This design uses two separate NSX instances per region. One instance is tied to the Management vCenter Server, and the other instance is tied to the Compute vCenter Server. Deploy and configure the NSX instance for the management cluster in Region A.
Deploy the NSX Manager for the Management Cluster NSX Instance in Region A For this implementation NSX Manager and vCenter Server have a one-to-one relationship. For every instance of NSX Manager, there is one connected vCenter Server.
Deploy the NSX Controllers for the Management Cluster NSX Instance in Region A After the NSX Manager is successfully connected to the Management vCenter Server, you must promote it to the primary role and deploy the three NSX Controller nodes that form the NSX Controller cluster.
Assign Licensing for NSX Instance for Region A Assign licensing for the NSX instance in Region A.
Prepare the ESXi Hosts in the Management Cluster for NSX in Region A You must install the NSX kernel modules on the management cluster ESXi hosts to be able to use NSX.
Configure the NSX Logical Network for the Management Cluster in Region A After all the deployment tasks are ready, you must configure the NSX logical network.
Update the Host Profile for the Management Cluster in Region A After you configure NSX logical networking on the management hosts in Region A, update the host profile of the management cluster and remediate the hosts to align their configuration.
Deploy the Platform Services Controllers Load Balancer in Region A You configure load balancing for all services and components related to Platform Services Controllers (PSC) using an NSX Edge load balancer.
Configure NSX Dynamic Routing in the Management Cluster in Region A NSX for vSphere creates a network virtualization layer on top of which all virtual networks are created. This layer is an abstraction between the physical and virtual networks. You configure NSX dynamic routing within the management cluster, deploying two NSX Edge devices and a Universal Distributed Logical Router (UDLR).
Distributed Firewall Configuration for Management Applications Configuring a distributed firewall for use with your SDDC increases the security level of your environment by allowing only the network traffic that is required for the SDDC to run. The firewall rules you define allow access to management applications.
Test the Management Cluster NSX Configuration in Region A Test the configuration of the NSX logical network using a ping test. A ping test checks if two hosts in a network can reach each other.
Deploy Application Virtual Networks in Region A Deploy the application virtual networks.
Deploy the NSX Load Balancer in Region A Deploy a load balancer for use by management applications connected to the application virtual network,