In the event of a site failure, when Region A becomes unavailable, prepare the network layer in Region B for failover of management applications. Change the role of the NSX Manager to primary, deploy universal controller cluster, and synchronize the universal controller cluster configuration. 

Procedure

  1. Log in to vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://lax01m01vc01.lax01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. Promote the NSX Manager for the management cluster in Region B to the primary role.

    You must first disconnect the NSX Manager for the management cluster in Region B from the Primary NSX Manager in Region A.

    1. From the Home menu, select Networking & Security.
    2. In the Navigator, click Installation.
    3. On the Management tab, select the 172.17.11.65 instance.
    4. Click the Actions menu and click Disconnect from Primary NSX Manager.
    5. In the Disconnect from Primary NSX Manager confirmation dialog box, click Yes.

      The NSX Manager gets the Transit role.

    6. On the Management tab, select the 172.17.11.65 instance again.
    7. Click Actions and select Assign Primary Role.
    8. In the Assign Primary Role confirmation dialog box, click Yes.
  3. Configure an IP pool for the new universal controller cluster.
    1. In the Navigator, click NSX Managers.
    2. Under NSX Managers, click the 172.17.11.65 instance.
    3. On the Manage tab, click Grouping Objects, click IP Pools, and click the Add New IP Pool icon.
    4. In the Add Static IP Pool dialog box, enter the following settings, and click OK.

      Setting

      Value

      Name

      lax01-mgmt01-nsxc01

      Gateway

      172.17.11.253

      Prefix Length

      24

      Primary DNS

      172.17.11.5

      Secondary DNS

      172.17.11.4

      DNS Suffix

      lax01.rainpole.local

      Static IP Pool

      172.17.11.118-172.17.11.120

  4. Deploy the universal controller cluster in Region B.
    1. In the Navigator, click Networking & Security and click Installation.
    2. Under NSX Controller nodes, click the Add icon to deploy three NSX Controller nodes with the same configuration.
    3. In the Add Controller dialog box, enter the following settings and click OK.

      You configure a password only during the deployment of the first controller. The other controllers use the same password.

      Setting

      Value

      Name

      • lax01m01nsxc01 for controller 1

      • lax01m01nsxc02 for controller 2

      • lax01m01nsxc03 for controller 3

      NSX Manager

      172.17.11.65

      Datacenter

      lax01-m01dc

      Cluster/Resource Pool

      lax01-m01-mgmt01

      Datastore

      lax01-m01-vsan01

      Connected To

      lax01-m01-vds01-management

      IP Pool

      lax01-mgmt01-nsxc01

      Password

      mgmtnsx_controllers_password

      Confirm Password

      mgmtnsx_controllers_password

    4. After the Status of the controller node changes to Connected, deploy the remaining two NSX Controller nodes lax01m01nsxc02 and lax01m01nsxc03.

      Wait until the current deployment is finished before you start the next one. 

  5. Configure DRS affinity rules for the deployed NSX Controller nodes.
    1. From the Home menu of the vSphere Web Client, select  Hosts and Clusters.
    2. Expand the lax01m01vc01.lax01.rainpole.local > lax01-m01dc and click the sfo01-m01-mgmt01. cluster
    3. Click the Configure tab, under Configuration, click VM/Host Rules, and click Add.
    4. In the lax01-m01-mgmt01 - Create VM/Host Rule dialog box, enter the following settings and click OK

      Setting

      Value

      Name

      anti-affinity-rule-nsxc

      Enable rule

      Selected

      Type

      Separate Virtual Machines

      Members

      • lax01m01nsxc01

      • lax01m01nsxc02

      • lax01m01nsxc03

  6. Use the Update Controller State mechanism on the NSX Manager to synchronize the state of the newly deployed controllers.

    Update Controller State pushes the current VXLAN and universal distributed logical router configuration from NSX Manager to the controller cluster.

    1. From the Home menu of the vSphere Web Client, select Networking & Security.
    2. In the Navigator, click Installation.
    3. On the Management tab, select the 172.17.11.65 instance.
    4. From the Actions menu, select Update Controller State.
    5. In the Update Controller State confirmation dialog box, click Yes.