VMware NSX: Design (V4) Training | Master Network Security

VMware NSX : Design (V4)

The VMware NSX : Design (V4) course is a comprehensive program aimed at equipping learners with the knowledge and skills to design an NSX-based data center networking infrastructure. It covers key design concepts, the NSX architecture, components, and both logical and physical aspects of network design. The course offers a deep dive into NSX Edge design, Logical switching and routing, security, network services, and considerations for the physical infrastructure. It also addresses Multi-location designs and optimization, including DPU-Based Acceleration for improved performance. By the end of the course, participants will be able to translate customer requirements into a scalable, secure, and manageable design that leverages the full capabilities of VMware NSX. Additionally, it covers the integration of VMware Cloud Foundation in NSX design, which is pivotal for creating a seamless hybrid cloud environment. Those who complete this course will be well-prepared to design NSX environments effectively, ensuring they meet both current and future business needs.

Course Objectives

By the end of the course, you should be able to:

Describe and apply a design framework.
Apply a design process for gathering requirements, constraints, assumptions, and risks.
Design a VMware vSphere® virtual data center to support NSX requirements.
Create a VMware NSX® Manager™ cluster design.
Create a VMware NSX® Edge™ cluster design to support traffic and service requirements in NSX.
Design logical switching and routing.
Recognize NSX security best practices.
Design logical network services.
Design a physical network to support network virtualization in a software-defined data center.
Create a design to support the NSX infrastructure across multiple sites.
Describe the factors that drive performance in NSX.

Who Can Benefit

Network and security architects
Consultants who design enterprise and data center networks
Professionals involved in NSX environments

Prerequisites

Before taking this course, you must complete the following course:

VMware NSX: Install, Configure, Manage [V4.0]

You should also have an understanding or knowledge of these technologies:

Good understanding of TCP/IP services and protocols.
Knowledge and working experience of computer networking and security, including:
- Switching and routing technologies (L2 and L3).
- Network and application delivery services (L4 through L7).
- Firewalling (L4 through L7).
- vSphere environments.

Course Outline:

1. Course Introduction

Introduction and Course Logistics: Overview of participants, course structure, and logistical details.
Course Objectives: Define the key learning outcomes and skills participants will acquire by the end of the course.

2. NSX Design Concepts

Identify Design Terms: Familiarization with essential NSX design terminology.
Describe Framework and Project Methodology: Overview of the framework and methodologies utilized in NSX design projects.
Describe the Role of VMware Cloud Foundation™ in NSX Design: Understanding how VMware Cloud Foundation integrates with NSX design.
Identify Customers’ Requirements, Assumptions, Constraints, and Risks: Techniques for gathering and analyzing customer requirements.
Explain the Conceptual Design: Overview of conceptual design principles in NSX.
Explain the Logical Design: Understanding the components and considerations of logical design.
Explain the Physical Design: Overview of physical design elements in NSX.

3. NSX Architecture and Components

Recognize the Main Elements in the NSX Architecture: Identification of core NSX architecture components.
Describe the NSX Management Cluster and the Management Plane: Overview of the management cluster and its functions.
Identify the Functions and Components of Management, Control, and Data Planes: Understanding the roles of different planes in NSX architecture.
Describe the NSX Manager Sizing Options: Guidelines for sizing NSX Manager based on deployment needs.
Recognize the Justification and Implication of NSX Manager Cluster Design Decisions: Analyzing design decisions for NSX Manager clustering.
Identify the NSX Management Cluster Design Options: Exploring various design options for management clusters.

4. NSX Edge Design

Explain the Leading Practices for Edge Design: Best practices for designing NSX Edge environments.
Describe the NSX Edge VM Reference Designs: Overview of virtual machine reference designs for NSX Edge.
Describe the Bare-Metal NSX Edge Reference Designs: Understanding bare-metal design approaches for NSX Edge.
Explain the Leading Practices for Edge Cluster Design: Best practices for structuring edge clusters.
Explain the Effect of Stateful Services Placement: Impact of service placement on edge performance.
Explain the Growth Patterns for Edge Clusters: Understanding how edge clusters can scale.
Identify Design Considerations When Using L2 Bridging Services: Key factors to consider when implementing L2 bridging.

5. NSX Logical Switching Design

Describe Concepts and Terminology in Logical Switching: Overview of logical switching fundamentals.
Identify Segment and Transport Zone Design Considerations: Design considerations for segments and transport zones.
Identify Virtual Switch Design Considerations: Key aspects of designing virtual switches.
Identify Uplink Profile and Transport Node Profile Design Considerations: Guidelines for uplink and transport node profiles.
Identify Geneve Tunneling Design Considerations: Understanding Geneve tunneling in NSX.
Identify BUM Replication Mode Design Considerations: Considerations for Broadcast, Unknown unicast, and Multicast (BUM) replication.

6. NSX Logical Routing Design

Explain the Function and Features of Logical Routing: Overview of logical routing functionalities.
Describe the NSX Single-Tier and Multitier Routing Architectures: Understanding routing architectures in NSX.
Identify Guidelines When Selecting a Routing Topology: Best practices for choosing routing topologies.
Describe the BGP and OSPF Routing Protocol Configuration Options: Configuration options for routing protocols in NSX.
Explain Gateway High Availability Modes of Operation and Failure Detection Mechanisms: Understanding high availability for routing gateways.
Identify How Multitier Architectures Provide Control Over Stateful Service Location: Impact of multitier architectures on service location.
Identify EVPN Requirements and Design Considerations: Key considerations for Ethernet VPN in NSX.
Identify VRF Lite Requirements and Considerations: Overview of VRF Lite design considerations.
Identify the Typical NSX Scalable Architectures: Understanding scalable architectures within NSX environments.

7. NSX Security Design

Identify Different Security Features Available in NSX: Overview of security features offered by NSX.
Describe the Advantages of an NSX Distributed Firewall: Understanding the benefits of a distributed firewall.
Describe the Use of NSX Gateway Firewall as a Perimeter Firewall and as an Intertenant Firewall: Applications of the NSX Gateway Firewall.
Determine a Security Policy Methodology: Strategies for developing effective security policies.
Recognize the NSX Security Best Practices: Overview of best practices for NSX security.

8. NSX Network Services

Identify the Stateful Services Available in Different Edge Cluster High Availability Modes: Overview of stateful services and their availability.
Describe Failover Detection Mechanisms: Understanding mechanisms for failover detection.
Compare NSX NAT Solutions: Analysis of different NAT solutions in NSX.
Explain How to Select DHCP and DNS Services: Guidelines for selecting appropriate DHCP and DNS services.
Compare Policy-Based and Route-Based IPSec VPN: Differences between policy-based and route-based VPN configurations.
Describe an L2 VPN Topology That Can Be Used to Interconnect Data Centers: Overview of L2 VPN topologies for data center connectivity.
Explain the Design Considerations for Integrating VMware NSX® Advanced Load Balancer™ with NSX: Key factors in integrating load balancing with NSX.

9. Physical Infrastructure Design

Identify the Components of a Switch Fabric Design: Understanding the elements involved in switch fabric design.
Assess Layer 2 and Layer 3 Switch Fabric Design Implications: Overview of design considerations for Layer 2 and Layer 3 fabrics.
Review Guidelines When Designing Top-of-Rack Switches: Best practices for top-of-rack switch design.
Review Options for Connecting Transport Hosts to the Switch Fabric: Techniques for connecting transport hosts.
Describe Typical Designs for VMware ESXi™ Compute Hypervisors with Two pNICs: Overview of designs for ESXi with two physical NICs.
Describe Typical Designs for ESXi Compute Hypervisors with Four or More pNICs: Best practices for ESXi hypervisors with multiple physical NICs.
Differentiate Dedicated and Collapsed Cluster Approaches to SDDC Design: Understanding different approaches to Software-Defined Data Center (SDDC) design.

10. NSX Multilocation Design

Explain Scale Considerations in an NSX Multisite Design: Overview of scalability in multisite NSX deployments.
Describe the Main Components of the NSX Federation Architecture: Understanding NSX Federation architecture components.
Describe the Stretched Networking Capability in Federation: Overview of stretched networking in NSX Federation.
Describe Stretched Security Use Cases in Federation: Applications of security in stretched networks.
Compare the Federation Disaster Recovery Designs: Analysis of disaster recovery designs in NSX Federation.

11. NSX Optimization and DPU-Based Acceleration

Describe Geneve Offload: Understanding Geneve offload functionalities.
Describe the Benefits of Receive Side Scaling and Geneve Rx Filters: Overview of benefits related to scaling and filtering.
Explain the Benefits of SSL Offload: Advantages of SSL offloading in NSX.
Describe the Effect of Multi-TEP, MTU Size, and NIC Speed on Throughput: Factors affecting throughput performance.
Explain the Available Enhanced Datapath Modes and Use Cases: Overview of enhanced datapath modes in NSX.
List the Key Performance Factors for Compute Nodes and NSX Edge Nodes: Identifying critical performance factors in NSX environments.
Describe DPU-Based Acceleration: Overview of Data Processing Unit (DPU) acceleration.
Define the NSX Features Supported by DPUs: Understanding NSX features compatible with DPUs.
Describe the Hardware and Networking Configurations Supported with DPUs: Overview of configurations for DPU integration.

(3.7 Ratings)

Download Course Contents

Course Outline PDF

SpireTec Unique Features

1-On-1 Training

Benefit from our 1-On-1 Training for personalized, focused, and effective learning experiences.

Customized Training

Experience our Customized Training service tailored to meet your specific learning needs and goals

4 - Hours / Weekend Session

Join our Class featuring 4 - Hours / Weekend Session for in-depth learning and expert training.

Free Demo Class

Join our Free Demo Class to experience top-notch training and expert guidance first hand!

Purchase This Course

Add Exam

Live Online Training (Duration : 40 Hours)

Guaranteed to run classes as per your convenient time zone

Industry experienced & certified trainers

Query Handling session by technical expert after 2 month completion of training

Career path counselling

Custom tailored training as per the requirement

Exam assistance

Exam Mock papers

100% Quality assurance with certified & industry experienced Trainer

4 Hours Week Days

8 Hours Weekends

Live Online Training (Duration : 40 Hours)

Guaranteed to run classes as per your convenient time zone

Industry experienced & certified trainers

Query Handling session by technical expert after 2 month completion of training

Career path counselling

Custom tailored training as per the requirement

Exam assistance

Exam Mock papers

100% Quality assurance with certified & industry experienced Trainer

Request More Information

CERTIFICATE

Get Ahead With SpireTec Solutions
Training Certificate

Earn your Certificate

Our course is exhaustive and this certificate is proof that you have taken a big leap in mastering the domain.

Differentiate yourself with Masters Certificate

Our course is exhaustive and this certificate is proof that you have taken a big leap in mastering the domain.

Share your achievement

Our course is exhaustive and this certificate is proof that you have taken a big leap in mastering the domain.

Need Customized Curriculum?

Our course is exhaustive and this certificate is proof that you have taken a big leap in mastering the domain.

Talk To Adviser

Download Course Contents

Course Objectives

By the end of the course, you should be able to:

Describe and apply a design framework.
Apply a design process for gathering requirements, constraints, assumptions, and risks.
Design a VMware vSphere® virtual data center to support NSX requirements.
Create a VMware NSX® Manager™ cluster design.
Create a VMware NSX® Edge™ cluster design to support traffic and service requirements in NSX.
Design logical switching and routing.
Recognize NSX security best practices.
Design logical network services.
Design a physical network to support network virtualization in a software-defined data center.
Create a design to support the NSX infrastructure across multiple sites.
Describe the factors that drive performance in NSX.

Who Can Benefit

Network and security architects
Consultants who design enterprise and data center networks
Professionals involved in NSX environments

Prerequisites

Before taking this course, you must complete the following course:

VMware NSX: Install, Configure, Manage [V4.0]

You should also have an understanding or knowledge of these technologies:

Good understanding of TCP/IP services and protocols.
Knowledge and working experience of computer networking and security, including:
- Switching and routing technologies (L2 and L3).
- Network and application delivery services (L4 through L7).
- Firewalling (L4 through L7).
- vSphere environments.

Course Outline:

1. Course Introduction

Introduction and Course Logistics: Overview of participants, course structure, and logistical details.
Course Objectives: Define the key learning outcomes and skills participants will acquire by the end of the course.

2. NSX Design Concepts

Identify Design Terms: Familiarization with essential NSX design terminology.
Describe Framework and Project Methodology: Overview of the framework and methodologies utilized in NSX design projects.
Describe the Role of VMware Cloud Foundation™ in NSX Design: Understanding how VMware Cloud Foundation integrates with NSX design.
Identify Customers’ Requirements, Assumptions, Constraints, and Risks: Techniques for gathering and analyzing customer requirements.
Explain the Conceptual Design: Overview of conceptual design principles in NSX.
Explain the Logical Design: Understanding the components and considerations of logical design.
Explain the Physical Design: Overview of physical design elements in NSX.

3. NSX Architecture and Components

Recognize the Main Elements in the NSX Architecture: Identification of core NSX architecture components.
Describe the NSX Management Cluster and the Management Plane: Overview of the management cluster and its functions.
Identify the Functions and Components of Management, Control, and Data Planes: Understanding the roles of different planes in NSX architecture.
Describe the NSX Manager Sizing Options: Guidelines for sizing NSX Manager based on deployment needs.
Recognize the Justification and Implication of NSX Manager Cluster Design Decisions: Analyzing design decisions for NSX Manager clustering.
Identify the NSX Management Cluster Design Options: Exploring various design options for management clusters.

4. NSX Edge Design

Explain the Leading Practices for Edge Design: Best practices for designing NSX Edge environments.
Describe the NSX Edge VM Reference Designs: Overview of virtual machine reference designs for NSX Edge.
Describe the Bare-Metal NSX Edge Reference Designs: Understanding bare-metal design approaches for NSX Edge.
Explain the Leading Practices for Edge Cluster Design: Best practices for structuring edge clusters.
Explain the Effect of Stateful Services Placement: Impact of service placement on edge performance.
Explain the Growth Patterns for Edge Clusters: Understanding how edge clusters can scale.
Identify Design Considerations When Using L2 Bridging Services: Key factors to consider when implementing L2 bridging.

5. NSX Logical Switching Design

Describe Concepts and Terminology in Logical Switching: Overview of logical switching fundamentals.
Identify Segment and Transport Zone Design Considerations: Design considerations for segments and transport zones.
Identify Virtual Switch Design Considerations: Key aspects of designing virtual switches.
Identify Uplink Profile and Transport Node Profile Design Considerations: Guidelines for uplink and transport node profiles.
Identify Geneve Tunneling Design Considerations: Understanding Geneve tunneling in NSX.
Identify BUM Replication Mode Design Considerations: Considerations for Broadcast, Unknown unicast, and Multicast (BUM) replication.

6. NSX Logical Routing Design

Explain the Function and Features of Logical Routing: Overview of logical routing functionalities.
Describe the NSX Single-Tier and Multitier Routing Architectures: Understanding routing architectures in NSX.
Identify Guidelines When Selecting a Routing Topology: Best practices for choosing routing topologies.
Describe the BGP and OSPF Routing Protocol Configuration Options: Configuration options for routing protocols in NSX.
Explain Gateway High Availability Modes of Operation and Failure Detection Mechanisms: Understanding high availability for routing gateways.
Identify How Multitier Architectures Provide Control Over Stateful Service Location: Impact of multitier architectures on service location.
Identify EVPN Requirements and Design Considerations: Key considerations for Ethernet VPN in NSX.
Identify VRF Lite Requirements and Considerations: Overview of VRF Lite design considerations.
Identify the Typical NSX Scalable Architectures: Understanding scalable architectures within NSX environments.

7. NSX Security Design

Identify Different Security Features Available in NSX: Overview of security features offered by NSX.
Describe the Advantages of an NSX Distributed Firewall: Understanding the benefits of a distributed firewall.
Describe the Use of NSX Gateway Firewall as a Perimeter Firewall and as an Intertenant Firewall: Applications of the NSX Gateway Firewall.
Determine a Security Policy Methodology: Strategies for developing effective security policies.
Recognize the NSX Security Best Practices: Overview of best practices for NSX security.

