VMware acquired Avi Networks in the summer of 2019 to add Software-Defined ADC (Application Distribution Controller) capabilities to their Virtual Cloud Network portfolio. That’s a fancy way of saying they bought the most awesome load balancing, WAF and container ingress traffic management solution in the market. VMware rebranded Avi Networks Load Balancer to VMware NSX ...
In my previous video and blogpost, I explained how I set up a fully nested vSphere 7 homelab with NSX-T. In this video tutorial, I’m adding a second VyOS appliance and a second NSX-T Edge Node to my homelab. The video covers setting up the proper Edge Uplink profiles, configuring the Edge Nodes, and finally ...
In my previous video and blogpost, I explained how I set up a fully nested vSphere 7 homelab with NSX-T. Now I want to go back to basics with NSX-T Logical Networking. There is so much exciting content out there on some of the most advanced use cases for NSX-T and last week I realized, ...
In my previous video and blogpost, I explained how I set up a fully nested vSphere 7 homelab in a single box. This new video gives a basic explanation about how I set up NSX-T in a nested homelab: Topics covered in the video Transport Zones Uplink Profiles Transport Node Profiles ESXi Transport Nodes Edge ...
I have been getting quite a few inquiries about my fully nested VMware homelab setup. People seem to be struggling mostly with setting up the networking bits. I describe the overall topology in this blogpost but this blogpost will contain a lot more details on the network configuration. I also made a couple of changes, ...
In my previous blogpost, I explained how to remove a failed PKS cluster by removing the BOSH deployment using the BOSH CLI. Removing the BOSH deployment does not remove the NSX-T objects however. Manually deleting these NSX-T objects using the GUI is prohibited because these objects are supposed to be managed by PKS and are ...
Nested homelab and NSX-T I recently published a blogpost about my fully nested VMware homelab.After completing a beta NSX-T Install, Configure and Manage course, I was keen on adding NSX-T to the mix. The beauty of NSX-T is that it is not hard coupled to vCenter Server. By simply adding another (nested) ESXi host to ...
NSX DFW Enable TCP Strict Today, I finally had some time to dive a bit deeper into the 6.4.0 release of NSX for vSphere. When I was configuring the Distributed Firewall, I noticed a setting called ‘Enable TCP Strict” which I didn’t immediately recognize. After some investigation, it became clear that this setting strengthens the ...
Common load balancing topologies Sometimes you stumble across something so obvious that you cannot believe you missed it. I had such a moment today. I have been discussing load balancing topologies with one of my customers in the last few days and in each discussion we stayed exactly within the predefined color lines: a one-arm ...
Traffic analysis for a NSX micro-segmentation design using Syslog In a recent project I had to setup micro-segmentation using the Distributed Firewall (DFW) of VMware NSX in a greenfield environment. The approach I choose was to design and configure the DFW rule base using the Service Composer and all the information could gathered within the ...
