Course Overview
This training course provides comprehensive insights into VMware NSX and the Virtual Cloud Network, focusing on advanced networking and security virtualization within VMware environments.
Course Objectives
Upon completion of this course, participants will:
Pre-Requisite
To effectively engage with the VMware NSX Install, Configure, Manage course (V4.0), participants typically need to have a foundational understanding of several key areas:
Networking Concepts: Basic understanding of networking protocols (e.g., TCP/IP, VLANs, routing protocols like OSPF and BGP).
Virtualization: Familiarity with virtualization concepts and VMware vSphere.
VMware Infrastructure: Knowledge of VMware vSphere architecture and components.
Linux and Windows Administration: Basic administration skills for both Linux and Windows operating systems.
Security Concepts: General understanding of firewall concepts, security policies, and principles.
Storage Concepts: Basic understanding of storage technologies such as SAN, NAS, and iSCSI.
Scripting and Automation: Familiarity with scripting languages (e.g., PowerShell, Python) is beneficial for automation tasks.
Who Should Attend
Related Certification Exam
VMware Certified Technical Associate - Network Virtualization (VCTA-NV)
Course Modules
Module 1: Course Introduction
- Introductions and course logistics
- Course objectives
Module 2: VMware Virtual Cloud Network and VMware NSX
- VMware Virtual Cloud Network vision
- NSX product portfolio overview
- NSX features, use cases, and benefits
- NSX architecture and components
- Management, control, data, and consumption planes
Module 3: Preparing the NSX Infrastructure
- Deploying VMware NSX Manager nodes
- NSX UI navigation
- Data plane components (N-VDS/VDS, transport nodes, transport zones, profiles)
- Transport node preparation and configuration
- Verifying transport node status and connectivity
- DPU-based acceleration in NSX
Module 4: NSX Logical Switching
- Key components and terminology
- L2 segments and their types
- Tunneling and Geneve encapsulation
- Configuring logical segments
- Segment profiles and their application
- Packet forwarding (MAC, ARP, TEP tables)
- L2 unicast packet flow
- ARP suppression and BUM traffic handling
Module 5: NSX Logical Routing
- Logical routing function and use cases
- Two-tier routing architecture
- Tier-0 and Tier-1 gateway functions
- Service Router and Distributed Router components
- NSX Edge nodes architecture and deployment options
- Configuring NSX Edge nodes and clusters
- Configuring Tier-0 and Tier-1 gateways
- Static and dynamic routing (BGP, OSPF)
- ECMP on Tier-0 gateway
- NSX Edge HA and failover modes
- VRF Lite configuration
Module 6: NSX Bridging
- Logical bridging function and use cases
- Routing vs bridging solutions comparison
- Logical bridging components
- Creating bridge clusters and profiles
Module 7: NSX Firewalls
- NSX segmentation overview
- Zero-Trust with NSX segmentation
- Distributed Firewall architecture and configuration
- Gateway Firewall architecture and configuration
Module 8: NSX Advanced Threat Prevention
- NSX IDS/IPS use cases and configuration
- NSX Application Platform deployment
- NSX Malware Prevention architecture and configuration
- NSX Intelligence and Network Detection and Response architecture and use
Module 9: NSX Services
- Network Address Translation (NAT)
- DNS and DHCP services
- NSX Advanced Load Balancer architecture and configuration
- IPSec VPN and L2 VPN function and configuration
Module 10: NSX User and Role Management
- VMware Identity Manager in NSX
- Integrating VMware Identity Manager and LDAP with NSX
- User types, authentication policies, and permissions
- Role-based and object-based access control in NSX
Module 11: NSX Federation
- Key concepts, terminology, and use cases of NSX Federation
- Onboarding process
- Switching and routing functions in NSX Federation
- Security concepts in NSX Federation