8. NSX Network Services

Identify the Stateful Services Available in Different Edge Cluster High Availability Modes: Overview of stateful services and their availability.
Describe Failover Detection Mechanisms: Understanding mechanisms for failover detection.
Compare NSX NAT Solutions: Analysis of different NAT solutions in NSX.
Explain How to Select DHCP and DNS Services: Guidelines for selecting appropriate DHCP and DNS services.
Compare Policy-Based and Route-Based IPSec VPN: Differences between policy-based and route-based VPN configurations.
Describe an L2 VPN Topology That Can Be Used to Interconnect Data Centers: Overview of L2 VPN topologies for data center connectivity.
Explain the Design Considerations for Integrating VMware NSX® Advanced Load Balancer™ with NSX: Key factors in integrating load balancing with NSX.

9. Physical Infrastructure Design

Identify the Components of a Switch Fabric Design: Understanding the elements involved in switch fabric design.
Assess Layer 2 and Layer 3 Switch Fabric Design Implications: Overview of design considerations for Layer 2 and Layer 3 fabrics.
Review Guidelines When Designing Top-of-Rack Switches: Best practices for top-of-rack switch design.
Review Options for Connecting Transport Hosts to the Switch Fabric: Techniques for connecting transport hosts.
Describe Typical Designs for VMware ESXi™ Compute Hypervisors with Two pNICs: Overview of designs for ESXi with two physical NICs.
Describe Typical Designs for ESXi Compute Hypervisors with Four or More pNICs: Best practices for ESXi hypervisors with multiple physical NICs.
Differentiate Dedicated and Collapsed Cluster Approaches to SDDC Design: Understanding different approaches to Software-Defined Data Center (SDDC) design.

10. NSX Multilocation Design

Explain Scale Considerations in an NSX Multisite Design: Overview of scalability in multisite NSX deployments.
Describe the Main Components of the NSX Federation Architecture: Understanding NSX Federation architecture components.
Describe the Stretched Networking Capability in Federation: Overview of stretched networking in NSX Federation.
Describe Stretched Security Use Cases in Federation: Applications of security in stretched networks.
Compare the Federation Disaster Recovery Designs: Analysis of disaster recovery designs in NSX Federation.

11. NSX Optimization and DPU-Based Acceleration

Describe Geneve Offload: Understanding Geneve offload functionalities.
Describe the Benefits of Receive Side Scaling and Geneve Rx Filters: Overview of benefits related to scaling and filtering.
Explain the Benefits of SSL Offload: Advantages of SSL offloading in NSX.
Describe the Effect of Multi-TEP, MTU Size, and NIC Speed on Throughput: Factors affecting throughput performance.
Explain the Available Enhanced Datapath Modes and Use Cases: Overview of enhanced datapath modes in NSX.
List the Key Performance Factors for Compute Nodes and NSX Edge Nodes: Identifying critical performance factors in NSX environments.
Describe DPU-Based Acceleration: Overview of Data Processing Unit (DPU) acceleration.
Define the NSX Features Supported by DPUs: Understanding NSX features compatible with DPUs.
Describe the Hardware and Networking Configurations Supported with DPUs: Overview of configurations for DPU integration.

SpireTec solutions is the latest technology enabled I.Tmanagement training company specialized in offering 1500+ courses with the state of art training facilities backed by a team of industry experts in various domains with assuring best quality services.

Since SpireTec provides 24X7 training and support for your training needs is very adaptable to your time availabilities and offers customized training programs according to your availability and time zones of your contingent.

Because SpireTec aims for the personal & professional growth of you as individual & corporate as a whole, providing training on the latest and updated versions in the designated domains.

It is preferable but not mandatory to have domain experience in the area of your interest in which you want to opt training, supported by good English communication skills, a good Wi-Fi and computer or laptop system in case you want remote training.

Spire Tec aims and ensure to offer finest and world-class training to the participants by giving them a proper counselling and a guided career path by our industry experts which leads guaranteed success for you in the corporate world.

We offer online training (1-1, Group training), Classroom training, Onsite training with state of art facilities.

