For NSX-T Data Center deployments, you can create networks and ports backed by a transport zone using N-VDS enhanced data path mode.

Important: This feature is offered in VMware Integrated OpenStack Carrier Edition only. For more information, see VMware Integrated OpenStack Licensing.

An NSX-managed virtual distributed switch (N-VDS) can operate in enhanced data path mode to provide network performance improvements needed by NFV workflows. For more information, see Enhanced Data Path in the NSX-T Data Center Installation Guide.

Note: If you are using NSX-T Data Center 2.3.1, port security is not supported for N-VDS enhanced data path mode. You must disable port security globally or for each Neutron network created. This limitation is resolved in NSX-T Data Center 2.4.

Prerequisites

If you are using both standard and enhanced data path mode, create a separate availability zone for enhanced data path mode. See Neutron Availability Zone.

Procedure

  1. Log in to the Integrated OpenStack Manager as the root user.
    ssh root@mgmt-server-ip
  2. Modify the Neutron configuration.
    viocli update neutron
  3. In the nsx_v3 section, set the value of the ens_support parameter to true.
  4. If you are using NSX-T Data Center 2.3.1, add the disable_port_security_for_ens parameter and set its value to true.
    Alternatively, you can include the --port-security-enabled=false parameter when you create a Neutron network.

What to do next

When you create networks that consume N-VDS in enhanced data path mode, specify the availability zone created for it.