Cloud Foundation supports a network flexible architecture. Customers can choose switches that meet their organization’s standard and scalability requirements. There is also increased flexibility in network configurations permitting customers to configure VLANs and other settings without fear of disrupting SDDC Manager’s automation or configuration. SDDC Manager does not require access to the physical network layer. Switches are manually configured by the customer’s network team or by the professional services engineer, if this part of implementation is also covered with a custom services engagement.
There are multiple Cloud Foundation on VxRail network topology options. The choice of topology design will depend on desired outcomes. The most common network topology for Cloud Foundation on VxRail will follow a standard spine-leaf architecture. Decisions need to be made on where the VLANs from Cloud Foundation workload domains will terminate in the supporting physical network layer. Decisions must also be made for the layer 2/layer 3 boundary in multi-rack deployments of Cloud Foundation on VxRail.
Some example physical network topology designs are shown in Figure 22.For more detailed documentation on network design options, please refer to the VxRail Network Planning Guide and Architecture Guides as well as Dell EMC Networking Guides on the VxRail Knowledge Center and Dell EMC support portal (links provided in Appendix A).
As of VxRail 4.7.300, VxRail node networks for a cluster spanning additional racks can share same IP subnet (non-routable) or assigned a different IP subnet (routable). This provides even more network configuration flexibility for customers.
The foundation of the network virtualization layer for VMware Cloud Foundation on VxRail is provided by NSX-V or NSX-T. Currently, the Management domain only supports NSX-V but the VI WLD domains can use either NSX-V or NSX-T. These solutions provide a software-defined networking approach that delivers Layer 2 to Layer 7 networking services (e.g., switching, routing, firewalling, and load balancing) in software. These services can then be programmatically assembled in any arbitrary combination, producing unique, isolated virtual networks in a matter of seconds. NSX-T is considered the next generation virtual network platform and provides additional features that NSX-V does not provide. For Multi-Cloud connectivity and security, NSX-T should be deployed in the VI WLD as NSX-V has no multi-cloud support. NSX-T provides native support for Kubernetes, PKS and Cloud Native applications.
To learn more about Cloud Foundation on VxRail network architecture, including NSX-V and NSX-T, please consult VMware Cloud Foundation on VxRail Architecture Guide (link provided in Appendix A).