Documentos de Académico
Documentos de Profesional
Documentos de Cultura
Introduction to NSX
Milin Desai, VMware, Inc
Kausum Kumar, Vmware, Inc
Disclaimer
This presentation may contain product features that are currently under development.
This overview of new technology represents no commitment from VMware to deliver these
Features are subject to change, and must not be included in contracts, purchase orders, or
been determined.
CONFIDENTIAL
Agenda
1
Intro to NSX
NSX Momentum
NSX Operations
In closing
CONFIDENTIAL
Agenda
1
Intro to NSX
NSX Momentum
NSX Operations
In closing
CONFIDENTIAL
Custom Platform
Software / Hardware Abstraction
Any x86
Any Storage
Any IP network
Custom Platform
Software / Hardware Abstraction
Software Defined
Data Center (SDDC)
Any Application
SDDC Platform
With NSX
Any x86
Any x86
Any Storage
Any Storage
Any IP network
Any IP network
Provides
Switching
Routing
Load
Balancing
VPN
Data Security
Connectivity to
Physical Networks
Management
APIs, UI
Policies,
Groups, Tags
Firewalling
Activity Monitoring
Enables
Software
Hardware
NSX Components
Cloud
Consumption
NSX Manager
Management
Plane
NSX Controller
Control Plane
Distributed Services
NSX Edge
Data Plane
Logical
Switch
ESXi
Distributed
Logical Router
Firewall
NSX Manager
NSX Controller Cluster
vCenter
Hypervisor
Hypervisor
Host 1
Host 2
Management Cluster
Web
App
Web
App
DB
Web
Hypervisor
Hypervisor
Hypervisor
Hypervisor
Hypervisor
Host 3
Host 4
Host 5
Host 6
Host 7
Compute Clusters
Edge Cluster
10
Agenda
1
Intro to NSX
NSX Momentum
NSX Operations
In closing
CONFIDENTIAL
11
NET
1214
Certified Network
Virtualization Expert
Certified Network
Virtualization Professional
Certification
Training
Career Path
Certifications & Training Programs
12
Certifications (www.vmware.com/certification)
VMware Certified Professional Network Virtualization (VCP-NV)
VMware Certified Implementation Expert Network Virtualization (VCIX-NV)
VMware Certified Design Expert Network Virtualization (VCDX-NV)
CONFIDENTIAL
13
NET
1589
NSX Partner
Reference Design
SDDC
Validated Guides
NSX
Design Guides
NET
2318
NSX
Hardening Guide
14
NET
2225
Security Services
NET
2225
Security Services
17
Agenda
1
Intro to NSX
NSX Momentum
NSX Operations
In closing
CONFIDENTIAL
18
Data Center
Automation
Public Clouds
Dev X
Test X
Acquisition A
Dev A
Examples
Examples
Examples
DevOps Cloud
On-boarding M&A
Micro-segmentation of App
Simplifying Compute Silos
DMZ Deployments
XaaS Clouds
Vertical Clouds
Key Capabilities
Key Capabilities
Key Capabilities
Programmatic Consumption
Full featured stack
Visibility and ops
Multi-tenant Deployment
Programmatic L2, L3, Security
Overlapping IP Addressing
Any Hypervisor, Any CMP
CONFIDENTIAL
20
New IT
or
No IT
Outsourced
21
WEB
APP
DATABASE
WEB
APP
DATABASE
Consumption
MGMT
1969
NET
2379
Any
CONFIDENTIAL
23
Cloud
Consumer
Provider
Provider
Provider delivers
Pre-Created instances
Provider delivers
guard rails
Provider delivers
Templates for
Dynamic Instantiation
CONFIDENTIAL
24
Data Center
Automation
Public Clouds
Dev X
Test X
Acquisition A
Dev A
Examples
Examples
Examples
DevOps Cloud
On-boarding M&A
Micro-segmentation of App
Simplifying Compute Silos
DMZ Deployments
XaaS Clouds
Vertical Clouds
Key Capabilities
Key Capabilities
Key Capabilities
Programmatic Consumption
Full featured stack
Visibility and ops
Multi-tenant Deployment
Programmatic L2, L3, Security
Overlapping IP Addressing
Any Hypervisor, Any CMP
SEC
1959-S
Perimeter-centric network security has proven insufficient, and micro-segmentation is operationally infeasible
