VMware NSX-T Data Center: Install, Configure, Manage [v3.2]
This five-day course provides comprehensive training on how to install, configure, and manage a VMware NSX-T™ Data Center environment. This course covers the major NSX-T Data Center features and functionality offered in the NSX-T Data Center 3.2 release, including overall infrastructure, logical switching, logical routing, network and security services, firewalls, and advanced threat prevention and more.
COD: NSXTICM32
CATEGORY: VMware
Teaching methodology
The course includes educational laboratories in which each student will be able to work in order to complete training exercises that will provide practical experience in using the instrument, for each of the topics covered during the course.
Who should participate
Experienced security administrators or network administrators
Prerequisites
- Good knowledge of TCP/IP services and protocols
- Knowledge and work experience of computer networks, including switching and routing technologies (L2-L3) and firewalls L2-L7.
- Knowledge and experience working with VMware vSphere® environments.
- Knowledge and experience working with Kubernetes or vSphere with VMware Tanzu environments
VMware vSphere: Install, Configure, Manag
Outgoing knowledge/skills
By the end of the course, you should be able to achieve the following objectives:
- Describe the architecture and major components of the NSX-T Data Center
- Explain the features and benefits of the NSX-T Data Center
- Deploy the NSX management cluster and VMware NSX® Edge™ nodes.
- Prepare VMware ESXi™ and KVM hosts to participate in NSX-T Data Center networking.
- Create and configure segments for layer 2 forwarding.
- Create and configure Tier-0 and Tier-1 gateways for logical routing.
- Use distributed firewall policies and gateways to filter east-west and north-south traffic in the NSX-T Data Center.
- Configure Advanced Threat Prevention features
- Configuring Network Services on NSX Edge Nodes
- Use VMware Identity Manager and LDAP to manage users and logins.
- Explain the use cases, importance, and architecture of federation.
Educational program
1 Introduction to the course
- Introduction and logistics of the course
- Objectives of the course
2 Rete cloud virtuale VMware e Data Center NSX-T
- Introducing the vision of VMware Virtual Cloud Network
- Discuss NSX-T Data Center solutions, use cases, and benefits.
- Explain the NSX-T Data Center architecture and components
- Describe the VMware NSXTM product portfolio and its features
- Explain how management, control, data and consumption plans work.
3 Prepare the NSX-T Data Center Infrastructure
- Describe the NSX Management Cluster
- Deploy VMware NSXTM ManagerTM nodes on VMware ESXi and KVM hypervisors.
- Navigate the NSX Manager user interface
- Explain data-plane components such as N-VDS/VDS, transport nodes, transport zones, profiles, and more.
- Perform transport node preparation and build data center infrastructure.
- Check the status and connectivity of the transport node
4 NSX-T Data Center Logic Switching
- Introduce the key components and terminology of logic switching.
- Describe the function and types of L2 segments
- Explain GENEVE tunneling and encapsulation
- Configure logical segments and connect hosts using the NSX Manager user interface.
- Describe the function and types of segment profiles
- Create segment profiles and apply them to segments and doors
- Explain the function of the MAC, ARP and TEP tables used in packet forwarding.
- Demonstrate L2 unicast packet flow
- Explain ARP suppression and BUM traffic handling
5 NSX-T data center logical routing
- Describe the logical routing function and use cases
- Introduce the two-level routing architecture, topologies and components.
- Explain the functions of Tier-0 and Tier-1 gateways.
- Describe the logical router components: Service Router and Distributed Router
- Discuss the architecture and function of NSX Edge nodes
- Discuss NSX Edge node deployment options
- Configurare i nodi NSX Edge e creare cluster NSX Edge
- Configuring Tier-0 and Tier-1 gateways
- Examine the flow of single-tier and multi-tier packages
- Configure static and dynamic routing, including BGP and OSPF.
- Enable ECMP on the Tier-0 gateway
- Describe NSX Edge HA, fault detection, and failback modes.
- VRF Lite configuration
6 Bridging del centro dati NSX-T
- Describe the function of logical bridging
- Discuss use cases for logical bridging
- Compare routing and bridging solutions
- Explain the components of logical bridging
- Create bridge clusters and bridge profiles
7 Firewall per data center NSX-T
- Describe NSX segmentation
- Identify the steps to apply Zero-Trust with NSX Segmentation
- Describe the distributed firewall architecture, components, and operation.
- Configure distributed firewall sections and rules
- Configure distributed firewall on VDS
- Describe the gateway firewall architecture, components, and function
- Configure gateway firewall sections and rules
8 NSX-T Data Center Advanced Threat Prevention
- Explain NSX IDS/IPS and its use cases
- Configurare NSX IDS/IPS
- Implementation of the NSX application platform
- Identify the components and architecture of NSX Malware Prevention
- Configure NSX Malware Prevention for east-west and north-south traffic
- Describe the use cases and architecture of NSX Intelligence
- Identify the components and architecture of VMware NSX® Network Detection and Response™.
- Use NSX Network Detection and Response to analyze network traffic events.
9 Servizi NSX-T Data Center
- Describe NSX-T Data Center Services
- Explain and configure network address translation (NAT).
- Explain and configure DNS and DHCP services.
- Describe the VMware NSX® Advanced Load Balancer™ architecture, components, topologies, and use cases.
- Configurare NSX Advanced Load Balancer
- Discuss the function and use cases of IPSec VPN and L2 VPN.
- Configure IPSec VPN and L2 VPN using the NSX Manager user interface.
10 Managing NSX-T Data Center Users and Roles
- Describe the function and benefits of VMware Identity Manager™ in the NSX-T Data Center.
- Integrare VMware Identity Manager con NSX-T Data Center
- Integrare LDAP con NSX-T Data Center
- Identify the various types of users, authentication policies and permissions.
- Use role-based access control to restrict user access
11 NSX-T Data Center Federation
- Introduce the key concepts, terminology, and use cases of NSX-T Data Center Federation.
- Explain the NSX-T Data Center Federation onboarding process.
- Describe the switching and routing functions of NSX-T Data Center Federation.
- Describe the security concepts of NSX-T Data Center Federation.
Duration – 5 days
Delivery – in Classroom, On Site, Remote
PC and SW requirements:
- Internet connection
- Web browser, Google Chrome
- Zoom
Language
Instructor: English
Labs: English
Slides: English
