Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Advanced Search Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying VMware NSX Cookbook
  • Table Of Contents Toc
  • Feedback & Rating feedback
VMware NSX Cookbook

VMware NSX Cookbook

By : Bayu Wibowo, Tony Sangha
5 (4)
Buy this Book
close
close
VMware NSX Cookbook

VMware NSX Cookbook

5 (4)
By: Bayu Wibowo, Tony Sangha
Buy this Book

Overview of this book

This book begins with a brief introduction to VMware's NSX for vSphere Network Virtualization solutions and how to deploy and configure NSX components and features such as Logical Switching, Logical Routing, layer 2 bridging and the Edge Services Gateway. Moving on to security, the book shows you how to enable micro-segmentation through NSX Distributed Firewall and Identity Firewall and how to do service insertion via network and guest introspection. After covering all the feature configurations for single-site deployment, the focus then shifts to multi-site setups using Cross-vCenter NSX. Next, the book covers management, backing up and restoring, upgrading, and monitoring using built-in NSX features such as Flow Monitoring, Traceflow, Application Rule Manager, and Endpoint Monitoring. Towards the end, you will explore how to leverage VMware NSX REST API using various tools from Python to VMware vRealize Orchestrator.
Table of Contents (14 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Sections
Icon
Get in touch
Free Chapter
1
Getting Started with VMware NSX for vSphere
Icon
Getting Started with VMware NSX for vSphere
Icon
Introduction
Icon
Choosing the right VMware NSX for vSphere edition
Icon
Selecting ESXi hosts and network adapters
Icon
Downloading NSX for vSphere
Icon
Deploying the NSX Manager virtual appliance
Icon
Replacing the NSX Manager certificate
Icon
Registering vCenter server with NSX Manager
Icon
Applying the NSX license
Icon
Deploying the NSX Controller Cluster
Icon
Preparing a vSphere cluster for NSX
Icon
Validating NSX VIB installation
2
Configuring VMware NSX Logical Switch Networks
Icon
Configuring VMware NSX Logical Switch Networks
Icon
Introduction
Icon
Configuring VXLAN Networking
Icon
Configuring a VXLAN Segment ID
Icon
Creating a NSX Transport Zone
Icon
Creating a NSX Logical Switch
Icon
Connecting a Virtual Machine to an NSX Logical Switch
Icon
Testing an NSX Logical Switch
Icon
Enabling the Controller Disconnected Operation Mode on a Transport Zone
3
Configuring VMware NSX Logical Routing
Icon
Configuring VMware NSX Logical Routing
Icon
Introduction
Icon
Configuring the Distributed Logical Router
Icon
Configuring the Distributed Logical Router for dynamic routing
Icon
Deploying and configuring the NSX ESG in HA mode
Icon
Understanding and configuring the NSX ESG for routing
4
Configuring VMware NSX Layer 2 Bridging
Icon
Configuring VMware NSX Layer 2 Bridging
Icon
Introduction
Icon
Configuring Software-Based Gateway Layer 2 Bridging
Icon
Selecting a hardware VTEP gateway
Icon
Integrating Hardware VTEP Gateway with VMware NSX
Icon
Extending VMware NSX Logical Switch to Hardware VTEP Gateway
5
Configuring VMware NSX Edge Services Gateway
Icon
Configuring VMware NSX Edge Services Gateway
Icon
Introduction
Icon
Configuring a DNS relay
Icon
Configuring a DHCP server
Icon
Configuring an Edge Firewall
Icon
Configuring Network Address Translation
Icon
Configuring Load Balancing
Icon
Configuring IPSEC VPN
Icon
Configuring SSL VPN
Icon
Configuring High Availability
6
Configuring VMware NSX Distributed Firewall (DFW) and SpoofGuard
chevron up
Icon
Configuring VMware NSX Distributed Firewall (DFW) and SpoofGuard
Icon
Introduction
Icon
Verifying NSX DFW component status
Icon
Configuring IP Discovery for Virtual Machines
Icon
Working with SpoofGuard
Icon
Excluding Virtual Machines from DFW Protection
Icon
Configuring DFW Session Timeout
Icon
Creating Security Policy Rules from the Firewall Table Menu
Icon
Creating Security Policy Rules from the Service Composer menu
Icon
Verifying DFW rules
Icon
Leveraging the DFW Applied To field
Icon
Deploying Network or Guest Introspection Services
Icon
Configuring the Identity Firewall
7
Configuring Cross-vCenter NSX
Icon
