{"id":1075,"date":"2021-09-02T23:53:58","date_gmt":"2021-09-02T21:53:58","guid":{"rendered":"http:\/\/hentati.org\/?p=1075"},"modified":"2021-12-27T18:06:11","modified_gmt":"2021-12-27T17:06:11","slug":"nsx-t-management-control-and-data-plane","status":"publish","type":"post","link":"https:\/\/hentati.org\/index.php\/2021\/09\/02\/nsx-t-management-control-and-data-plane\/","title":{"rendered":"NSX-T Management, Control and Data plane"},"content":{"rendered":"<p><span style=\"color: #000000;\"><strong><em><u>VMware NSX-T Management Plane<\/u><\/em><\/strong><\/span><\/p>\n<p><span style=\"color: #000000;\">VMware NSX-T Management plane delivers single API entry point to the system, persists user configuration, handles user\u00a0 queries, and performs operational tasks on all of the management, control and data\u00a0 plane nodes in the system. Management plane is also responsible for querying,\u00a0 modifying and persisting user configuration.<\/span><\/p>\n<p><span style=\"color: #000000;\">There are some points to understand the management plane in the VMware NSX-T environment and these points are as below:<\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">Serves as a unique entry point for user configuration via RESTful API (CMP, automation) or VMware NSX-T user interface.\u00a0<\/span><\/li>\n<li><span style=\"color: #000000;\">Provides universal connectivity, consistent enforcement of security and operational visibility through object management and inventory collection. It can provide you with the multiple Compute domains \u2013 up to 16 vCenters, container orchestrators (PKS &amp; Open Shift) and clouds (AWS and Azure)\u00a0<\/span><\/li>\n<li><span style=\"color: #000000;\">Recover the desired configuration in addition to system information.<\/span><\/li>\n<li><span style=\"color: #000000;\">Manage for storing wanted configuration in its database. The VMware NSX-T Manager stock the final configuration request by the user for the system.\u00a0 This configuration will be pushed by the VMware NSX-T Manager to the control plane\u00a0 to become a effective configuration.<\/span><\/li>\n<\/ul>\n<p><span style=\"color: #000000;\">The NSX-T management plane (MP) automatically creates the structure connecting the service router to the distributed router.\u00a0<\/span><\/p>\n<p><span style=\"color: #000000;\">The MP allocates a VNI and creates a transit segment, then configures a port on both the SR and DR, connecting them to the transit segment. The MP then automatically allocates unique IP addresses for both the SR and DR.\u00a0<\/span><\/p>\n<p><strong><span style=\"color: #000000;\">VMware NSX Manager Appliance<\/span><\/strong><\/p>\n<p><span style=\"color: #000000;\">Instances of the VMware NSX Manager and VMware NSX Controller are bundled in a virtual machine called the NSX Manager Appliance. The VMware NSX manager, VMware NSX policy manager and VMware NSX controller as an element will co-exist under a common VM.\u00a0<\/span><\/p>\n<p><span style=\"color: #000000;\">Three unique VMware NSX appliance VMs are required for cluster availability. Because the NSX-T Manager is storing all its information in a database immediately synchronized across the cluster, configuration or read operations can be performed on any appliance.\u00a0<\/span><\/p>\n<p><span style=\"color: #000000;\">Each appliance has a dedicated IP address and its manager can be accessed directly or through a\u00a0 load balancer. Optionally, the three appliances can be configured to maintain a virtual IP address\u00a0 which will be serviced by one appliance selected among the three.\u00a0<\/span><\/p>\n<p><span style=\"color: #000000;\"><strong><em><u>VMware NSX-T Control Plane<\/u><\/em><\/strong>\u00a0<\/span><br \/>\n<span style=\"color: #000000;\">Let&#8217;s talk about control plane now.\u00a0The set of objects that the control plane deals with include VIFs, logical networks, logical ports, logical routers, IP addresses, and so on.\u00a0<\/span><\/p>\n<p><span style=\"color: #000000;\">Control\u00a0 plane disseminates topology information reported by the data plane elements and\u00a0 pushes stateless configuration to forwarding engines.<\/span><\/p>\n<p><span style=\"color: #000000;\">VMware NSX-T splits the control plane into two parts:<\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\">Central Control Plane (CCP) \u2013 The CCP is implemented as a cluster of virtual\u00a0 machines called CCP nodes. The cluster form factor provides both redundancy and\u00a0 scalability of\u00a0 \u00a0resources. The CCP is logically separated from all data plane traffic,\u00a0 meaning any failure in the control plane does not affect existing data plane operations.\u00a0 User traffic\u00a0 does not pass through the CCP Cluster.<\/span><\/li>\n<li><span style=\"color: #000000;\">Local Control Plane (LCP) \u2013 The LCP runs on transport nodes. It is adjacent to the data\u00a0 plane it\u00a0 controls and is\u00a0 connected to the CCP. The LCP is responsible for programing the\u00a0 forwarding\u00a0 entries and firewall rules of the data plane.<\/span><\/li>\n<\/ul>\n<p><span style=\"color: #000000;\"><strong><em><u>VMware NSX-T Data Plane<\/u><\/em><\/strong><\/span><br \/>\n<span style=\"color: #000000;\">The data plane performs stateless forwarding\/transformation of packets based on tables populated by the control plane and reports topology information to the control plane, and maintains packet level statistics.<\/span><\/p>\n<p><span style=\"color: #000000;\">There are two main types of transport nodes in VMware NSX-T:<\/span><\/p>\n<ul>\n<li><span style=\"color: #000000;\"><strong><em><u>Hypervisor Transport Nodes<\/u><\/em><\/strong>: Hypervisor transport nodes are hypervisors prepared and\u00a0 configured for VMware NSX-T. The N-VDS provides network services to the virtual machines\u00a0 running on those hypervisors. VMware NSX-T currently supports VMware ESXi and KVM\u00a0 hypervisors. The N-VDS implemented for KVM is based on the Open vSwitch (OVS) and is platform independent .<\/span><\/li>\n<li><span style=\"color: #000000;\"><strong><em><u>Edge Nodes<\/u><\/em><\/strong>: VMware NSX-T Edge nodes are service appliances dedicated to running\u00a0 centralized network services that cannot be distributed to the hypervisors. They can be\u00a0 instantiated as a bare metal appliance or in virtual machine form factor. They are grouped\u00a0 in one or several clusters, representing a pool of capacity.<\/span><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>VMware NSX-T Management Plane VMware NSX-T Management plane delivers single API entry point to the system, persists user configuration, handles user\u00a0 queries, and performs operational tasks on all of the &#8230;<\/p>\n","protected":false},"author":1,"featured_media":1133,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[10],"tags":[],"_links":{"self":[{"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/posts\/1075"}],"collection":[{"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/comments?post=1075"}],"version-history":[{"count":1,"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/posts\/1075\/revisions"}],"predecessor-version":[{"id":1076,"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/posts\/1075\/revisions\/1076"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/media\/1133"}],"wp:attachment":[{"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/media?parent=1075"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/categories?post=1075"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/hentati.org\/index.php\/wp-json\/wp\/v2\/tags?post=1075"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}