Internet
Internet
Little or no
lateral controls
inside perimeter
Insufficient
Operationally
Infeasible
An NSX platform
is made up of distributed
elements embedded in each
hypervisor,
SEC
1746
CONFIDENTIAL
27
SEC
1958
NET
2225
Partner Ecosystem
Next-generation IPS
Malware Protection
Vulnerability Management
Next-Generation Firewall
CONFIDENTIAL
28
New Deployments/
Deployed applications
29
Demo
CONFIDENTIAL
30
Demo
CONFIDENTIAL
31
Agenda
1
Intro to NSX
NSX Momentum
NSX Operations
In closing
CONFIDENTIAL
32
Data Plane
Services
Operations
Consumption
NSX Edge
Active-Active with Scale-Out (ECMP)
Data Plane
Services
Operations
Consumption
Distributed Firewall
Operations Improvements
Multi-Site &
Hybrid Cloud Enablement
Layer 2 VPN , Active-Active DC,
SRM Validation
Firewall Ecosystem
Enablement
LBaaS
UDP support, ecosystem enablement
DDI
DHCP Relay
34
Operations
Consumption
Data Plane
Services
Analytics
Firewall Operations
Tufin, Algosec
35
OpenStack Juno
Data Plane
Services
Operations
Consumption
36
Services
Data Plane
Partner
Integration
Operations
Consumption
37
Agenda
1
Intro to NSX
NSX Momentum
NSX Operations
In closing
CONFIDENTIAL
38
Operationalizing NSX
CONFIDENTIAL
39
NET
1966
SDDC Operator
Enable
Advanced
Analytics
Plug into
Existing Network
Monitoring
Systems
Syslog Integration
40
Operations
Consumption
Data Plane
Services
Analytics
Firewall Operations
Tufin, Algosec
41
Demo
CONFIDENTIAL
42
Demo
CONFIDENTIAL
43
CONFIDENTIAL
44
x86-based bridge
VXLAN
VLAN
Physical Workloads
HW VTEP
VXLAN
VLAN
x86 based
bridging
Ecosystem with
OVSDB
Native NSX
support for
containers
NSX Performance
CONFIDENTIAL
47
NET
1883
Send Throughput in
Gbps
Logical Switching
10
5
0
Send Throughput in
Gbps
64
512
1500
32k
TCP Message Size
64k
15
Firewalling
5
0
64
512
1500
32k
Logical Routing
5
0
64
512
1500
32k
64k
20
10
10
64k
Send throughput
in Gbps
15
15
10
Bridging
0
64
512
1500
32k
64k
48
Agenda
1
Intro to NSX
NSX Momentum
NSX Operations
In closing
CONFIDENTIAL
49
Services
Data Plane
How an end user consumes NSX services via a Cloud Management Platform.
The operator interacts Any
with the system through UI or API.
Partner extensions
Partner
Partner
Integration
Integration
Operations
Operations
Consumption
Consumption
NSX logical services and 3rd party extensions for networking and security (ex. Logical switch , Logical
router, Firewall, Load Balancer, VPN, DDI)
L2 Switch
vSphere
Firewall
L3 Router
NSX Edge
Load Balancer
3rd Party GW
KVM
XenServer
VPN
DDI
Hyper-V
50
PAAS
2-Tier / 3-Tier
Build
Your
Own
Converged
Systems
Containers
...
Leaf / Spine
HyperConverged
Systems
...
Thank You
Whats Next
Play
VMware NSX
Hands-on Labs
labs.hol.vmware.com
VMware Booth #1229
3 NSX Demo Stations
Learn
Deploy
Business Solution
NET1214
NET1745
NET1786
NET2293
Hands-on Labs
SDC-1402
SDC-1403
SDC-1420
SDC-1423
SDC-1424
SDC-1425
CONFIDENTIAL
54
Introduction to NSX
VMware NSX A Technical Deep Dive
NET1957
NET1468
NET1586
NET1560
NET1883
NET1588
NET1401
NET2318
NET1581
NET2379
NET2225
CONFIDENTIAL
55
NET1583
NET1974
NET1674
NET1966
NET1592
NET3444-GD
56
Who Can You Trust? Strategies & Designs for Implementing Zero-Trust Model Leveraging NSX
Security & Micro-Segmentation for the SDDC
SEC1959-S
SEC1958
SEC1698
SEC2567
Unleashing Collaborative Security with VMware NSX Advanced Defense for Advanced Threats
SEC1746
57
How to Perform Troubleshooting and Root Cause Analysis Using Log Insight
Deep Dive into How vCenter Operations Simplifies NSX Operations
MGT1969
CONFIDENTIAL
58
NET1846
Introduction to NSX
Milin Desai, VMware, Inc