NSX-T Part 10: Configure N-S Routing

In the previous part, we have setup the T1 router and connected all the logical switches with its gateway configured on it. In this part after the Edges are deployed, we will be configuring the N-S routing for VMs to reach the external network.

nsxt10-1

We have just the T1 router currently available, now we will start with configuring the T0 router.

nsxt10-2

nsxt10-3

I have deployed it in Active-standy state as I will be using this setup for future deployment of PKS or Kubernetes.

nsxt10-4

Next, I connected the T1 router to T0 router.

nsxt10-5

As seen below, now the T1 router is connected to T0 router.

nsxt10-6

Next is to connect the Edges upstream to the VLAN network. In the previously setup, we had the VLAN-TZ setup and now we are first adding a VLAN backed logical switch for upstream connecting. As the lab is in a nested environment , VLAN 0 does fine šŸ™‚

nsxt10-7

Quick summary of the T0 router below.

nsxt10-8

Next, is to connect the edges upstream with the VLAN logical switch and thus we need to configure the router ports on the T0 router on the below screen.

nsxt10-9

Below is the configuration output from the VYOS router which is being used for both my NSX-V and NSX-T environment.

nsxt10-10

Created a new Router port in the below screen, with the ip address used on the same L2 network

nsxt10-11

Similarly, we configured two router ports as we will be using BGP routing between the VYOS router and edges. We already know that on the standby edge , NSX automatically prepends the AS-Path to make it a less preferred route and thus no changes are required on the upstream router.

nsxt10-12

Below we do the BGP configuration .

nsxt10-13

nsxt10-14nsxt10-15

Similarly, we configure the routing for each edge router port.

nsxt10-16

Next, is to advertise the T1 routes upstream which is the all connected routes.

nsxt10-17

nsxt10-18

Quick recap on the logical networks connected to T1.

nsxt10-19

Next step is to validate the routes on the Active Edge. Firstly, we get the logical router available.

nsxt10-20

Login to the specific T0 SR component (as SR is responsible for routing N-S)

nsxt10-21

Check the routes, and we see that upstream and NSX-V environment routes are learnt through the VYOS router.

nsxt10-22

Below is the neighbor summary of the VYOS router.

nsxt10-23

This completes the NSX-T setup configuration. In future, I am planning to upgrade this setup to NSX-T 2.4.x release , as there are additional features available on the same.

Hope, this 10 part series was helpful.

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s