How to separate mgmt & production vm network

You first want to design do you want two or four network interfaces per vSwitch and VLAN.

or have two network interfaces per vSwitch (management and VMs)

1 for management and 2 for VMs

In my case what are the steps to separate them to 1 mgmt nic and 2 production nic?

It's a great article.

Do I have to shutdown all VMs and put the host in maintenance mode?

Do I have to shutdown all VMs and put the host in maintenance mode?

No, but best practice's in IT, we would recommend that you make changes to production hosts out of core hours!

It's great point. To have two mgmt nic in case of single point of failure.

Ok, so now I want nic1 & 2 on mgmt network and all vms on nic3 & 4. So right now I have nic1 having both mgmt & production on it.

To do this, I'll this steps (correct me if I am wrong):
1. shutdown the VMs and enter the host in maintenance mode.
2. re-configure the ip address for the mgmt to different vlan and select nic1 and 2
3. login to web client and then create new vswitch1 and add nic 3 and 4. move all the vms to the port group

is this correct?

1. No need to do this. Just be aware tinkering with Production Hosts networking could cause an outage, will not damage or cause issues with VMs, but will annoy your users!

2. Correct

3. Yes, can be done with vSphere Client, which ever you prefer.