Sei sulla pagina 1di 27
First Look Clinic: How to Configure and Deploy VMware NSX Realize the Promise of Technology
First Look Clinic:
How to Configure and Deploy VMware NSX
Realize the Promise of Technology
SURYANTO
Speaker
(RYAN.SURYANTO@INGRAMMICRO.COM)
Date
30 June 2017
© Ingram Micro Inc.
Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.
Proprietary information of Ingram Micro Inc. — Do not distribute or duplicate without Ingram Micro's express written permission.
1

Introduction

Introduction Suryanto (Ryan) [ryan.Suryanto@ingrammicro.com] VMware Certified Instructor VMware Certified Advanced

Suryanto (Ryan)

[ryan.Suryanto@ingrammicro.com]

VMware Certified InstructorIntroduction Suryanto (Ryan) [ryan.Suryanto@ingrammicro.com] VMware Certified Advanced Professional - DCA VMware Certified

VMware Certified Advanced Professional - DCA[ryan.Suryanto@ingrammicro.com] VMware Certified Instructor VMware Certified Professional DCV VMware Certified

VMware Certified Professional DCVInstructor VMware Certified Advanced Professional - DCA VMware Certified Professional Cloud VMware Certified

VMware Certified Professional CloudProfessional - DCA VMware Certified Professional DCV VMware Certified Professional Network Virtualization

VMware Certified Professional Network VirtualizationProfessional DCV VMware Certified Professional Cloud Microsoft Certified Trainer Citrix Certified Instructor Palo

Microsoft Certified TrainerCloud VMware Certified Professional Network Virtualization Citrix Certified Instructor Palo Alto Network Certified

Citrix Certified InstructorNetwork Virtualization Microsoft Certified Trainer Palo Alto Network Certified Network Security Instructor,

Palo Alto Network Certified Network Security Instructor, etc.Virtualization Microsoft Certified Trainer Citrix Certified Instructor [URL : http://www.ryansuryanto.com ] 000000_ 2

[URL : http://www.ryansuryanto.com]

000000_2

AGENDA

1. Introduction

1405002

2. Software Defined Data Center

3. Vmware NSX Component & Services

4. Vmware NSX Configuration & Deployment

5. NSX Course & Certification

6. CITREP Grant

7. Accessing your certificates & Class Evaluation

8. Quiz

Accessing your certificates & Class Evaluation 8. Quiz Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

3

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 3

1405002

About the Software-Defined Data Center

All major services of the data center can be virtualized.

All major services of the data center can be virtualized. Application Consumption Applications Virtual Virtual

Application

Consumption

Applications Virtual Virtual Virtual Machines Networks Storage Compute Network
Applications
Virtual
Virtual
Virtual
Machines
Networks
Storage
Compute
Network
Capacity
Capacity
Capacity
Capacity

Storage

Capacity

Software

Network Capacity Capacity Storage Capacity Software Hardware Location Independence Desktop Internet Virtual

Hardware

Capacity Capacity Storage Capacity Software Hardware Location Independence Desktop Internet Virtual Desktop
Capacity Capacity Storage Capacity Software Hardware Location Independence Desktop Internet Virtual Desktop

Location Independence

Desktop

Internet

Virtual Desktop

Laptop

Tablet

Mobile

Desktop Internet Virtual Desktop Laptop Tablet Mobile Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

4

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 4

1405002

VMware and the Virtual Machine

VMware introduced the virtual machine.

Virtual Machine • VMware introduced the virtual machine. Confidential and proprietary information of Ingram Micro
Virtual Machine • VMware introduced the virtual machine. Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

5

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 5

Software-Defined Storage

Storage Today New Control Plane • Policy-driven automation From hardware-centric to application-centric • Common
Storage Today
New Control Plane
• Policy-driven automation
From hardware-centric to
application-centric
• Common across arrays
• Dynamic control
New Data Plane
• Server SAN
• Flash-accelerated
From specialized to
industry-standard
hardware
• Distributed
specialized to industry-standard hardware • Distributed Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

6

1405002

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 6

1405002

Networking: Barrier to the Software-Defined Data Center

• Slow provisioning • Limited placement • Limited mobility • Hardware-dependent • Operationally intensive
• Slow provisioning
• Limited placement
• Limited mobility
• Hardware-dependent
• Operationally intensive

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

7

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 7
of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 7

1405002

Need for the Correct Abstraction

1405002 Need for the Correct Abstraction • The correct abstraction is the virtual network, which enables

The correct abstraction is the virtual network, which enables you to change the operational model.

Changing the operational model brings benefits:

Greater speed and agility

Lower operational overhead

Decreased capital expenditures

operational overhead − Decreased capital expenditures Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

8

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 8

Correct Abstraction: VMware NSX

VMware NSX is a network virtualization platform that you can use to build a rich set of logical networking and security services in a software-defined data center.

