Overview
This five-day course provides comprehensive training on considerations and practices to design a VMware NSX-T™ Data Center environment as part of a software-defined data center strategy. This course prepares the student with the skills to lead the design of NSX-T Data Center offered in release 3.2, including design principles, processes, and frameworks. The student gains a deeper understanding of the NSX-T Data Center architecture and how it can be used to create solutions to address the customer’s business needs.
Prerequisites
Before taking this course, you must complete the following course:
• VMware NSX-T Data Center: Install, Configure, Manage [V3.2]
You should also have the understanding or knowledge of these technologies:
• Good understanding of TCP/IP services and protocols
• Knowledge and working experience of computer networking and security, including:
o Switching and routing technologies (L2-L3)
o Network and application delivery services (L4-L7)
o Firewalling (L4-L7)
o vSphere environments
The VMware Certified Professional – Network Virtualization certification is recommended.
Delegates will learn how to
• Describe and apply a design framework
• Apply a design process for gathering requirements, constraints, assumptions, and risks
• Design a VMware vSphere® virtual data center to support NSX-T Data Center requirements
• Create a VMware NSX® Manager™ cluster design
• Create a VMware NSX® Edge™ cluster design to support traffic and service requirements in NSX-T Data
Center
• Design logical switching and routing
• Recognize NSX-T Data Center security best practices
• Design logical network services
• Design a physical network to support network virtualization in a software-defined data center
• Create a design to support the NSX-T Data Center infrastructure across multiple sites
• Describe the factors that drive performance in NSX-T Data Center
Outline
1 Course Introduction
• Introduction and course logistics
• Course objectives
2 Design Concepts
• Identify design terms
• Describe framework and project methodology
• Describe VMware Validated Design™
• Identify customers’ requirements, assumptions, constraints, and risks
• Explain the conceptual design
• Explain the logical design
• Explain the physical design
3 NSX Architecture and Components
• Recognize the main elements in the NSX-T Data Center architecture
• Describe the NSX management cluster and the management plane
• Identify the functions and components of management, control, and data planes
• Describe the NSX Manager sizing options
• Recognize the justification and implication of NSX manager cluster design decisions
• Identify the NSX management cluster design options
4 NSX Edge Design
• Explain the leading practices for edge design
• Describe the NSX Edge VM reference designs
• Describe the bare-metal NSX Edge reference designs
• Explain the leading practices for edge cluster design
• Explain the effect of stateful services placement
• Explain the growth patterns for edge clusters
• Identify design considerations when using L2 bridging services
5 NSX Logical Switching Design
• Describe concepts and terminology in logical switching
• Identify segment and transport zone design considerations
• Identify virtual switch design considerations
• Identify uplink profile, VMware vSphere® Network I/O Control profile, and transport node profile design
considerations
• Identify Geneve tunneling design considerations
• Identify BUM replication mode design considerations
6 NSX Logical Routing Design
• Explain the function and features of logical routing
• Describe NSX-T Data Center single-tier and multitier routing architectures
• Identify guidelines when selecting a routing topology
• Describe the BGP and OSPF routing protocol configuration options
• Explain gateway high availability modes of operation and failure detection mechanisms
• Identify how multitier architectures provide control over stateful service location
• Identify VRF Lite requirements and considerations
• Identify the typical NSX scalable architectures
7 NSX Security Design
• Identify different security features available in NSX-T Data Center
• Describe the advantages of an NSX Distributed Firewall
• Describe the use of NSX Gateway Firewall as a perimeter firewall and as an intertenant firewall
• Determine a security policy methodology
• Recognize the NSX-T Data Center security best practices
8 NSX Network Services
• Identify the stateful services available in different edge cluster high availability modes
• Describe failover detection mechanisms
• Explain the design considerations for integrating VMware NSX® Advanced Load Balancer™ with NSX-T
Data Center
• Describe stateful and stateless NSX-T Data Center NAT
• Identify benefits of NSX-T Data Center DHCP
• Identify benefits of metadata proxy
• Describe IPSec VPN and L2 VPN
9 Physical Infrastructure Design
• Identify the components of a switch fabric design
• Assess Layer 2 and Layer 3 switch fabric design implications
• Review guidelines when designing top-of-rack switches
• Review options for connecting transport hosts to the switch fabric
• Describe typical designs for VMware ESXi™ compute hypervisors with two pNICs
• Describe typical designs for ESXi compute hypervisors with four or more pNICs
• Describe a typical design for a KVM compute hypervisor with two pNICs
• Differentiate dedicated and collapsed cluster approaches to SDDC design
10 NSX Multilocation Design
• Explain scale considerations in an NSX-T Data Center multisite design
• Describe the main components of the NSX Federation architecture
• Describe the stretched networking capability in Federation
• Describe stretched security use cases in Federation
• Compare Federation disaster recovery designs
11 NSX Optimization
• Describe Geneve Offload
• Describe the benefits of Receive Side Scaling and Geneve Rx Filters
• Explain the benefits of SSL Offload
• Describe the effect of Multi-TEP, MTU size, and NIC speed on throughput
• Explain the available N-VDS enhanced datapath modes and use cases
• List the key performance factors for compute nodes and NSX Edge nodes
Frequently asked questions
How can I create an account on myQA.com?
There are a number of ways to create an account. If you are a self-funder, simply select the "Create account" option on the login page.
If you have been booked onto a course by your company, you will receive a confirmation email. From this email, select "Sign into myQA" and you will be taken to the "Create account" page. Complete all of the details and select "Create account".
If you have the booking number you can also go here and select the "I have a booking number" option. Enter the booking reference and your surname. If the details match, you will be taken to the "Create account" page from where you can enter your details and confirm your account.
Find more answers to frequently asked questions in our FAQs: Bookings & Cancellations page.
How do QA’s virtual classroom courses work?
Our virtual classroom courses allow you to access award-winning classroom training, without leaving your home or office. Our learning professionals are specially trained on how to interact with remote attendees and our remote labs ensure all participants can take part in hands-on exercises wherever they are.
We use the WebEx video conferencing platform by Cisco. Before you book, check that you meet the WebEx system requirements and run a test meeting to ensure the software is compatible with your firewall settings. If it doesn’t work, try adjusting your settings or contact your IT department about permitting the website.
How do QA’s online courses work?
QA online courses, also commonly known as distance learning courses or elearning courses, take the form of interactive software designed for individual learning, but you will also have access to full support from our subject-matter experts for the duration of your course. When you book a QA online learning course you will receive immediate access to it through our e-learning platform and you can start to learn straight away, from any compatible device. Access to the online learning platform is valid for one year from the booking date.
All courses are built around case studies and presented in an engaging format, which includes storytelling elements, video, audio and humour. Every case study is supported by sample documents and a collection of Knowledge Nuggets that provide more in-depth detail on the wider processes.
When will I receive my joining instructions?
Joining instructions for QA courses are sent two weeks prior to the course start date, or immediately if the booking is confirmed within this timeframe. For course bookings made via QA but delivered by a third-party supplier, joining instructions are sent to attendees prior to the training course, but timescales vary depending on each supplier’s terms. Read more FAQs.
When will I receive my certificate?
Certificates of Achievement are issued at the end the course, either as a hard copy or via email. Read more here.