Configuring Cross-vCenter NSX
Icon
Introduction
Icon
Configuring Primary and Secondary NSX Manager(s)
Icon
Creating a Universal Transport Zone and adding a vSphere cluster to the Universal Transport Zone
Icon
Creating a Universal Logical Switch
Icon
Creating a Universal Logical Router
Icon
Adding a VM to a Universal Logical Switch
Icon
Understanding and configuring the Universal Distributed Firewall
8
Backing up and Restoring VMware NSX Components
Icon
Backing up and Restoring VMware NSX Components
Icon
Introduction
Icon
Backing up NSX Manager
Icon
Restoring NSX Manager
Icon
Restoring NSX Controller Nodes
Icon
Restoring a Logical Switch Backing Port Group
Icon
Restoring NSX Edge
Icon
Exporting NSX DFW Rules configuration from the Firewall Menu
Icon
Restoring NSX DFW Rules configuration from the Firewall Menu
Icon
Exporting NSX Security Policy from the Service Composer Menu
Icon
Restoring NSX Security Policy from the Service Composer Menu
9
Managing User Accounts in VMware NSX
Icon
Managing User Accounts in VMware NSX
Icon
Introduction
Icon
Creating a service user account for vCenter server registration
Icon
Granting access to NSX
Icon
Creating and Managing CLI user accounts in NSX manager
10
Upgrading VMware NSX
Icon
Upgrading VMware NSX
Icon
Introduction
Icon
Preparing for VMware NSX upgrade
Icon
Verifying VMware NSX working state
Icon
Upgrading VMware NSX Manager
Icon
Upgrading NSX controller node
Icon
Upgrading VMware NSX Host Clusters
Icon
Upgrading VMware NSX Edge
Icon
Upgrading Network and Security Service Deployments
11
Managing and Monitoring VMware NSX Platform
Icon
Managing and Monitoring VMware NSX Platform
Icon
Introduction
Icon
Monitoring NSX using NSX Dashboard
Icon
Configuring the NSX Components Syslog
Icon
Configuring and viewing the NSX Distributed Firewall Log
Icon
Configuring vRealize Log Insight for NSX
Icon
Enabling NSX Flow Monitoring
Icon
Using Application Rule Manager
Icon
Using NSX Endpoint Monitoring
12
Leveraging the VMware NSX REST API for Management and Automation
Icon
Leveraging the VMware NSX REST API for Management and Automation
Icon
Introduction
Icon
Using the REST API with the Postman REST client
Icon
Using the REST API with cURL
Icon
Using the REST API with PowerShell
Icon
Using the REST API with Python
Icon
Using the vRealize Orchestrator plugin for NSX
13
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Creating Security Policy Rules from the Service Composer menu

In the previous recipe, we created DFW rules using the Firewall Table menu, which is more suitable for static environments. In this recipe, we will create security policy rules from Service Composer, which is more suitable for the application-based policies approach.

Getting ready

In the Service Composer, a security group of what we want to protect must be created first, then a security policy can be created and applied to that security group. In our example, we need to create three security groups and three security policies: one for the Web tier, one for the App tier, and one for the DB tier.

How to do it...

In this recipe, we will create the security group from Service Composer using various methods, and then create a security policy utilizing the newly-created security groups.

Creating a Security Group using Static Inclusion

In this section, we will create a security group, SG-DB-Tier, for the database VM and use static membership...

Unlock full access

Continue reading for free

A Packt free trial gives you instant online access to our library of over 7000 practical eBooks and videos, constantly updated with the latest in tech
Start a 7-day FREE trial
End of Chapter 6
Next Chapter

Create a Note

Modal Close icon
You need to login to use this feature.
notes
bookmark search playlist download
font-size

Change the font size

margin-width

Change margin width

day-mode

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Delete Bookmark

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Delete Note

Modal Close icon
Are you sure you want to delete it?
Cancel
Yes, Delete

Edit Note

Modal Close icon
Write a note (max 255 characters)
Cancel
Update Note

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY