EMAIL SUPPORT

dclessons@dclessons.com

LOCATION

NZ

LAB NSX Manager Installation

LAB NSX Manager Installation

Posted on Jan 17, 2020 (0)

LAB NSX Manager Installation

Task:

Configure the Following as per given task:

  • Deploy the NSX Manager OVA over RegionA01-MGMT01 Cluster in ESXi esx-04a.corp.local.
  • Register NSX Manager nsxmgr-01a with vCenter vcsa-01a.corp.local
  • Prepare a vSphere Cluster for NSX and its registration with vCenter.
  • Deploy NSX Controllers (all three specification given in Solution task.
  • Prepare Hosts to install the VIBs and Configure and verify VXLAN Tunnel End Points (VTEPs) and Create VXLAN Network Identifier Pools (VNIs) with range 5000 to 5999.
  • Create Transport Zones
  • View the health of your NSX environment with the NSX Manager Dashboard

Topology:

Deploy the NSX Manager OVA over RegionA01-MGMT01 Cluster in ESXi esx-04a.corp.local.

Login to the vSphere Web Client with valid credential. Here we will deploy NSX Manager over the RegionA01-MGMT01 Cluster.

  • Click on the Hosts and Clusters icon | Right click on RegionA01-MGMT01 cluster and select to Deploy OVF Template.

  • Make sure that you have integrated the VMware Client Plug-in installed locally else you will be prompted to install it before proceeding
  • Click on the Local file radio button and then click the Browse button to select the file.
  • Select NSX Manager OVA File from your local machine which you have downloaded from VMWARE site and then click Open.
  • Click Next to continue further.

Click on the name field and enter nsxmgr-01a, it will be the host name of NSX Manager and then click Next to continue.

  • Expand the RegionA01-MGMT01 cluster and select esx-04a.corp.local ESXi host then click Next to continue further. This may take a sometime as file is validated.

  • Now Click Next to continue further.
  • Now comes the Accept License Agreement section, here click the Accept button then click Next to continue.
  • Use the same virtual disk format which has been set to Thick Provision Lazy Zeroed and the VM Storage Policy set to None.
  • Select and Click on RegionA01-ISCSI01-MGMT01 datastore and then click

  • In the Destination Network field, select the VM-RegionA01-vDS-MGMT network from drop-down menu for the NSX Manager appliance then click Next to continue.

  • Use 192.168.110.10 in the DNS Servers list field and in the Domain Search List, use corp.local
  • Expand the Network properties section and in the Default IPv4 Gateway field, use 192.168.110.1
  • In the Hostname field, use nsxmgr-01a for NSX Manager Hostname.

  • In the Network 1 IPv4 Address filed, use 168.110.42 and Network 1 Netmask, is  255.255.255.0
  • In the Services Configuration information section, Enable SSH to the NSX Manager appliance by clicking the checkbox.
  • In the NTP Server List, we will use router.corp.local as NTP server.

  • Use the following credential XXXXXXX as the password for the default CLI user for NSX Manager.
  • Use the following credential XXXXXXX as the password for the privilege mode user for NSX Manager.
  • Expand the VMware Customer Experience Improvement Program information section.
  • Click on the Scroll bar to move down the configuration page and Click Next to continue to move further.

  • Now once the above configuration is done than Review your configuration settings and click the Finish button it will start deploying the NSX Manager Appliance on selected ESXi host .
  • To verify whether NSX manager is deployed , Click on the Recent Tasks pane icon and verify

NSX Manager Configuration

  • To Power ON the VM, Right click on the nsxmgr-01a virtual machine on vCenter and click Power On.
  • Enter the URL https://192.168.110.42 on Web browser and login in via valid credential.
    • User name - admin
    • Password - XXXXXXX
    • Click Login to continue.

Once NSX Manager is Powered ON, you need to verify that NSX Management services has successfully started. To verify it, Click on the View Summary option.

You will find that following Common components are in a running state:

  • vPostgres
  • RabbitMQ

Also verify that the NSX Management Components are running:

  • NSX Management Service

Click on the Home icon to go back to the main home screen.

NSX Appliance Settings

  • Select the Manage Appliance Settings option from the NSX Manager home screen
  • Now you need to verify the NTP Server settings which was configured at time of NSX Manager Deployment.

  • Click Edit next to Syslog Server to provide log-01a.corp.local as the Syslog Server.
  • Enter 514 port and UDP protocol which will be used by the Syslog Server for communication
  • Click OK to complete and save the settings.

Click on the Home icon to go back to the main home screen.

