VLANs and network addressing used for VCF on VxRail should be planned before starting switch configuration. The following table shows the in-band VLANs and networks used for the deployment example.
VLAN ID1 | Description | Network1 | Gateway | VxRail host ports2 |
1 | m01 VxRail cluster-build | 192.168.10.0/24 (VxRail default) | None | Untagged |
3939 | VxRail internal management/node discovery | IPv6 multicast | None | Tagged |
1811 | m01 external management | 172.18.11.0/24 | 172.18.11.254 | Tagged |
1812 | m01 vMotion | 172.18.12.0/24 | None | Tagged |
1813 | m01 vSAN | 172.18.13.0/24 | None | Tagged |
2500 | m01 NSX host overlay | 172.25.101.0/24 | 172.25.101.254 | Tagged |
2711 | m01 NSX edge uplink 1 3 | 172.27.11.0/24 | None | Tagged |
2712 | m01 NSX edge uplink 2 3 | 172.27.12.0/24 | None | Tagged |
2713 | m01 NSX edge overlay 3 | 172.27.13.0/24 | 172.27.13.254 | Tagged |
1821 | w01 external management | 172.18.21.0/24 | 172.18.21.254 | Tagged |
1822 | w01 vMotion | 172.18.22.0/24 | None | Tagged |
1823 | w01 vSAN | 172.18.23.0/24 | None | Tagged |
2600 | w01 NSX host overlay | 172.26.101.0/24 | 172.26.101.254 | Tagged |
2721 | w01 NSX edge uplink 1 3 | 172.27.21.0/24 | None | Tagged |
2722 | w01 NSX edge uplink 2 3 | 172.27.22.0/24 | None | Tagged |
2723 | w01 NSX edge overlay 3 | 172.27.23.0/24 | 172.27.23.254 | Tagged |
1 The VLAN IDs and network addresses shown in the table are examples only with the following exceptions: VLAN 3939 is the default VxRail VLAN for node discovery. 192.168.10.200/24 is the default IP address for the VxRail deployment wizard. See your VxRail documentation to change either of these items.
2 Untagged ports are also called access ports. Tagged ports are also called trunk ports.
3 Required only if NSX edges will be used in the domain.
VLANs in the table above with "m01" in the description are for devices in the management domain. VLANs with "w01" in the description are for devices in the first workload domain. Nodes in both domains share VLAN 3939. Each additional workload domain requires a unique set of VLANs and networks for External Management, vMotion, vSAN, and NSX.
The m01 VxRail cluster-build VLAN (VLAN 1 in this example) is used for initial access to VxRail Manager for deployment of the management cluster from a jump host. VxRail Manager uses VLAN 3939 to discover VxRail nodes. The external management VLAN is used for VxRail Manager, VxRail host management, vCenter Server, SDDC Manager, NSX Manager, DNS, and NTP traffic. The vMotion VLAN is for VM migration, and the vSAN VLAN is for distributed storage traffic.
An NSX host overlay network is required for each domain. NSX host TEP addresses are on the overlay network. If NSX edges are used in a domain, the NSX edge overlay and NSX edge uplink networks shown in the table for that domain are also required. The edge overlay network is used for the NSX edge TEP addresses. The edge uplink networks are used for BGP peering with the leaf switches.