Your Browser is Out of Date

Nytro.ai uses technology that works best in other browsers.
For a full experience use one of the browsers below
Planning Guide—VMware Cloud Foundation 4.x on VxRail
Executive Summary VMware Cloud Foundation on VxRail VMware Cloud Foundation on VxRail Requirements and Use Cases VMware Cloud Foundation on VxRail Workload Domain Planning Data Center and Network Requirements Cloud Foundation on VxRail High-Level Design Cloud Foundation on VxRail Workload Planning Application Dependencies and Routing Decisions Cloud Foundation on VxRail Physical Network Planning Cloud Foundation on VxRail Physical Network Preparation
Introduction
Capture configuration settings for Cloud Foundation on VxRail
VxRail cluster and NSX-T networks leaf switch preparation
DHCP services for NSX-T host overlay network preparation
Leaf switch preparation for NSX-T edge
Layer 3 network preparation
BGP peering preparation
VxRail Cluster Deployment Preparation Prepare for VMware Cloud Foundation Management VI Workload Domain Prepare for Cloud Foundation VI Workload Domain Prepare for NSX-T Edge Gateway Services Prepare for Cloud Foundation Application Virtual Network Appendixes

BGP peering preparation

BGP peering preparation

  • Border Gateway Protocol (BGP) services on the Layer 2-3 network boundary should be configured before the initial deployment of Cloud Foundation on VxRail. Neighbor relationships upstream should be established to enable connectivity to required data center services and end-users, and to the external Dell Technologies and VMware support sites.

    The tables in Appendix G: Edge Gateway configuration provide guidance on the settings that must be captured to enable BGP peering with the NSX-T Tier-0 gateways for the Application Virtual Network.

    Figure 47.    BGP relationship between NSX-T Edge Gateways and external routers

    During the Cloud Builder deployment process, the NSX-T edge devices required for AVN must be able to establish an eBGP peer relationship with upstream routing services. The following tasks must be completed on the upstream switches to enable peering with the NSX-T Edge Tier-0 gateways:

    1. BGP is configured on each router instance.
      1. Configure BGP with a common Autonomous System Number (ASN) on the network devices targeted for peering with the NSX-T edge gateways.
      2. Configure the IP prefix list to allow passage of all networks between the physical and virtual networks.
    1. Configure two eBGP neighbors on first router instance.
      1. Configure the IP address assigned to the first uplink on the first NSX-T edge device for peering. This IP address is assigned to the first NSX-T edge uplink VLAN.
      2. Configure the IP address assigned to the first uplink on the second NSX-T edge device for peering. This uplink will also be assigned to the first NSX-T edge uplink VLAN.
      3. Configure the timer ‘keepalive’ value is to 4 and the timer ‘holdtime’ value to 12.
      4. Configure a password on the neighbor instance. This password is captured and configured on the adjacent NSX-T Tier-O gateways.
      5. Configure the internal ASN value assigned to the NSX-T edge devices.
    2. Configure two eBGP neighbors on second router instance.
      1. Configure the IP address assigned to the second uplink on the first NSX-T edge device for peering. This IP address is assigned to the second NSX-T edge uplink VLAN.
      2. Configure the IP address assigned to the second uplink on the second NSX-T edge device for peering. This uplink will also be assigned to the second NSX-T edge uplink VLAN.
      3. Configure the timer ‘keepalive’ value is to 4 and the timer ‘holdtime’ value to 12.
      4. Configure a password on the neighbor instance. This password is captured and configured on the adjacent NSX-T Tier-0 gateways.
      5. Configure the internal ASN value assigned to the NSX-T edge devices.
    3. Configure a VLAN to match the VLAN assigned to the uplinks on the NSX-T Tier-0 Gateways on each router instance.
    4. Configure a gateway IP address for the VLAN assigned to the uplinks on the NSX-T Tier-0 Gateways on each router instance.

    If the AVN option is selected during the deployment of the Cloud Foundation management workload domain, the Cloud Builder process performs the following tasks:

    • If a separate virtual distributed switch is planned to support NSX-T traffic, it is configured on the VxRail cluster.
    • The first uplink is assigned to the first VMnic reserved for NSX-T traffic.
    • The second uplink is assigned to the second VMnic reserved for NSX-T traffic.
    • Two portgroups for the NSX-T edge nodes are configured on the virtual distributed switch supporting NSX-T in the management workload domain.
    • The first uplink is active on the first portgroup, and the second uplink is on standby.
    • The second uplink is active on the first portgroup, and the first uplink is on standby. 
    • Two NSX-T edge node virtual appliances are configured in the management domain with three virtual network adapters, forming the edge cluster.
    • One virtual network adapter connects to the management network
    • The other two virtual network adapters are connected to the two portgroups configured for NSX-T edge nodes respectively.
    • Two IP addresses are assigned to each node for the tunnel endpoints (TEP) to enable connectivity to the NSX-T edge overlay network. 
    • Two NSX-T edge gateway instances are configured in the edge cluster.
    • An Autonomous System Number (ASN) is assigned to the NSX-T edge gateways.
    • The BGP timers and passwords (if applicable) are configured.
    • An IP address is assigned to each instance to enable BGP peering with the first external router using the first NSX-T edge uplink network.
    • An IP address is assigned to each instance to enable BGP peering with the second external router using the second NSX-T edge uplink network.
    • Internal Border Gateway Protocol (iBGP) services are enabled on the NSX-T edge gateways for connectivity with downstream NSX-T logical routing services.

    The sample switch configuration syntax displayed in Appendix I: Sample switch configuration settings provides guidance on how to configure an Ethernet switch for peering with a pair of Edge Gateways.