VMware NSX SSL VPN-Plus allows remote users to access private networks behind a NSX Edge Gateway. You can access applications and servers running in the private network. Below is a diagram is taken from the NSX Admin Guide of the clients connect to the private network and also the...
Continue reading »
Introduction Spoofing also referred to as ARP Spoofing is a practice attacker use to penetrate networks. They spoof legitimate traffic on a network so that it appears to be coming from the trusted source on the network. VMware NSX SpoofGuard keeps track of the ARP addresses to IP...
Continue reading »
Introduction You can configure a VMware NSX edge to relay name resolution requests from clients to external DNS servers. Once configured VMware NSX Edge Services Gateway (ESG) will forward name resolution request from clients to an external DNS Server. An ESG will relay client application requests to the DNS...
Continue reading »
Introduction One of the services that the NSX Edge provides is IP address pooling and one-to-one static IP address allocation and external DNS services. NSX Edge listens to the internal interface for DHCP requests and uses the internal interface IP as the default gateway for clients. In VMware...
Continue reading »
Introduction Dynamic Routing provides the necessary forwarding information between Layer 2 broadcast domains. There are 3 types of Dynamic Routing supported by VMware NSX OSPF, BGP, and IS-IS. NSX Edge supports OSPF, an interior gateway protocol that routes IP packets only within a single routing domain. It gathers link...
Continue reading »
Introduction Logical Switches are no more different than the physical switches in the network. Similar to physical switches, It allows you to create a broadcast domain and isolate the Virtual Machines in the network. Once you create a logical switch is new distributed port group gets added on...
Continue reading »
In the Previous post, We have discussed configuring VXLAN on ESXi hosts. In this post, We will discuss creating Segment Id and transport Zones. You must create a pool of segment ID in an NSX Environment to isolate your network traffic. Introduction to Segment ID Segment ID in an...
Continue reading »
