·         Chapter 1

o   Title: NSX-T and the VMware SDDC ecosystem

o   Chapter Goal: Provide information on the SDDC and what the position is of NSX-T.

o   Number of Pages: 5

o   Subtopics:

§  The VMware’s SDDC ecosystem

§  Storage

§  Software Defined Networking

·         Chapter 2

o   Title: An Introduction to NSX-T

o   Chapter Goal: Provide information on the product, the problem that can be solved and use-cases that can be satisfied.

o   Number of Pages: 10

o   Subtopics:

§  NSX-T Use Cases

·         Chapter 3

o   Title: The NSX-T installation on a vSphere environment

o   Number of Pages: 20

§  NSX-T Installation Planning & Prerequisites

§  NSX-T Manager Installation

§  Edge Transport Installation (VM)

§  Edge Transport Installation (BM)

§  Host Transport Node Installation (ESXi)

·         Chapter 4

o   Title: Tier-0 Gateways

o   Chapter Goal: Configure North/South Routing using the T0 Gateway with different kind of features.

o   Number of Pages: 20

o   Subtopics:

§  Deploy a T0 Gateway

§  Configure Routing

§  Configure Multicast

§  IPv6 Routing

§  T0 High Availability

§  VRF Deployment

§  EVPN Deployment

·         Chapter 5

o   Title: Tier-1 Gateways

o   Chapter Goal: Create and Configure T1 Gateways.

o   Number of Pages: 5

o   Subtopics:

§  Deploy a T0 Gateway

·         Chapter 6

o   Title: Segments

o   Chapter Goal: Create and Configure L2 Segments with various service capabilities.

o   Subtopics:

§  Attach segments

§  DHCP & DHCP Static Binds

§  L2 Bridging

§  Add a Metadata Proxy Server

·         Chapter 7

o   Title: Host Switches

o   Number of Pages: 5

§  NSX-T with the vSphere Distributed Switch

§  NSX-T N-VDS

§  Enhanced Networking Stack

Chapter 8

o   Title: Virtual Private Network (VPN)

o   Chapter Goal: Know the differ types of VPN and how to configure and monitor them.

o   Subtopics:

§  IPSEC (L3 VPN)

§  L2 VPN

§  Configuration of VPN

·         L3

·         L4

§  Monitoring of VPN sessions

·         Chapter 9

o   Title: Network Address Translation (NAT)

o   Chapter Goal: Know the difference between SNAT and DNAT and explanation on how to configure NAT.

o   Number of Pages: 5

o   Subtopics:

§  SNAT

§  DNAT

§  Configure NAT Services

·         Chapter 10

o   Title: Load Balancing (LB)

o   Chapter Goal: Discuss Load Balancing capabilities and configuration.

o   Subtopics:

§  Load Balancing Concepts

§  Distributed Load Balancer

§  Setting up the Load Balancer Components

·         Chapter 11

o   Title: IP Address Management (IPAM)

o   Chapter Goal: DNS and DHCP IP address Management using the internal NSX-T Tools.

o   Subtopics:

§  DNS Zone

§  DNS Forwarding Zone

§  DHCP Profile

§  IP Address Pool

§  IP Address Block

·         Chapter 12

o   Title: Network Settings

o   Chapter Goal: Getting to know the Network setting that can be configured  to finetune your network services.

o   Number of Pages: 10

o   Subtopics:

§  VNI Pools

§  Gateway Settings

§  Gateway QoS Profile

§  BFD Profile

§  IP Discovery Profiles

§  MAC Discovery Profiles

·         Chapter 13

o   Title: Security

o   Chapter Goal: The theory about the Security Services offered by NSX-T followed by the deployment’s details and steps with proper verification.

o   Number of Pages: 35

o   Subtopics:

