A segment connects to gateways and VMs. A segment performs the functions of a logical switch.

For information about find the VIF ID of a VM, see Connecting a VM to a Logical Switch.
Note: An N-VDS switch configured in the Enhanced Datapath mode supports IP Discovery, SpoofGuard, and IPFIX profiles.

Procedure

  1. From your browser, log in with admin privileges to an NSX Manager at https://<nsx-manager-ip-address>.
  2. Select Networking > Segments.
  3. Click Add Segment.
  4. Enter a name for the segment.
  5. Select a connected gateway.
    You can select an existing Tier-0 or Tier-1 gateway, or select None. The default value is None, which means the segment is simply a logical switch. With a subnet configured, it can link to a Tier-0 or Tier-1 gateway.
  6. If the connected gateway is a Tier-1 gateway, select a type, either Flexible or Fixed.
    A flexible segment can be unlinked from gateways. A fixed segment can be deleted but not unlinked from a gateway.
  7. To specify a subnet, click Set Subnets.
  8. Select a transport zone, which can be an overlay or a VLAN.
  9. If the transport zone is of type VLAN, specify a list of VLAN IDs.
  10. If you want to use Layer 2 VPN to extend the segment, click the L2 VPN text box and select an L2 VPN server or client session.
    You can select more than one.
  11. In VPN Tunnel ID, enter a unique value that is used to identify the segment.
  12. Click Save.
  13. To add segment ports, click Yes when prompted if you want to continue configuring the segment.
    1. Click Ports and Set.
    2. Click Add Segment Port.
    3. Enter a port name.
    4. For ID, enter the VIF UUID of the VM or server that connects to this port.
    5. Select a type: Parent, Child, or Independent.
      Leave this text box blank except for use cases such as containers or VMware HCX. If this port is for a container in a VM, select Child. If this port is for a container host VM, select Parent. If this port is for a bare metal container or server, select Independent.
    6. Enter a context ID.
      Enter the parent VIF ID if Type is Child, or transport node ID if Type is Independent.
    7. Enter a traffic tag.
      Enter the VLAN ID in container and other use cases.
    8. Select an address allocation method: IP Pool, MAC Pool, Both, or None.
    9. Specify tags.
    10. Apply address binding by specifying the IP (IPv4 address, IPv6 address, or IPv6 subnet) and MAC address of the logical port to which you want to apply address binding. For example, for IPv6, 2001::/64 is an IPv6 subnet, 2001::1 is a host IP, whereas 2001::1/64 is an invalid input. You can also specify a VLAN ID.
      Manual address bindings, if specified, override the auto discovered address bindings.
    11. Select segment profiles for this port.
  14. To select segment profiles, click Segment Profiles .
  15. Click Save.