VMware Networking Community
tckoon
Enthusiast
Enthusiast
‎04-15-2024 12:48 AM

NSX - Seperate Edge & Host VTEP VLAN

Edge VTEP and Host VTEP  on seperate VLAN is good ideal, but the bad ideal its need to routable between this 2 vlan/subnets by DC L3 gateway switch.

Host VTEP tunnel will  reach the data center Layer 3 gateway then routed back to Edge node via EDGE VTEP VLAN.

This is not efficient and single point of failure at L3 gateway. If the L3 Gateway is firewall , then it will be the bottleneck.

Let say there is issue at L3 gateway , the whole NSX virtual network will down.

 

VM >>> Host VTEP VLAN  (TOR Switch)    >>>>>>> Data Center L3 >>>>>> EDGE VTEP VLAN (TOR Switch) >>>>>>> Edge Node

tckoon_0-1713167112799.png

 

tckoon_1-1713167183120.png

 

 

Labels (1)
Labels
0 Kudos
5 Replies
shank89
Expert
Expert
‎04-15-2024 12:50 AM

Which is why your network needs to be designed properly with redundant gateways.

Also host to edge tep will be impacted, not a complete outage.

Shashank Mohan

VCIX-NV 2022 | VCP-DCV2019 | CCNP Specialist

https://lab2prod.com.au
LinkedIn https://www.linkedin.com/in/shankmohan/
Twitter @ShankMohan
Author of NSX-T Logical Routing: https://link.springer.com/book/10.1007/978-1-4842-7458-3
0 Kudos
tckoon
Enthusiast
Enthusiast
‎04-15-2024 01:07 AM

 

"Also host to edge tep will be impacted, not a complete outage."

>>>  It depend.  Edge cluster is gateway (T0/T1) , it will totally down. Unless  gateway is at DC L3 switch , where VM is connect to Vsphere VDS port-group instead of NSX segment.

 

Well this is design flaw, which VMware shall fix it.

Not putting the resposibility on the data center network for all  east-west and north-south traffic (VTEP tunnel) all transverse thru data center gateway.

Data center switch shall just do the L2, except for managment.

 

 

0 Kudos
shank89
Expert
Expert
‎04-15-2024 01:39 AM

Unless you have state full services on a gateway then lateral switching and logical routing will work.

 

Only when a packet needs to egress an edge will it be impacted. I suggest you read into NSX logical routing functions 

Shashank Mohan

VCIX-NV 2022 | VCP-DCV2019 | CCNP Specialist

https://lab2prod.com.au
LinkedIn https://www.linkedin.com/in/shankmohan/
Twitter @ShankMohan
Author of NSX-T Logical Routing: https://link.springer.com/book/10.1007/978-1-4842-7458-3
0 Kudos
tckoon
Enthusiast
Enthusiast
‎04-15-2024 05:16 AM

My understanding the routing between segment will be impacted too.

 

0 Kudos
shank89
Expert
Expert
‎04-15-2024 03:24 PM

That is incorrect, read my previous response please.

Shashank Mohan

VCIX-NV 2022 | VCP-DCV2019 | CCNP Specialist

https://lab2prod.com.au
LinkedIn https://www.linkedin.com/in/shankmohan/
Twitter @ShankMohan
Author of NSX-T Logical Routing: https://link.springer.com/book/10.1007/978-1-4842-7458-3
0 Kudos