Tag Archives: NSX

NSX 6.2.4 containing DFW and VMSA-2016-0007.2 fixes releasd

NSXVMware has released an update for their network virtualization platform NSX. The updated fixes the Distributed Firewall Issue that forced VMware to pull NSX 6.2.3 from distribution. This update also fixes the SSL-VPN Issue announced in Security Advisory VMSA-2016-0007.2 (CVE-2016-2079).

Read more »

VMware NSX 6.2.3 has been pulled from distribution (DFW Issue)

Last week VMware warninghas silently removed the download for the latest version of VMware NSX. Today the Support Insider blog, which is a great resource for first-hand field experience, reported that the NSX for vSphere 6.2.3 release has been officially pulled.

VMware recommends to suspend updates until the replacement for NSX 6.2.3 is released.

Additional USB NIC for Intel NUCs running ESXi

Intel NUCs with ESXi are a proven standard for virtualization home labs. I'm currently running a homelab consisting of 3 Intel NUCs with a FreeNAS based All-Flash Storage. If you are generally interested in running ESXi on Intel NUCs, read this post first. One major drawback is that they only have a single Gigabit network adapter. This might be sufficient for a standalone ESXi with a few VMs, but when you wand to use shared Storage or VMware NSX, you totally want to have additional NICs.

intel-nuc-usb-nic

A few month ago, this problem has been solved by an unofficial driver that has been made available by VMware engineer William Lam.

Read more »

NSX 6.2.3 with Free Log Insight Entitlement released

VMware has release an update for their network virtualization platform NSX. Together with some minor changes to the product itself, VMware announced that all users with a NSX 6.2.3 (and beyond) license are now entitled to vRealize Log Insight for NSX at no additional charge.

What's new in VMware NSX 6.2.3

Read more »

VMware NSX 6 Component Communication Diagram

This post provides information on the required ports for VMware NSX for vSphere 6.

Read more »

Deploy VMware NSX in Homelabs with Limited Resources

downsizing-nsxWhen deploying VMware NSX in a homelab, its huge resource requirement might be an issue. In the default configuration a small setup with NSX Manager, 3 NSX Controllers and 2 Edge gateways requires 30 GB Memory. Consumer VMs to connect to logical switches requiring additional resources.

This post explains how you can deploy VMware NSX in your homelab with less than 8GB Memory by downsizing each component including:

  • NSX Manager
  • NSX Controllers
  • NSX Edge Gateways
  • Consumer VMs

Read more »

Send dvSwitch Port Statistics to Graphite

For network analysis I want to have Distributed Switch port statistics in my Graphite installation. I’ve created a script that pulls dvSwitch port statistics from a vCenter server, or directly from an ESXi host and sends them to a Carbon Relay. Ports connected to NSX Logical Switches, which are actually distributed Port Groups, are also included. This allows to create universal dashboards with Grafana for example.

dvswitch-port-statistics-graphite

This script is intended to run as cronjob every minute. Port Statistics are provided as counters which can be easily converted to per second values with Graphite functions.

Read more »

Send NSX Edge Gateway Statistics to Graphite

To monitor VMware NSX Edge Gateways I want to send interface statistics to my Graphite installation. NSX Manager comes with a REST API that allows to pull information in XML or JSON format. I've created a script that pulls Interface, Firewall and Load Balancer statistics from all ESGs and sends them to a Carbon Relay. This allows to create universal custom dashboards with Grafana for example.

nsx-edge-gateway-statistics-graphite

Read more »

Configure Basic Edge Load Balancing in VMware NSX

An Edge Services Gateway allows to connect services running on Logical Switches outside of NSX based networks. I've explained the base installation from zero to the first ESG here. This post explains how to connect Web servers running on logical networks VXLAN to the outside.

nsx-load-balancing

In this example I'm running 3 nginx web servers on small Linux appliances connected to a logical switch.

Read more »

Which Features are missing in NSX Standard and Advanced?

VMware has changed their NSX licensing model from a one-fits-all license model to 3 license tiers. Starting May 3, 2016 VMware NSX is available as three offerings: Standard, Advanced, and Enterprise. All three tiers are licensed based on physical sockets. The existing NSX license scheme is no longer availale.

Special license models are available for Service Providers and Virtual Desktop environments. For EUC platforms, the advanced edition is also available one a per-user basis and Service Providers can license NSX on a per-VM basis. At least NSX 6.2.2 is required to work with NSX Standard, Advanced, and Enterprise license keys.nsx-offerings

According to VMware, these offerings are aligned to the following requirements:

  • Standard is targeted at organizations that needs agility and automation of the networks.
  • Advanced is for organizations requiring a more secure data center with micro-segmentation.
  • Enterprise is for organizations that needs networking and security across multiple domains.

Coming from the one-fits-all license model where everyone gets everything, the question is - which features are missing in Standard and Advanced? Read more »