation
• Introduce the NSX-T Data Center Federation key
concepts, terminology, and use-cases.
• Explain the onboarding process of NSX-T Data
Center Federation
• Describe the NSX-T Data Center Federation
switching and routing functions.
• Describe the NSX-T Data Center Federation security
concepts.
VMware
NSX-T Data Center: Troubleshooting and Operations
Course Modules
1 Course Introduction
• Introduction and course logistics
2 NSX-T Data Center Operations and Tools
• Explain and validate the native troubleshooting
tools (dashboards, Traceflow, live traffic analysis,
port mirroring) for the NSX-T Data Center
environment
• Configure syslog, IPFIX, and log collections for the
NSX-T Data Center environment
• Integrate NSX-T Data Center with vRealize Log
Insight and vRealize Network Insight
• Validate and review the API methods available to
configure the NSX-T Data Center environment
3 Troubleshooting the NSX Management Cluster
• Describe the NSX Management cluster architecture,
components, and communication channels
• Identify the workflows involved in configuring the
NSX Management cluster
• Validate and troubleshoot the NSX Management
cluster formation
4 Troubleshooting Infrastructure Preparation
• Describe the data plane architecture, components,
and communication channels
• Explain and troubleshoot VMware ESXi™ transport
node preparation issues
• Explain and troubleshoot KVM transport node
preparation issues
• Explain and troubleshoot VMware NSX® Edge™
transport node preparation issue
5 Troubleshooting Logical Switching
• Describe the architecture of logical switching
• List the modules and processes involved in
configuring logical switching
• Explain the importance of N-VDS and VDS in
transport nodes
• Describe the procedure to migrate from N-VDS to
VDS
• Review the architecture and workflows involved in
attaching workloads to segments
• Identify and troubleshoot common logical switching
issues
6 Troubleshooting Logical Routing
• Review the architecture of logical routing and NSX
Edge nodes
• Explain the workflows involved in the configuration
of Tier-0 and Tier-1 gateways
• Explain the high availability modes and validate
logical router placements
• Identify and troubleshoot common logical routing
issues using both BGP and OSPF
7 Troubleshooting Security
• Review the architecture of the Distributed Firewall
• Explain the workflows involved in configuring the
Distributed Firewall
• Review the architecture of the Gateway Firewall
• Explain the workflows involved in configuring the
Gateway Firewall
• Identify and troubleshoot common distributed
firewall and Gateway Firewall issues
8 Troubleshooting Services
• Review the NSX Advanced Load Balancer
architecture and components
• Identify and troubleshoot common NSX Advanced
Load Balancer issues
• Review of IPsec and L2 VPN architecture and
components
• Identify and troubleshoot common IPsec and L2
VPN issues
9 Datapath Walkthrough
• Verify and validate the path of the packet on the
NSX datapath (East-West and South-North)
• Identify and perform packet captures at various
points in the datapath
• Use NSX CLI and native hypervisor commands to
retrieve configurations involved in the NSX datapath