VMware NSX-T Data Center: Design [4.0] (en)
This five-day course provides comprehensive training in the considerations and practices for designing a VMware NSX-T™ Data Center environment as part of a software-defined data center strategy. This course prepares the student with the skills needed to conduct the NSX-T Data Center design offered in the NSX-T Data Center 3.0 release, including design principles, processes, and frameworks. The student gains a deeper understanding of the NSX-T Data Center architecture and how it can be leveraged to create solutions that meet customers’ business needs.
COD: NSXTD4
Category: VMware
DESCRIPTION
COURSE OBJECTIVES
COURSE CONTENT
ADDITIONAL INFORMATION
DESCRIPTION
Teaching Methodology
The course includes didactic workshops in which each student will be able to work for the purpose of completing formative exercises that will provide hands-on experience in the use of the instrument, for each of the topics covered during the course.
Who should attend:
Network and security architects and consultants who design enterprise and data center networks and NSX environments.
Prerequisites
Before attending this course, you must have completed the following course:
VMware NSX-T Data Center: Install, Configure, Manage [V3.0].
You must also have an understanding or knowledge of the following technologies:
Strong understanding of TCP/IP services and protocols.
Knowledge and work experience with computer networks, including:
- Switching and routing technologies (L2-L3)
- Network and application delivery services (L4-L7)
Knowledge and work experience with VMware vSphere environments and KVM-based environments.
The VMware Certified Professional – Network Virtualization (2020) certification is recommended.
COURSE OBJECTIVES
By the end of the course, you should be able to achieve the following objectives:
- Describe and apply a design framework.
- Apply a design process to gather requirements, constraints, assumptions, and risks.
- Design a VMware vSphere® virtual data center to support NSX requirements.
- Create a design for a VMware NSX® Manager™ cluster.
- Create a design for a VMware NSX® Edge™ cluster to support traffic and service requirements in NSX.
- Design logical switching and routing.
- Identify NSX security best practices.
- Design logical network services.
- Design a physical network to support network virtualization in a software-defined data center.
- Create a design to support NSX infrastructure across multiple sites.
- Describe the factors that impact NSX performance.
COURSE CONTENT
NSX Design Concepts
- Identify design terminology.
- Describe the design framework and methodology.
- Explain the role of VMware Cloud Foundation™ in NSX design.
- Identify customer requirements, assumptions, constraints, and risks.
- Explain conceptual design.
- Explain logical design.
- Explain physical design.
NSX Architecture and Components
- Recognize the key elements of NSX architecture.
- Describe the NSX management cluster and management plane.
- Identify the functions and components of the management, control, and data planes.
- Describe NSX Manager sizing options.
- Recognize the justification and implications of NSX Manager cluster design decisions.
- Identify design options for the NSX management cluster.
NSX Edge Design
- Explain best practices for edge design.
- Describe reference designs for NSX Edge VMs.
- Describe reference designs for NSX Edge bare-metal deployments.
- Explain best practices for edge cluster design.
- Explain the effect of stateful service placement.
- Explain scaling models for edge clusters.
- Identify design considerations for L2 bridging services.
NSX Logical Switching Design
- Describe concepts and terminology for logical switching.
- Identify design considerations for segments and transport zones.
- Identify design considerations for virtual switches.
- Identify design considerations for uplink profiles and transport node profiles.
- Identify design considerations for Geneve tunneling.
- Identify design considerations for BUM (Broadcast, Unknown Unicast, Multicast) replication modes.
NSX Logical Routing Design
- Explain the function and features of logical routing.
- Describe single-tier and multitier NSX routing architectures.
- Identify guidelines for selecting a routing topology.
- Describe configuration options for BGP and OSPF routing protocols.
- Explain gateway high availability modes and failure detection mechanisms.
- Identify how multitier architectures offer control over stateful service placement.
- Identify design requirements and considerations for EVPN.
- Identify requirements and considerations for VRF Lite.
- Identify common scalable NSX architectures.
NSX Security Design
- Identify the various security features available in NSX.
- Describe the benefits of the NSX Distributed Firewall.
- Describe the use of the NSX Gateway Firewall as a perimeter and inter-tenant firewall.
- Determine a security policy methodology.
- Recognize NSX security best practices.
NSX Network Services
- Identify stateful services available in different high-availability modes for edge clusters.
- Describe failover detection mechanisms.
- Compare NSX NAT solutions.
- Explain how to select DHCP and DNS services.
- Compare policy-based and route-based IPSec VPNs.
- Describe an L2 VPN topology for interconnecting data centers.
- Explain design considerations for integrating VMware NSX® Advanced Load Balancer™ with NSX.
Physical Infrastructure Design
- Identify the components of a switch fabric design.
- Evaluate design implications for Layer 2 and Layer 3 switch fabrics.
- Review design guidelines for top-of-rack switches.
- Examine options for connecting transport hosts to the switch fabric.
- Describe typical designs for VMware ESXi™ compute hypervisors with two pNICs.
- Describe typical designs for ESXi compute hypervisors with four or more pNICs.
- Differentiate between dedicated and combined cluster approaches for SDDC design.
NSX Multilocation Design
- Explain scaling considerations for multisite NSX designs.
- Describe the core components of the NSX Federation architecture.
- Describe extended networking capabilities in Federation.
- Describe use cases for extended security in Federation.
- Compare disaster recovery designs in Federation.
NSX Optimization and DPU-Based Acceleration
- Describe Geneve Offload.
- Explain the benefits of Receive Side Scaling and Geneve Rx Filters.
- Describe the advantages of SSL Offload.
- Explain the effect of Multi-TEP, MTU size, and NIC speed on throughput.
- Explain enhanced datapath modes and their use cases.
- List key performance factors for compute nodes and NSX Edge nodes.
- Describe DPU-based acceleration.
- Define NSX features supported by DPUs.
- Describe supported hardware and network configurations with DPUs.
ADDITIONAL INFORMATION
Duration: 5 days
Delivery: Classroom, On Site, Remote
PC and SW requirements:
- Internet Connection
- Browser web – Google Chrome
- Zoom
Language
Instructor: English
Workshops: English
Slides: English
