Solved

NSX Design

Posted on 2016-08-01
7
80 Views
Last Modified: 2016-08-23
Attached is the current NSX network design.
I have L2 Switch connecting to the L3 Core switch. The ESXi hosts with NSX are connecting to the L2 switch.
OSPF is running between the L3 Core switch & the NSX.

In the near future I will be running short of the L2 switch ports where the ESXi hosts are connected.
For this I have 2 options

Option 1: Setup 2 more L2 switches parallel to the existing & connect the same to the L3 core switches. Similar to the existing setup.
Option 2: Setup 2 more L2 switches below the existing L2 switches & connect the ESXi hosts to the new L2 switches.

Would like to know which option is the best considering the pros & cons.
NSX_Design.png
0
Comment
Question by:SrikantRajeev
7 Comments
 
LVL 57

Expert Comment

by:giltjr
ID: 41738062
What you are showing is a physical diagram and what appears to be a single IP subnet (x.x.x.0/22)

In order to understand what may be best we (at least I do) would need to understand your L2 and L3 setup better.  As an example.  If you really only have a single subnet (x.x.x.0/22) that would imply a single L2 network.  If you have a single L2 and L3 network, why are you running OSPF?
0
 
LVL 32

Expert Comment

by:harbor235
ID: 41742364
The issue with option 2 is that as you add  more ESXi hosts to the new switches you are limited to two uplinks to the layer 3 core. So depending on the utilization and how you have the network setup this could cause over subscription of the uplinks. So in general option 2 does not scale.

Depending on the utilization of the uplinks and the class of layer 2 switch that you are using, you may be able to use option 2, but why not connect right to the L3 core with new switches? So the answer is it depends on what the ESXi hosts are doing, how much capacity is available, etc .....


harbor235 ;}
0
 
LVL 57

Expert Comment

by:giltjr
ID: 41742657
Without knowing more about the setup, I would say that option #1 should allow you more growth with out affecting performance.  It depends on how much traffic from the ESX hosts actually has to go to the core.

If go with option#2 and you have a lot of traffic that goes from the ESX servers to the core, you will be increasing the amount of traffic that is flowing on the connections between your two existing L2 switched and your core.  As harbor235 stated, this may not affect you at all depending on current utilization of those links.

The only downside I can think of with option #1 is that you could need more ports on your cores.
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 
LVL 61

Expert Comment

by:gheist
ID: 41747714
OSPF is not relevant in a single L3 IP subnet
0
 
LVL 1

Author Comment

by:SrikantRajeev
ID: 41759362
Is there any document or design guide from vmware regarding how to scale the NSX design.
0
 
LVL 57

Accepted Solution

by:
giltjr earned 500 total points
ID: 41759637
Based on what little we know, you current "NSX" network is basically a single large flat L2 network that that your cores are part of.  

In my opinion, your best bet would be to get two more L2 switches and basically setup them up exactly like your current L2 switches.  So that you have all 4 switched connected directly to your cores and all 4 switches have the same VLAN's.  Then connect any new ESX hosts to the new switches, or even move some current ESX hosts to the new switches.

Basically choose option #1.

I'm still not sure why you have OSPF in the mix, as based on your diagram it is not needed at all.  Your core routers are in the same L3 network as NSX, which means your core already knows about that subnet.
0
 
LVL 1

Author Closing Comment

by:SrikantRajeev
ID: 41768176
Thanks
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
delete phantom  datastores 5 52
Question about Authentication Domain 6 63
Vlan to Vlan communication 9 69
Accessing Files on a VM when the VM is not booting 9 50
In this step by step tutorial with screenshots, we will show you HOW TO: Enable SSH Remote Access on a VMware vSphere Hypervisor 6.5 (ESXi 6.5). This is important if you need to enable SSH remote access for additional troubleshooting of the ESXi hos…
In this article, I show you step by step with screenshots to assist you - HOW TO: Deploy and Install the VMware vCenter Server Appliance 6.5 (VCSA 6.5), with some helpful tips along the way.
This Micro Tutorial steps you through the configuration steps to configure your ESXi host Management Network settings and test the management network, ensure the host is recognized by the DNS Server, configure a new password, and the troubleshooting…
This video shows you how easy it is to boot from ISO images for virtual machines with the ISO images stored on a local datastore on the ESXi host.

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now