$ cat ~/blog/blog-nsx-getting-started.md
vmware nsx networking virtualization sdn

Getting Started with VMware NSX Data Center

2020-04-28 4 min

Quick start guide ukazuje ako rýchlo nastaviť network virtualization pomocou VMware NSX Data Center.

Úvod do NSX

VMware NSX Data Center je platforma pre Software-Defined Networking (SDN), ktorá umožňuje virtualizáciu sieťových služieb podobne ako vSphere virtualizuje compute resources.

Oficiálna Dokumentácia

VMware VMTN Guide

Hlavný quick start guide od VMware:

Getting Started with NSX Data Center - VMTN

Tento guide ukazuje ako rýchlo nastaviť network virtualization vo vašom prostredí.

PDF Verzia

Pre offline použitie:

VMware NSX Quick Start Guide (PDF)

Hlavné Komponenty NSX

NSX Manager

Centralizovaný management interface pre NSX platform:

  • Web UI pre konfiguráciu
  • API pre automatizáciu
  • Inventory management

NSX Controllers

Clustered control plane pre distributed logical network:

  • MAC/ARP/VTEP tables
  • Distributed logical routing
  • Load balancing

NSX Edge

Virtual appliance poskytujúci perimeter services:

  • Firewall (stateful)
  • NAT
  • VPN
  • Load Balancing
  • Routing (dynamic protocols)

Quick Start Kroky

1. Prerequisites

Požiadavky pred inštaláciou:

  • vSphere 6.0+ environment
  • vCenter Server
  • Dedicated network segment pre NSX
  • Sufficient compute resources

2. Deploy NSX Manager

  1. Download NSX Manager OVA
  2. Deploy cez vSphere Client
  3. Power on a initial configuration
  4. Register with vCenter

3. Prepare Infrastructure

NSX Manager UI:
→ Fabric
→ Prepare
→ Select Cluster
→ Install NSX Components

4. Configure Transport Zone

Vytvor logical network scope:

  • VXLAN transport zone
  • VLAN transport zone (optional)

5. Create Logical Switches

Virtuálne L2 segmenty:

Networking & Security
→ Logical Switches
→ Add New

6. Deploy NSX Edge

Edge Services Gateway pre perimeter:

  • Size (compact/large/quad-large)
  • Interfaces configuration
  • HA pairs (recommended)

Základné Use Cases

Micro-Segmentation

Jemná security segmentácia na VM level:

  • Distributed firewall rules
  • Application-based policies
  • Zero-trust architecture

Logical Routing

L2/L3 routing bez fyzického HW:

  • East-West traffic optimization
  • Dynamic routing protocols
  • Multi-tier application topology

Load Balancing

Application load balancing:

  • L4/L7 load balancing
  • SSL offloading
  • Health monitoring

Best Practices

Design

✅ Plánuj IP addressing scheme vopred
✅ Use HA pre kritické komponenty
✅ Separate management a data traffic
✅ Design for scalability

Security

✅ Enable distributed firewall
✅ Micro-segment workloads
✅ Use security groups
✅ Regular security audits

Operations

✅ Monitor NSX health
✅ Automate deployments
✅ Document configurations
✅ Plan upgrade strategy

Zdroje

Oficiálna Dokumentácia

Learning

Community

Poznámky

⚠️ Lab Environment: Test v lab prvé
⚠️ Resource Requirements: NSX vyžaduje dostatočné resources
⚠️ Training: Odporúčam VMware NSX training pred produkciou

späť na články