VMware NSX (VM7432)

This course begins with a brief introduction to VMware's NSX for vSphere Network Virtualization solutions and how to deploy and configure NSX components and features such as Logical Switching, Logical Routing, layer 2 bridging and the Edge Services Gateway. Moving on to security, the course shows you how to enable micro-segmentation through NSX Distributed Firewall and Identity Firewall and how to do service insertion via network and guest introspection. After covering all the feature configurations for single-site deployment, the focus then shifts to multi-site setups using Cross-vCenter NSX.

Next, the course covers management, backing up and restoring, upgrading, and monitoring using built-in NSX features such as Flow Monitoring, Traceflow, Application Rule Manager, and Endpoint Monitoring. Towards the end, you will explore how to leverage VMware NSX REST API using various tools from Python to VMware vRealize Orchestrator.

Attend our VMware courses at our training center in Belgrade, live online (virtual classroom) or on-site (private training).
Special pricing can be applied upon registration (multiple participants from your company, government sector, nonprofit organizations, etc.) – contact us to learn more.

Public class

5 days / 35 hours

Private class

At your premises / Online
Minimum no. of participants: 4
5 days / 35 hours
Price on request
English or French
Training plan: 

Module 1: Getting Started with VMware NSX for vSphere

  • Introduction
  • Choosing the right VMware NSX for vSphere edition
  • Selecting ESXi hosts and network adapters
  • Downloading NSX for vSphere
  • Deploying the NSX Manager virtual appliance
  • Replacing the NSX Manager certificate
  • Registering vCenter server with NSX Manager
  • Applying the NSX license
  • Deploying the NSX Controller Cluster
  • Preparing a vSphere cluster for NSX
  • Validating NSX VIB installation

Module 2: Configuring VMware NSX Logical Switch Networks

  • Introduction
  • Configuring VXLAN Networking
  • Configuring a VXLAN Segment ID
  • Creating a NSX Transport Zone
  • Creating a NSX Logical Switch
  • Connecting a Virtual Machine to an NSX Logical Switch
  • Testing an NSX Logical Switch
  • Enabling the Controller Disconnected Operation Mode on a Transport Zone

Module 3: Configuring VMware NSX Logical Routing

  • Introduction
  • Configuring the Distributed Logical Router
  • Configuring the Distributed Logical Router for dynamic routing
  • Deploying and configuring the NSX ESG in HA mode
  • Understanding and configuring the NSX ESG for routing

Module 4: Configuring VMware NSX Layer 2 Bridging

  • Introduction
  • Configuring Software-Based Gateway Layer 2 Bridging
  • Selecting a hardware VTEP gateway
  • Integrating Hardware VTEP Gateway with VMware NSX
  • Extending VMware NSX Logical Switch to Hardware VTEP Gateway

Module 5: Configuring VMware NSX Edge Services Gateway

  • Introduction
  • Configuring a DNS relay
  • Configuring a DHCP server
  • Configuring an Edge Firewall
  • Configuring Network Address Translation
  • Configuring Load Balancing
  • Configuring IPSEC VPN
  • Configuring SSL VPN
  • Configuring High Availability

Module 6: Configuring VMware NSX Distributed Firewall (DFW) and SpoofGuard

  • Introduction
  • Verifying NSX DFW component status
  • Configuring IP Discovery for Virtual Machines
  • Working with SpoofGuard
  • Excluding Virtual Machines from DFW Protection
  • Configuring DFW Session Timeout
  • Creating Security Policy Rules from the Firewall Table Menu
  • Creating Security Policy Rules from the Service Composer menu
  • Verifying DFW rules
  • Leveraging the DFW Applied To field
  • Deploying Network or Guest Introspection Services
  • Configuring the Identity Firewall

Module 7: Configuring Cross-vCenter NSX

  • Introduction
  • Configuring Primary and Secondary NSX Manager(s)
  • Creating a Universal Transport Zone and adding a vSphere cluster to the Universal Transport Zone
  • Creating a Universal Logical Switch
  • Creating a Universal Logical Router
  • Adding a VM to a Universal Logical Switch
  • Understanding and configuring the Universal Distributed Firewall

Module 8: Backing up and Restoring VMware NSX Components

  • Introduction
  • Backing up NSX Manager
  • Restoring NSX Manager
  • Restoring NSX Controller Nodes
  • Restoring a Logical Switch Backing Port Group
  • Restoring NSX Edge
  • Exporting NSX DFW Rules configuration from the Firewall Menu
  • Restoring NSX DFW Rules configuration from the Firewall Menu
  • Exporting NSX Security Policy from the Service Composer Menu
  • Restoring NSX Security Policy from the Service Composer Menu

Module 9: Managing User Accounts in VMware NSX

  • Introduction
  • Creating a service user account for vCenter server registration
  • Granting access to NSX
  • Creating and Managing CLI user accounts in NSX manager

Module 10: Upgrading VMware NSX

  • Introduction
  • Preparing for VMware NSX upgrade
  • Verifying VMware NSX working state
  • Upgrading VMware NSX Manager
  • Upgrading NSX controller node
  • Upgrading VMware NSX Host Clusters
  • Upgrading VMware NSX Edge
  • Upgrading Network and Security Service Deployments

Module 11: Managing and Monitoring VMware NSX Platform

  • Introduction
  • Monitoring NSX using NSX Dashboard
  • Configuring the NSX Components Syslog
  • Configuring and viewing the NSX Distributed Firewall Log
  • Configuring vRealize Log Insight for NSX
  • Enabling NSX Flow Monitoring
  • Using Application Rule Manager
  • Using NSX Endpoint Monitoring

Module 12: Leveraging the VMware NSX REST API for Management and Automation

  • Introduction
  • Using the REST API with the Postman REST client
  • Using the REST API with cURL
  • Using the REST API with PowerShell
  • Using the REST API with Python
  • Using the vRealize Orchestrator plugin for NSX
  • One year access to the class recording
  • Access to the lab environment during the training
  • Course material accessible in electronic format
  • Certificate of attendance

Contact us for more information on pricing:

Office: 1-888-718-9732
E-mail: info@eccentrix.ca

2000 McGill College Avenue, 6e étage,
Montréal, Québec H3A 3H3