NSX Manager vCenter Registration

  • On the NSX Manager GUI, Click on the Manage vCenter Registration button to register it with vCenter and EDIT which is next to the Lookup Service to modify the options

  • In the Lookup Service Host field, enter vcsa-01a.corp.local. which is vCenter Information.
  • In the SSO Administrator User Name field, enter administrator@vsphere.local along with XXXXXX in the Password field and then Click OK to accept the options.

  • Once the Verification is done then click Yes to trust the Lookup Service SSL certificate.
  • Now to provide information regarding your vCenter Server Click Edit

  • vcsa-01a.corp.local for the vCenter Server , Username is administrator@vsphere.local for the vCenter and password is XXXXXXX
  • Click OK to accept the options.

  • Once verification is done and to trust the vCenter Server SSL certificate Verify click Yes
  • Now your vCenter Server status shows connected and now click on the Home icon to go back to the main home screen.

Now open the vSphere Web Client tab in Chrome.

  • To manage NSX Click on the Home icon and then select the Networking & Security and then click on the Installation and Upgrade link.

On the NSX Manager Installation and Upgrade page, it contains five tabs.

  • Management – This Tab is used to deploy NSX Controllers, and also configure NSX in a cross vCenter environment.
  • Host Preparation – This tab is used to deploy VMware Infrastructure Bundles (VIBs) to the hosts, also used to Configure VXLAN Tunnel End Points (VTEPs) on the hosts, and perform troubleshooting in case of any issue.
  • Logical Network Settings – It is used to define the VXLAN Network Identifier (VNI) Segment ID pool for VXLAN traffic, used to configure the port used for VXLAN, and to manage Transport Zones.
  • Service Deployments – It is used to manage third Party services if require.
  • Upgrade – This is a new feature added in NSX 6.4, it helps to define an upgrade plan that will manage and automate the installation of NSX software components when an update is available.

When you will see the Management tab of Installation and Upgrade, there are two additional tabs available:

  • NSX Managers – It is used to view all NSX Managers which are linked to each other, and also to configure NSX in a cross vCenter environment.
  • NSX Controller Nodes – It is used to view and deploy the NSX Controller cluster in NSX domain. A deployment of NSX requires three active/active, fault tolerant controller nodes to be deployed.

NSX Controller cluster deployment

  • To do this, click on the NSX Controller Nodes tab of Management and click on the "+ ADD" button.

For NSX Controller deployment we need to configure the appropriate settings

  • Select the NSX Manager - 192.168.110.42 (already selected).
  • Use Credentials for Controller - The NSX Controller requires 12 character password which is only specified for the first controller and all subsequent NSX Controllers will utilize the same password. Enter and confirm the password to be used for the NSX Controller: XXXXXXXXXXXXXX and then Click NEXT.

  • Name of the first Controller - controller-01
  • Datacenter on which it is to be deployed - RegionA01 (already selected).
  • Cluster / Resource Pool on which it will be deployed - Select the RegionA01-MGMT01
  • Datastore for storage - Select the RegionA01-ISCSI01-MGMT01
  • Host - Optionally select a host to deploy the NSX controller to. (no selection needed)
  • Folder - Optionally place the controller into a specific vCenter folder if required. (no selection needed)
  • Click on the Select Network link next to Connected and Select the VM-RegionA01-vDS-MGMT Distributed Port Group and then Click OK to confirm.
  • Select IP Pool link next to Select IP Pool and CREATE NEW IP POOL link with Name - Controller-IP-Pool, use Gateway - 192.168.110.1, Prefix Length – 24 and Primary DNS - 192.168.110.10 along with DNS Suffix - corp.local
  • Below the IP Pool Range section, click the "+ ADD" link to add an IP Pool Range and provide IP address range of 192.168.110.31-192.168.110.33 and press Enter/Return.
  • Click ADD to complete the section and Select the Controller-IP-Pool and click OK.
  • Verify all information is correct, then click FINISH to deploy the first NSX Controller.

As soon as we will complete the above steps the first controller will start deploying and takes approximately 5 - 10 minutes to complete in an actual environment.

Once the first controller has successfully deployed its status shows Connected, and then you can deploy the two additional controllers required for a production NSX environment.

To configure other two NSX Controller, Click on the "+ ADD" button to add another controller and enter the settings as provided below , here you will also notice that for other two additional controllers there is no need to specify a password.  The password used for the first controller is used for all subsequent controllers.