Any Application (without modification) Virtual Networks Any Cloud Management Platform VMware NSX Network
Any Application
(without modification)
Virtual Networks
Any Cloud Management Platform
VMware NSX Network Virtualization Platform
Logical
Logical
Logical
Firewall
Load Balancer
VPN
Logical L2
Logical L3
ESXi
Any Network Hardware
Logical switching: Layer 2 over layer 3, decoupled
from the physical network
Logical routing: Routing between virtual networks
without exiting the software container
Logical firewall: Distributed firewall, kernel
integrated, high performance
Logical load balancer: Application load balancing in
software
Logical VPN: Site-to-site and remote access VPN in
software
NSX API: REST API for integration into any cloud
management platform
Robust partner ecosystem: Additional features and
use cases supported

VMware NSX: Install, Configure, Manage

2-9
2-9
cases supported VMware NSX: Install, Configure, Manage 2-9 © 2 0 1 5 V M w

© 2015 VMware Inc. All rights reserved.

1405002

Components of the Software-Defined Data Center

VMware has many products that integrate with VMware NSX to create the functionality of the software-defined data center.

Management and Automation vRealize Automation vRealize Operations vCenter Server vRealize Business
Management and Automation
vRealize Automation
vRealize Operations
vCenter Server
vRealize Business
Storage/Availability
Compute
Network/Security
Virtual SAN
vSphere Virtual
Volumes
Site Recovery
Manager
vSphere
VMware NSX

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

10

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 10
of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 10

vSphere Virtual Network

1405002

Implemented through virtual switches:

Standard vSwitch

Distributed vSwitch

switches: • Standard vSwitch • Distributed vSwitch Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

11

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 11

1405002

Types of Virtual Switch Connections

A virtual switch has specific connection types:

Virtual machine port groups

VMkernel port:

For IP storage, VMware vSphere® vMotion® migration, VMware vSphere® Fault Tolerance, VMware Virtual SAN™, and VMware vSphere® Replication™

For the ESXi management network Virtual Machine Port Groups

VMkernel Ports

Producti TestDev DMZ vSphere Management on vMotion Virtual Switch
Producti
TestDev
DMZ
vSphere
Management
on
vMotion
Virtual Switch
DMZ vSphere Management on vMotion Virtual Switch Uplink Ports Confidential and proprietary information of

Uplink Ports

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

12

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 12

1405002

Virtual Switch Connection Examples

More than one network can coexist on the same virtual switch. Or networks can exist on separate virtual switches.

Management vSphere vMotion

Production

TestDev

iSCSI

Virtual Switch
Virtual Switch
d u c t i o n T e s t D e v iSCSI Virtual
Management Virtual Switch
Management
Virtual Switch

vSphere

vMotion Virtual Switch
vMotion
Virtual Switch
Production Virtual Switch
Production
Virtual Switch
TestDev Virtual Switch
TestDev
Virtual Switch

iSCSI

Virtual Switch
Virtual Switch

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

13

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 13

Standard Switch Components

1405002

A standard switch provides connections for virtual machines to communicate with one another, whether they are on the same host or on different hosts.

whether they are on the same host or on different hosts. VM1 VM2 VM3 IP Management
VM1 VM2 VM3 IP Management storag Network e VNIC VNIC VNIC VNIC VMkernel
VM1
VM2
VM3
IP
Management
storag
Network
e
VNIC
VNIC
VNIC
VNIC
VMkernel

Test VLAN 101 Production VLAN 102 IP Storage VLAN 103 Management VLAN

104

Production VLAN 102 IP Storage VLAN 103 Management VLAN 104 Confidential and proprietary information of Ingram
Production VLAN 102 IP Storage VLAN 103 Management VLAN 104 Confidential and proprietary information of Ingram
Production VLAN 102 IP Storage VLAN 103 Management VLAN 104 Confidential and proprietary information of Ingram

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

14

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 14

Distributed Switch Architecture

Distributed Switch Architecture Management Management Port Port vSphere vSphere vMotion Port vMotion Port vCenter
Distributed Switch Architecture Management Management Port Port vSphere vSphere vMotion Port vMotion Port vCenter
Distributed Switch Architecture Management Management Port Port vSphere vSphere vMotion Port vMotion Port vCenter
Distributed Switch Architecture Management Management Port Port vSphere vSphere vMotion Port vMotion Port vCenter

Management

Management Port

Port vSphere vSphere vMotion Port vMotion Port vCenter Distributed Switch (Control Plane) Server
Port
vSphere
vSphere
vMotion Port
vMotion Port
vCenter
Distributed Switch
(Control Plane)
Server

Distributed Ports and Port Groups

Uplink

Port Groups

1405002

Hidden Virtual Switches (I/O Plane) Virtual Physical Physical NICs (Uplinks)
Hidden Virtual
Switches
(I/O Plane)
Virtual
Physical
Physical NICs
(Uplinks)
(I/O Plane) Virtual Physical Physical NICs (Uplinks) Host 1 Host 2 Confidential and proprietary information of

Host 1

Host 2

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

15

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 15

Distributed Switch Example

1405002

You create a distributed switch named VDS01. You create a port group named Production, which will be used for virtual machine networking. You assign uplinks vmnic1 on host ESXi01 and vmnic1 on host ESXi02 to the distributed switch.

