NSX Cloud integrates the NSX-T Data Center core components with your public cloud to provide network and security across your implementations.

Figure 1. NSX Cloud Architecture

Core Components

The core NSX Cloud components are:

  • NSX Manager for the management plane with policy-based routing, role-based access control (RBAC), control plane and runtime states defined.

  • Cloud Service Manager (CSM) for integration with NSX Manager to provide public cloud-specific information to the management plane.

  • NSX Public Cloud Gateway (PCG) for connectivity to the NSX management and control planes, NSX Edge gateway services, and for API-based communications with the public cloud entities. See Deploy or Link NSX Public Cloud Gateways for details.

  • NSX Agent functionality that provides NSX-managed datapath for workload VMs.

Modes of Deployment

The NSX Public Cloud Gateway can either be a standalone gateway appliance or a shared between your public cloud VPCs or VNets to achieve a hub and spoke topology.

Self-managed VPC or VNet serves as a Transit VPC: When you deploy the PCG in a VPC or VNet, it qualifies the VPC or VNet as self-managed, that is, you can bring VMs hosted in this VPC or VNet under NSX management. This VPC or VNet also qualifies as a Transit VPC or VNet because you can use the PCG deployed on it to onboard VMs hosted in other VPCs or VNets.

Compute VPC or VNet links to Transit VPC or VNet: VPCs or VNets that do not have the PCG deployed on them but link to a Transit VPC or VNet are called Compute VPCs or VNets.