  • NSX Manager - 192.168.110.42 (already selected). Click NEXT , Second Controller Name - controller-02
  • Datacenter - RegionA01 (already selected) and Cluster/Resource Pool - RegionA01-MGMT01
  • Datastore - RegionA01-ISCSI01-MGMT01 and Network Connected To - VM-RegionA01-vDS-MGMT
  • IP Pool - Controller-IP-Pool and Click FINISH to proceed.

Add a third controller by clicking the "+ ADD" button and entering the following information:

  • NSX Manager - 192.168.110.42 (already selected). Click NEXT and Controller Name - controller-03
  • Datacenter - RegionA01 (already selected) and Cluster/Resource Pool - RegionA01-MGMT01
  • Datastore - RegionA01-ISCSI01-MGMT01 and Network Connected To - VM-RegionA01-vDS-MGMT
  • IP Pool - Controller-IP-Pool and Click FINISH to proceed.

Host Preparation

 Click on the Host Preparation tab to deploy NSX components on a per-cluster basis. You cannot prepare a single host within a cluster.

  • Click to select the RegionA01-COMP01 cluster and then click on the Actions button.
  • Click Install. Click YES to confirm the install.

Once you do that VMware Infrastructure Bundles (vibs) will be pushed to all ESXi hosts in the cluster. This deployment take a few minutes to complete. Once it is installed he prepared hosts do not require a reboot.

Once it is done you should verify weather NSX Installation has completed successfully or not. This shows the version of NSX that you are currently deploying, Firewall column shows status of Enabled. And Communication Channels will remain UNKNOWN until setup has been completed.

Next, install the NSX components on the RegionA01-MGMT01 cluster.

  • Click and Highlight the RegionA01-MGMT01 cluster, and Click on the Actions button.
  • Click Install and YES to confirm the install.

As the kernel modules pushed on the hosts in these clusters and are now ready for NSX, Still they are not yet configured for VXLAN and to setup the VXLAN Tunnel End Point (VTEP) vmkNIC ports on each host participating in Logical Networking. Select RegionA01-COMP01 from the list of available clusters.

Click on the Actions button, followed by Configure VXLAN. You can alternately click the CONFIGURE link to the right of the VXLAN "Not Configured" status.

As this is the lab environment, VLAN section will be 0. In an actual deployment, this number would be the VLAN provisioned for the hosts' VTEP interfaces.

For vmkNIC IP Addressing, choose IP Pool, then click the NEW IP POOL link and enter the following information:

  • Name of the VTEP pool : VTEP-Pool-RegionA01 and configure Gateway as: 192.168.130.1 with Prefix Length: 24
  • Primary DNS: 192.168.110.10 and DNS Suffix: corp.local
  • In IP Pool Range section, click the "+ ADD" link to add an IP Pool Range and provide IP address range of 192.168.130.51-192.168.130.56 and press Enter/Return.
  • Click ADD to complete.

  • Select the VTEP-Pool-RegionA01 IP pool. And SAVE to configure VXLAN networking for RegionA01-COMP01.Once completed, select RegionA01-MGMT01 from the list of available clusters.

Repeat this process to configure VXLAN for RegionA01-MGMT01 to configure VTEP

Click the Actions button, and also Configure VXLAN. You can alternately click the CONFIGURE link to the right of the VXLAN "Not Configured" status.

Accept all default values.  Because VTEP-Pool-RegionA01 was defined in the previous step, there is no need to allocate another IP Pool for this cluster.

Click SAVE.

Verifying VXLAN Tunnel End Points (VTEPs)

To verify that the VTEPs have configured IP addresses from POOL or via DHCP , Click the "VIEW DETAILS" link to the right of a host and verify that IP address have been assigned to the hosts (in the vmkNIC IP Addresses field).

Now when all option is done assign a pool of Segment IDs to be used by NSX when provisioning Logical Switches and to do this click on the Logical Network Settings tab.

  • Click the EDIT button to the right of Segment IDs and use 5000-5999 as the range for the Segment ID pool and Click SAVE to confirm.

Create a new Transport Zone

 Click to select the Transport Zones tab to configure Transport Zone

  • Click "+ ADD" to create a new Transport Zone. And provide Name RegionA0-Global-TZ
  • Make sure to select Unicast as Replication Mode.
  • Under Select Clusters, select both clusters RegionA01-COMP01 and RegionA01-MGMT01 and add them to the Transport Zone. Any Logical Switches created in this Transport Zone will automatically be available to the clusters selected here.
  • Click ADD to confirm.

Verify the Transport Zone has been successfully created.


Comment

    You are will be the first.

LEAVE A COMMENT

Please login here to comment.