AZ - 104 : Microsoft Azure Administrator

AZ - 900 : Microsoft Azure Fundamentals

MS - 700 : Managing Microsoft Teams

PL - 200 : Microsoft Power Platform Functional Consultant

PL - 900 : Microsoft Power Platform Fundamentals

SC - 200 : Microsoft Security Operations Analyst

SC - 300 : Microsoft Identity and Access Administrator

PL - 300 : Power BI Data Analyst Associate

DP - 600T00 : Microsoft Fabric Analytics Engineer

MS - 102 : Microsoft 365 Administrator

DP - 601 : Implement a Lakehouse with Microsoft Fabric

M55371A : Windows Server Administration

DP - 602T00 : Implement a Data Warehouse with Microsoft Fabric

DP - 603T00 : Implement Real-Time Intelligence with Microsoft Fabric

DP - 604T00 : Implement a data science and machine learning solution for AI with Microsoft Fabric

DP - 700T00 : Microsoft Fabric Data Engineer

AI - 102 : Designing and Implementing an Azure AI Solution

AI - 900 : Microsoft Azure AI Fundamentals

AI - 103 : Develop Generative AI Solutions with Azure Open AI Service

AI - 3004 : Create computer vision solutions with Azure AI Vision

AI - 3003 : Develop natural language processing solutions with Azure AI Services

AI - 3002 : Develop solutions with Azure AI Document Intelligence

55485 - Microsoft 365 Copilot Super User

M55616A : Microsoft Copilot Overview for IT Professionals

M55604A : Using AI and Copilot in the Microsoft Power Platform

M55618A : Microsoft Copilot for Microsoft 365 for End Users

AI - 3016 : Develop Custom Copilots with Azure AI Studio

Certified Associate in Project Management (CAPM)®

Project Management Professional (PMP)®

Program Management Professional (PgMP)®

PMI Professional in Business Analysis (PMI-PBA)®

PMI Risk Management Professional (PMI-RMP)®

PMI Agile Certified Practitioner (PMI-ACP)®

PRINCE2® Foundation

PRINCE2® Practitioner

Certification of Capability in Business Analysis (CCBA®)

Certified Business Analysis Professional (CBAP®)

Scrum Fundamentals Certified (SFC)

Scrum Product Owner Certified (SPOC®)

SAFe Practice Consultant

Six Sigma Black Belt Certification CSSBB

EC-Council CEH: Certified Ethical Hacker v12

EC-Council CCT : Certified Cybersecurity Technician

EC-Council Certified Incident Handler V3

EC-Council CND: Certified Network Defender v2

EC-Council CTIA: Certified Threat Intelligence Analyst

EC-Council Certified Ethical Hacker (CEH) Master

EC-Council CCSE: Certified Cloud Security Engineer

EC-Council Certified Ethical Hacker (CEH) Practical

EC-Council CCISO: Certified Chief Information Security Officer

EC-Council CHFI: Computer Hacking Forensic Investigator v10

EC-Council ECIH : Certified Incident Handler

ISO 9001 Quality Management System

ISO/IEC 27005 Information Security Risk Management

ISO/IEC 27033 Network Security

ISO/IEC 27035 Information Security Incident Management

ISO 22301 Business Continuity Management System

ISO 22317 Business Impact Analysis

ISO 31000 Risk Management

ISO 37301 Compliance Management System

ISO/IEC 27701 Privacy Information Management System

ISO/IEC 27001 Lead Auditor

ISO/IEC 27001 Foundation

ISO/IEC 42001 Lead Implementer

ISO/IEC 42001 Lead Auditor

ISO 14001 Lead Implementer

ISO 14001 Lead Auditor

ISO 37301 Lead Implementer

ISO 37301 Lead Auditor

ISO 22301 Lead Implementer

ISO 22301 Lead Auditor

Data Protection Essentials

CISSP - Certified Information Systems Security Professional

CCSP – Certified Cloud Security Professional

CGRC – Governance, Risk and Compliance Certification

ISSEP – Information Systems Security Engineering Professional

SSCP – Systems Security Certified Practitioner

CISA - Certified Information Systems Auditor

CISM - Certified Information Security Manager

CRISC - Certified in Risk and Information Systems Control