NSX-T

Configuring NSX Distributed IDS/IPS

by

NSX IDS Configuration workflow: Enabling NSX IDSP To enable distributed IDSP for standalone hosts or clusters where traffic passes through NSX virtual network segments – VLAN-backed and overlay.  Note: The configuration flow to enable NSX-distributed IDS/IPS is as follows: Security > [Policy Management] IDS/IPS & Malware Prevention > Settings > Shared Within the Define Scope for Malware Prevention & IDS/IPS Deployment,   select the cluster … Read more

NSX-T IDFW how-to guide: How to consume NSX-T IDFW efficiently

by

I’ve had the privilege of working with VMware’s BU and the Livefire teams on an IDFW design that can be consumed at scale. Hopefully, people can make use of my findings. Note: That this design can be consumed by VDI. but in this example i’m am using RDSH. Requirements: Just some critical information in the … Read more

How to Deploy VMware’s NSX Advanced Load Balancer (AVI) Management Cluster

by

In this section i will explain how to deploy an NSXALB controller and form a cluster. Once the cluster has been created we can deploy the (Data plane) Services Engines and the load balancers. Process: Deploy the Controllers Configure first controller node Configure Cluster Deploy the Controllers: Download the ova file and start the ova … Read more

NSX Advanced Load Balancer (AVI) – About the Management & Control Plane

by

The NSX-ALB Controller is the single point of management and control that serves as the “brain” of the entire system and for high availability is typically deployed as a three-node cluster. As its name implies, the Controller implements the control plane. A single NSX-ALB deployment is managed from this Controller/cluster (identified by FQDN and/or cluster … Read more

NSX-T 3.0 IDS, What makes it different from other IDS solutions? And how do I configure it?

by

What Is an Intrusion Detection System (IDS) Intrusion Detection (ID) is the process of monitoring for and identifying attempted unauthorized system access or manipulation. An ID system gathers and analyzes information from areas within the network to identify possible security breaches which include both intrusions (attack from outside the organization) and misuse (attack from within … Read more

NSX-T Installation: Deploy Additional NSX-T Manager Nodes from UI

by

login into the MSX manager UI https://nsxmanagerip Click System -> Overview -> Add Nodes: 2Select the Compute Manager from the drop-down menu, enable SSH (if required), enter the cli and root password, DNS, NTP and select the form factor: Note: Select the same form factor as of the first NSX-T manager deployment in https://virtual-llew.com/nsx-t-deployment-deploy-nsx-t-manager/ Specify the name, … Read more

NSX-T Installation: Deploy NSX-T Manager

by

Prerequisites IP Information Create four “Host A” records in your DNS server for the three NSX-T Manager/Controller nodes that will be deployed and one for the virtual IP. Her is an example that i have used in my environment FQDN IPnsxmgr01.lab.local 192.168.50.51nsxmgr02.lab.local 192.168.50.52nsxmgr03.lab.local 192.168.50.53nsxmgr.lab.local 192.168.1.50 DNS Server NSX-T Data Center appliance password At least 12 … Read more

NSX-T Installation: Add a Compute Manager

by

What is a compute manager? A compute manager, for example, vCenter Server, is an application that manages resources such as hosts and VMs. In the current release only vCenter is supported NSX-T Data Center polls compute managers to collect cluster information from vCenter Server. This helps with the auto deployment of new nodes within a cluster for example … Read more