ESXi01 and vmnic1 on host ESXi02 to the distributed switch. Uplink Port Group Production Distributed Switch

Uplink

Port

Group

Production
Production

Distributed

Switch VDS01

Virtual
Virtual

vmnic

0

vmnic

1

vmnic

2 0

vmnic

vmnic

1 2

vmnic

Physical

Uplink

s

ESXi01

ESXi02

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

16

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 16

1405002

Deploying Vmware NSX Components

Deploy the NSX Manager virtual appliance

Integrate the NSX Manager with vCenter Server

Create IP Pools

Implement and Configure NSX Controllers

Prepare Host Clusters for Network Virtualization

Implement NSX Edge Services Gateway devices

Implement Logical Routers

Deploy vShield Endpoints

Implement Data Security

• Deploy vShield Endpoints • Implement Data Security Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

17

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 17

1405002

NSX Training and Certification Portfolio

Training Courses (www.vmware.com/go/NSXtraining)

Certifications (www.vmware.com/certification)

• Certifications (www.vmware.com/certification) Confidential and proprietary information of Ingram Micro
• Certifications (www.vmware.com/certification) Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

18

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 18

1405002

CITREP+ Approved Technology Courses

VMware vSphere ICM 6.5 VMware NSX 6.2

Type

Training course and certification

Citizenship support

Non SMEs

Up to 70% of the nett payable course and certification fees, capped at $2,500 per trainee

 

SMEs

 

Singapore Citizen

Professionals (40 years old and above)

Up to 90% of the nett payable course and certification fees, capped at $2,500 per trainee

Certification Name

VMware Certified Professional 6.5 – Data Center Virtualization

VMware Certified Professional 6 Network Virtualization

Course Title

VMware vSphere: Install, Configure, Manage (V6.5)

VMware NSX: Install, Configure, Manage (6.2)

Course & Exam Fees (with 7% GST)

S$5,061.10

S$5,168.10

Claimable Funding

 

*S$2,500

Payment

Full payment must be made by the Applicant to the endorsed Course Provider prior to submitting the claim application

Course Provider prior to submitting the claim application Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

19

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 19

1405002

CITREP+ Approved Technology Courses

VMware vSphere ICM 6.5 VMware NSX 6.2

Application Procedure

• All course endorsement and claim applications must be submitted online via the IMDA’s Infocomm Competency Management System (ICMS).

• The sponsoring organisations and self-sponsored individuals must have a valid ICMS account to submit a CITREP+ claim.

• To download CITREP+ guides, please www.imda.gov.sg/citrep

Eligibility Criteria

• To be eligible for funding support under CITREP+, all trainees must be enrolled by the endorsed course provider or testing centre for the intended course or certification in ICMS before the commencement of the training course or certification.

Claim Conditions For course and certification fees support, the trainee must complete the course and pass all examinations required by the certification or post-training assessment within 12 months from the course commencement date with the following conditions:

• Meet the minimum 75% attendance of the training course as per endorsed roadmap; and

• Achieve the final certification status (applicable to certifiable programmes).

certification status (applicable to certifiable programmes). Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

20

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 20

1405002

CITREP+ Approved Technology Courses

VMware vSphere ICM 6.5 VMware NSX 6.2

Need Help

1. Approach Vivianix Wong, Education Account Manager (@ Education Reception)

2. Visit www.ingrammicrotraining.com (Select Country: Singapore)

3. For more details on CITREP+ funding support, please visit www.imda.gov.sg/citrep or contact us at education.sg@ingrammicro.com for advisory support.

us at education.sg@ingrammicro.com for advisory support. Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

21

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 21

1405002

Access your Certificate of Attendance

Login to: https://mylearn.vmware.com

of Attendance Login to: https://mylearn.vmware.com Confidential and proprietary information of Ingram Micro
of Attendance Login to: https://mylearn.vmware.com Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

22

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 22

1405002

Access your Certificate of Attendance (cont…)

1405002 Access your Certificate of Attendance (cont…) Confidential and proprietary information of Ingram Micro Inc.
1405002 Access your Certificate of Attendance (cont…) Confidential and proprietary information of Ingram Micro Inc.

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

23

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 23

Evaluate this Event

Evaluate this Event Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate
Evaluate this Event Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

24

1405002

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 24

Try VMware NSX for Free

1405002

https://www.vmware.com/sg/products/nsx/nsx-hol.html

• https://www.vmware.com/sg/products/nsx/nsx-hol.html Confidential and proprietary information of Ingram Micro
• https://www.vmware.com/sg/products/nsx/nsx-hol.html Confidential and proprietary information of Ingram Micro

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

25

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 25
Q&A Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without

Q&A

Confidential and proprietary information of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission.

26

1405002

of Ingram Micro Inc. —Do not distribute or duplicate without Ingram Micro's express written permission. 26
1405002 ConfidentialProprietary informationand proprietaryof IngraminformationMicro Inc.of Ingram— Do Micronot
1405002
ConfidentialProprietary informationand proprietaryof IngraminformationMicro Inc.of Ingram— Do Micronot distributeInc. —Door notduplicatedistributewithoutor duplicateIngram Micro'swithoutexpressIngram Micro'swritten permission.express written permission.
27