Understanding Cross-vCenter NSX Multi-Site and Single Site Architecture

cross-vCenter NSX environment allows you to use the same logical switches and other network objects across multiple vCenter NSX setups. The vCenters can be located in the same site, or in different sites.

cross vcenter

Whether the cross-vCenter NSX environment is contained within a single site or crosses multiple sites, a similar configuration can be used. These two example topologies consist of the following:

  • A universal transport zone that includes all clusters in the site or sites.

  • Universal logical switches attached to the universal transport zone. Two universal logical switches are used to connect VMs and one is used as a

Read The Rest ......

What are the NSX Components


cloud management platform (CMP) is not a component of NSX, but NSX provides integration into virtually any CMP via the REST API and out-of-the-box integration with VMware CMPs.

Read The Rest ......

What is Consumption Platform

The consumption of NSX can be driven directly through the NSX Manager user interface, which is available in the vSphere Web Client. Typically end users tie network virtualization to their cloud management platform for deploying applications. NSX provides rich integration into virtually any CMP through REST APIs. Out-of-the-box integration is also available through VMware vCloud Automation Center, vCloud Director, and OpenStack with the Neutron plug-in for NSX.

What is Management Plane

The NSX management plane is built by the NSX Manager, the centralized network management component of NSX. It provides the single point of configuration and REST API entry-points.

The NSX Manager is installed as a virtual appliance on any ESX™ host in your vCenter Server environment. NSX Manager and vCenter have a one-to-one relationship. For every instance of NSX Manager, there is one vCenter Server. This is true even in a cross-vCenter NSX environment.

In a cross-vCenter NSX environment, there is both a primary NSX Manager and one or more secondary NSX Managers. The primary NSX Manager allows you to … Read The Rest ......

What is Control Plane

The NSX control plane runs in the NSX Controller cluster. NSX Controller is an advanced distributed state management system that provides control plane functions for NSX logical switching and routing functions. It is the central control point for all logical switches within a network and maintains information about all hosts, logical switches (VXLANs), and distributed logical routers.

The controller cluster is responsible for managing the distributed switching and routing modules in the hypervisors. The controller does not have any dataplane traffic passing through it. Controller nodes are deployed in a cluster of three members to enable high-availability and scale. Any … Read The Rest ......

What is Data Plane

The NSX data plane consists of the NSX vSwitch, which is based on the vSphere Distributed Switch (VDS) with additional components to enable services. NSX kernel modules, userspace agents, configuration files, and install scripts are packaged in VIBs and run within the hypervisor kernel to provide services such as distributed routing and logical firewall and to enable VXLAN bridging capabilities.

The NSX vSwitch (vDS-based) abstracts the physical network and provides access-level switching in the hypervisor. It is central to network virtualization because it enables logical networks that are independent of physical constructs, such as VLANs. Some of the benefits of … Read The Rest ......

How to Exclude Virtual Machines from NSX Manager Firewall Protection



NSX Manager, NSX Controllers, and NSX Edge virtual machines are automatically excluded from NSX distributed firewall protection. In addition, VMware recommends that you place the following service virtual machines in the Exclusion List to allow traffic to flow freely.

  • vCenter Server. It can be moved into a cluster that is protected by Firewall, but it must already exist in the exclusion list to avoid connectivity issues.

  • Partner service virtual machines.

  • Virtual machines that require promiscuous mode. If these virtual machines are protected by NSX distributed firewall, their performance may be adversely affected.

  • The SQL server that your Windows-based vCenter

Read The Rest ......

Configure a Syslog Server For NSX

NSX Manager sends all audit logs and system events to the syslog server.Lets configure the Syslog here.


Syslog data is useful for troubleshooting and reviewing data logged during installation and configuration.

NSX Edge supports two syslog servers. NSX Manager and NSX Controllers support one syslog server.

  1. In a Web browser, navigate to the NSX Manager appliance GUI at https://<nsx-manager-ip> or https://<nsx-manager-hostname>.
  2. Log in as admin with the password that you configured during NSX Manager installation.
  3. Click Manage Appliance Settings.


  4. From the Settings panel, click General.
  5. Click Edit next to Syslog Server.
  6. Type the IP address or hostname,
Read The Rest ......

Basic esxcli Commands For vSAN Troubleshooting

images (3)

There are some very basic commands which are really useful in troubleshoting.

Use below esxcli commands to obtain information about Virtual SAN and to troubleshoot your Virtual SAN environment.



esxcli vsan network list

Verify which VMkernel adapters are used for Virtual SAN communication.

esxcli vsan storage list

List storage disks that were claimed by Virtual SAN.

esxcli vsan cluster get

Get Virtual SAN cluster information.

What is Virtual SAN Cluster Rebalancing

When any capacity device in your cluster reaches 80 percent utilization, Virtual SAN automatically rebalances the cluster, until the utilization of all capacity devices is below the threshold.


Cluster rebalancing evenly distributes resources across the cluster to maintain consistent performance and availability.

Other operations can initiate cluster rebalancing:

  • If Virtual SAN detects hardware failures on the cluster

  • If Virtual SAN hosts are placed in maintenance mode with the Full data migration option

  • If Virtual SAN hosts are placed in maintenance mode with Ensure accessibility when objects assigned FTT=0 reside on the host.

To provide enough space for maintenance and reprotection,

Read The Rest ......