NSX-T: Moving from a one-site A/A T0 to a multi-site T0 A/S with AS path prepend & Failover Domain

In this post, I will show and explain how to move from a one-site Active/Active T0 to a multi-site T0 in Active/Standby mode. In order to do it I will use the AS path prepend and Failover Domain. The version of NSX-T I used was 3.1.3.5. Official NSX-T Documentation related to this topic: https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.1/administration/GUID-5D7E3D43-6497-4273-99C1-77613C36AD75.html Old … Read more

NSX-T Identity Firewall, how it really works

I found several blogs on Internet about how to setup IDFW on NSX-T, but did not find any (might have missed them) about the full process, from setting the NSX-T part, deploying VMs from Horizon View, having users connecting to desktops and IDFW rules being applied with finally seeing what is written where in terms … Read more

Connecting on-premise NSX-T with VMC on AWS through an IPsec VPN (Route based) – Part 3

In these two parts, I will show and explain to you how to set UP and configure a connection beetwenn you NSX-T Datacenter on-premise and an SDDC on the cloud. Part 1: On-premise Part 2: VMware Cloud on AWS Part 3: Filtering BGP routes Filtering BGP routes (On-Premise side) Note: In these articles, I assumed … Read more

Connecting on-premise NSX-T with VMC on AWS through an IPsec VPN (Route based) – Part 2

In these two parts, I will show and explain to you how to set UP and configure a connection beetwenn you NSX-T Datacenter on-prem and an SDDC on the cloud. Part 1: On-premise Part 2: VMware Cloud on AWS Part 3: Filtering BGP routes VMware Cloud on AWS (Cloud side) Note: In these articles, I … Read more

Connecting on-premise NSX-T with VMC on AWS through an IPsec VPN (Route based) – Part 1

In these two parts, I will show and explain to you how to set UP and configure a connection between you NSX-T Datacenter on-premise and an SDDC on the cloud. Part 1: On-premise Part 2: VMware Cloud on AWS Part 3: Filtering BGP routes NSX-T Datacenter (On-Premise side) Note: In these articles, I assumed people … Read more

VMware Introduces NSX-T 3.0

This release was waited for some time. Some great feature are coming like IDS, NSX federation and much, much more. Can’t wait to implement it in our infrastructure, when the interoperability matrix will be green with every other components we are using. VMware Introduces NSX-T 3.0 We are excited to announce the general availability of … Read more

Load Balancer as a Service – Part 1

From GUI to REST API calls In these following parts, we worked in collaboration with my colleague @ekrejci.We want to automate the creation of NSX Load Balancer using the REST API calls of NSX-T via vRealize Automation and vRealize Orchestrator. Note: We did not choose the native Blueprint from vRA because of is limited possibilities, … Read more

Interfaces/Uplinks for ESXi/Edge – Part 2

In these three parts, I will speak about the configuration of the interfaces and uplinks respectively for physical ESXi and Edge VM. Part 1: ESXi interfaces Part 2: Edge VM for T0 and T1 with one uplink North-South (physical world) Part 3: Edge VM for T0 and T1 with redundant uplinks North-South (physical world) Since … Read more

Interfaces/Uplinks for ESXi/Edge – Part 1

In these three parts, I will speak about the configuration of the interfaces and uplinks respectively for physical ESXi and Edge VM. Part 1: ESXi interfaces Part 2: Edge VM for T0 and T1 with one uplink North-South (physical world) Part 3: Edge VM for T0 and T1 with redundant uplinks North-South (physical world) ESXi … Read more