§  Identity based Firewall

§  Layer-7 Context Profiles

§  Distributed Firewall

§  Distributed IDS

§  East/West Third-party service insertion

§  North/South Third-party service insertion

§  Security Profiles

§  Time-Based Firewall Policy

§  Network Introspection Settings

§  End-Point Protection

§  Bare Metal Server Security

·         Chapter 14

o   Title: Multi-Site

o   Number of Pages: 30

§  Multi-Site Capabilities

§  NSX-T Federation overview

§  Networking with Federation

§  Security with Federation

§  Backup & Restore with Federation

·         Chapter 15

o   Title: System Operations

o   Number of Pages: 15

§  Monitoring / Events and Alarms

§  Logging

§  vRealize Log insight integration

§  vRealize Operations integration

§  Other Operation Tools Integration

·         Chapter 16

o   Title: Network Operations  

o   Chapter Goal: Tools to verify the Routing and Routing performance.

o   Number of Pages: 10

o   Subtopics:

§  Network Monitoring

§  Logging

§  vRealize Network insight integration

§  Network Performance Testing using IPERF Tools

·         Chapter 17

o   Title: Authentication and Authorization

o   Number of Pages: 5

§  vIDM Integration & LDAP Integration

§  LDAP only integration

§  RBAC

·         Chapter 18

o   Title: Public Cloud Integration

o   Number of Pages: 10

o   Subtopics:

§  Forwarding Policies

§  Azure VMware Solution (AVS)

§  Google Cloud VMware Engine

·         Chapter 19

o   Title: Automation

o   Chapter Goal: Get familiar on the out-of-the-box automation capabilities and vRO extensibility.

o   Subtopics:

§  vCloud Director

·         Allowing Tenants to Create / Use NSX-T Related automated network and security Services

§  vRealize Automation / vRealize Orchestration

·         Allowing Tenants to Create / Use NSX-T Related automated network and security Services

§  NSX-T API Capabilities

Iwan Hoogendoorn started his IT career in 1999 as a help desk agent. He began learning Microsoft products and obtained MCP, MCSA, MCDBA, and MCSE certifications.

While working as a Microsoft Systems Engineer, he developed additional skills and knowledge in computer networking with Cisco products. He dreamed of working for Cisco but first needed to finish his bachelor's degree in ICT, which he completed in 2009.

In 2010, Iwan began working for his dream company, Cisco. After finishing his master's degree in computer science at the University of Amsterdam and becoming a CCIE (#13084) in six different technology areas, he wanted to learn something new and network virtualization was the next logical step.

Iwan decided to learn VMware NSX and got the opportunity to work for VMware in 2016 as a Senior NSX PSO Consultant. In his time at VMware, he gained more knowledge on private and public clouds and the related products that VMware developed to build the Software-Defined Data Center (SDDC).

After working for four years as a Senior NSX PSO Consultant (primarily with VMware NSX-v and NSX-T), Iwan was promoted to Staff SDDC Consultant focusing on the full SDDC stack, including Hyperscaler offerings on public clouds such as AWS (VMC on AWS), Microsoft (Azure VMware Solution), and Google (Google Cloud VMware Engine).

Iwan is certified on multiple VMware products, including NSX, and is actively working with VMware certification to develop network-related exams for VMware. He is also AWS and TOGAF certified.

This primer on NSX-T helps you understand the capabilities and features of NSX-T, how to configure and manage NSX-T, and integrate NSX-T with other software. The book is the first in a series that will teach you the basics of NSX-T, which is an update of VMware's original software-defined networking (SDN) architecture aimed at making networks agile and flexible.

You will become familiar with VMware's software-defined data center (SDDC) ecosystem and how NSX-T fits in. You will understand NSX-T components such as NSX-T Manager, NSX-T Edge Transport Nodes, and NSX-T Host Transport Nodes. And you will learn how to install and configure network services such as East/West and North/South routing capabilities, layer two switching, VRF, EVPN, multicast, and layer two bridging.

The book provides best practices on how to configure routing and switching features, and teaches you how to get the required visibility of not only your NSX-T platform but also your NSX-T-enabled network infrastructure.  

The book explains security, advanced network features, and multi-site capabilities and demonstrates how network and security services can be offered across multiple on-premise locations with a single pane of glass for networking and security policy management. The interface with public cloud services is discussed and the book explains NSX-T operation in an on-premise private cloud and positioning and integrating NSX-T on a public cloud (off premises).

You will:

• Understand how NSX-T fits in the VMware SDDC ecosystem
• Know what NSX-T is, its components, and the terminology used
• Install NSX-T
• Configure NSX-T network services
• Manage the NSX-T network