Course Catalog  > Cloud  > VMware  > VMware NSX-T
EDU-NSXTD32

VMware NSX-T Data Center: Design [V3.2] Training

This five-day course provides comprehensive training on considerations and practices to design a VMware NSX-T™ Data Center environment as part of a software-defined data center strategy. This course prepares the student with the skills to lead the design of NSX-T Data Center offered in release 3.2, including design principles, processes, and frameworks. The student gains a deeper understanding of the NSX-T Data Center architecture and how it can be used to create solutions to address the customer’s business needs.
Request Information
Request On-Site or Customized Course Info
Course Details

Duration

5 days

Prerequisites

  • Complete the VMware NSX-T Data Center: Install, Configure, Manage [V3.2] course
  • Good understanding of TCP/IP services and protocols
  • Knowledge and working experience of computer networking and security, including:
  • Switching and routing technologies (L2-L3)
  • Network and application delivery services (L4-L7)
  • Firewalling (L4-L7)
  • vSphere environments
  • The VMware Certified Professional – Network Virtualization certification is recommended.

Target Audience

  • Network and Security Administrators
  • IT Managers
  • VMware Partners
  • Individuals responsible for implementing and managing the NSX-T Data Center deployments

Skills Gained

  • Describe the architectural and operations enhancements in NSX-T Data Center 3.2
  • Configure OSPF in NSX-T Data Center 3.2
  • Describe the NSX security architecture and features of NSX-T Data Center 3.2
  • Configure Distributed Firewall on VDS for security use cases
  • Configure URL Filtering and Identity Firewall on NSX Edge nodes
  • Configure NSX Intrusion Detection and Prevention for east-west traffic
  • Deploy NSX Application Platform
  • Configure NSX Malware Prevention for east-west and north-south traffic
  • Analyze the networking secure posture and threats with NSX Intelligence and NSX Network Detection and Response
  • Deploy the NSX Advanced Load Balancer components
  • Describe the NSX Federation enhancements in NSX-T Data Center 3.2
Course Outline
  • NSX Design Concepts
    • Identify design terms
    • Describe framework and project methodology
    • Describe VMware Validated Design™
    • Identify customers’ requirements, assumptions, constraints, and risks
    • Explain the conceptual design
    • Explain the logical design
    • Explain the physical design
  • NSX Architecture and Components
    • Recognize the main elements in the NSX-T Data Center architecture
    • Describe the NSX management cluster and the management plane
    • Identify the functions and components of management, control, and data planes
    • Describe the NSX Manager sizing options
    • Recognize the justification and implication of NSX manager cluster design decisions
    • Identify the NSX management cluster design options
  • NSX Edge Design
    • Explain the leading practices for edge design
    • Describe the NSX Edge VM reference designs
    • Describe the bare-metal NSX Edge reference designs
    • Explain the leading practices for edge cluster design
    • Explain the effect of stateful services placement
    • Explain the growth patterns for edge clusters
    • Identify design considerations when using L2 bridging services
  • NSX Logical Switching Design
    • Describe concepts and terminology in logical switching
    • Identify segment and transport zone design considerations
    • Identify virtual switch design considerations
    • Identify uplink profile, VMware vSphere® Network I/O Control profile, and transport node profile design considerations
    • Identify Geneve tunneling design considerations
    • Identify BUM replication mode design considerations
  • NSX Logical Routing Design
    • Explain the function and features of logical routing
    • Describe NSX-T Data Center single-tier and multitier routing architectures
    • Identify guidelines when selecting a routing topology
    • Describe the BGP and OSPF routing protocol configuration options
    • Explain gateway high availability modes of operation and failure detection mechanisms
    • Identify how multitier architectures provide control over stateful service location
    • Identify VRF Lite requirements and considerations
    • Identify the typical NSX scalable architectures
  • NSX Security Design
    • Identify different security features available in NSX-T Data Center
    • Describe the advantages of an NSX Distributed Firewall
    • Describe the use of NSX Gateway Firewall as a perimeter firewall and as an intertenant firewall
    • Determine a security policy methodology
    • Recognize the NSX-T Data Center security best practices
  • NSX Network Services
    • Identify the stateful services available in different edge cluster high availability modes
    • Describe failover detection mechanisms
    • Explain the design considerations for integrating VMware NSX® Advanced Load Balancer™  with NSX-T Data Center
    • Describe stateful and stateless NSX-T Data Center NAT
    • Identify benefits of NSX-T Data Center DHCP
    • Identify benefits of metadata proxy
    • Describe IPSec VPN and L2 VPN
  • Physical Infrastructure Design
    • Identify the components of a switch fabric design
    • Assess Layer 2 and Layer 3 switch fabric design implications
    • Review guidelines when designing top-of-rack switches
    • Review options for connecting transport hosts to the switch fabric
    • Describe typical designs for VMware ESXi™  compute hypervisors with two pNICs
    • Describe typical designs for ESXi compute hypervisors with four or more pNICs
    • Describe a typical design for a KVM compute hypervisor with two pNICs
    • Differentiate dedicated and collapsed cluster approaches to SDDC design
  • NSX Multilocation Design
    • Explain scale considerations in an NSX-T Data Center multisite design
    • Describe the main components of the NSX Federation architecture
    • Describe the stretched networking capability in Federation
    • Describe stretched security use cases in Federation
    • Compare Federation disaster recovery designs
  • NSX Optimization
    • Describe Geneve Offload
    • Describe the benefits of Receive Side Scaling and Geneve Rx Filters
    • Explain the benefits of SSL Offload
    • Describe the effect of Multi-TEP, MTU size, and NIC speed on throughput
    • Explain the available N-VDS enhanced datapath modes and use cases
    • List the key performance factors for compute nodes and NSX Edge nodes
  • Product Alignment
    • VMware NSX-T Data Center 3.2