0%

Book Description

A clear, comprehensive guide to VMwares latest virtualization solution

Mastering VMware NSX for vSphere is the ultimate guide to VMware’s network security virtualization platform. Written by a rock star in the VMware community, this book offers invaluable guidance and crucial reference for every facet of NSX, with clear explanations that go far beyond the public documentation. Coverage includes NSX architecture, controllers, and edges; preparation and deployment; logical switches; VLANS and VXLANS; logical routers; virtualization; edge network services; firewall security; and much more to help you take full advantage of the platform’s many features.

More and more organizations are recognizing both the need for stronger network security and the powerful solution that is NSX; usage has doubled in the past year alone, and that trend is projected to grow—and these organizations need qualified professionals who know how to work effectively with the NSX platform. This book covers everything you need to know to exploit the platform’s full functionality so you can:

  • Step up security at the application level
  • Automate security and networking services
  • Streamline infrastructure for better continuity
  • Improve compliance by isolating systems that handle sensitive data

VMware’s NSX provides advanced security tools at a lower cost than traditional networking. As server virtualization has already become a de facto standard in many circles, network virtualization will follow quickly—and NSX positions VMware in the lead the way vSphere won the servers. NSX allows you to boost security at a granular level, streamline compliance, and build a more robust defense against the sort of problems that make headlines. Mastering VMware NSX for vSphere helps you get up to speed quickly and put this powerful platform to work for your organization.

Table of Contents

  1. Cover
  2. Introduction
    1. What Does This Book Cover?
    2. Additional Resources
  3. Chapter 1: Abstracting Network and Security
    1. Networks: 1990s
    2. Data Centers Come of Age
    3. VMware
    4. Virtualize Away
    5. The Bottom Line
  4. Chapter 2: NSX Architecture and Requirements
    1. NSX Network Virtualization
    2. Competitive Advantage: IOChain
    3. NSX Role-Based Access Control
    4. The Bottom Line
  5. Chapter 3: Preparing NSX
    1. NSX Manager Prerequisites
    2. Installing NSX Manager
    3. Linking Multiple NSX Managers Together (Cross-vCenter NSX)
    4. Creating a Universal Transport Zone on the Primary NSX Manager
    5. The Bottom Line
  6. Chapter 4: Distributed Logical Switch
    1. vSphere Standard Switch (vSS)
    2. Virtual Distributed Switch (vDS)
    3. Virtual eXtensible LANs (VXLANs)
    4. Employing Logical Switches
    5. Three Tables That Store VNI Information
    6. We Might as Well Talk about ARP Now
    7. Understanding Broadcast, Unknown Unicast, and Multicast
    8. The Bottom Line
  7. Chapter 5: Marrying VLANs and VXLANs
    1. Shotgun Wedding: Layer 2 Bridge
    2. Hardware Switches to the Rescue
    3. The Bottom Line
  8. Chapter 6: Distributed Logical Router
    1. Distributed Logical Router (DLR)
    2. Control Plane Smarts
    3. Let's Get Smart about Routing
    4. Deploying Distributed Logical Routers
    5. The Bottom Line
  9. Chapter 7: NFV: Routing with NSX Edges
    1. Network Function Virtualization: NSX Has It Too
    2. Let's Do Routing Like We Always Do
    3. Routing with the DLR and ESG
    4. The Bottom Line
  10. Chapter 8: More NVF: NSX Edge Services Gateway
    1. ESG Network Placement
    2. Network Address Translation
    3. ESG Load Balancer
    4. Configuring an ESG Load Balancer
    5. Layer 2 VPN (If You Must)
    6. Secure Sockets Layer Virtual Private Network
    7. Internet Protocol Security VPN
    8. Round Up of Other Services
    9. The Bottom Line
  11. Chapter 9: NSX Security, the Money Maker
    1. Traditional Router ACL Firewall
    2. I Told You about the IOChain
    3. Adding DFW Rules
    4. Why Is My Traffic Getting Blocked?
    5. Distributing Firewall Rules to Each ESXi Host: What's Happening?
    6. The Bottom Line
  12. Chapter 10: Service Composer and Third-Party Appliances
    1. Security Groups
    2. Service Insertion
    3. Service Insertion Providers
    4. Security Policies
    5. The Bottom Line
    6. Note
  13. Chapter 11: vRealize Automation and REST APIs
    1. vRealize Automation Features
    2. vRA Editions
    3. Integrating vRA and NSX
    4. vRealize Orchestrator Workflows
    5. Deploying a Blueprint that Consumes NSX Services
    6. REST APIs
    7. The Bottom Line
  14. Appendix: The Bottom LineThe Bottom Line
    1. Chapter 1: Abstracting Network and Security
    2. Chapter 2: NSX Architecture and Requirements
    3. Chapter 3: Preparing NSX
    4. Chapter 4: Distributed Logical Switch
    5. Chapter 5: Marrying VLANs and VXLANs
    6. Chapter 6: Distributed Logical Router
    7. Chapter 7: NFV: Routing with NSX Edges
    8. Chapter 8: More NVF: NSX Edge Services Gateway
    9. Chapter 9: NSX Security, the Money Maker
    10. Chapter 10: Service Composer and Third-Party Appliances
    11. Chapter 11: vRealize Automation and REST APIs
  15. Index
  16. End User License Agreement
18.207.161.212