A transport zone is used to define the scope of a VXLAN overlay network and can span one or more clusters within one vCenter Server domain. One or more transport zones can be configured in an NSX for vSphere solution. A transport zone is not meant to delineate a security boundary.

Table 1. Transport Zones Design Decisions

Decision ID

Design Decision

Design Justification

Design Implications

CSDDC-VI-SDN-009

Use a single universal transport zone.

A Universal Transport zone supports extending networks and security policies across regions. This allows seamless migration to a dual-region design.

vRealize Automation is not able to deploy on-demand network objects against a secondary NSX Manager. You must consider that you can pair up to eight NSX Manager instances. If the solution expands past eight NSX Manager instances, you must deploy a new primary manager and new transport zone.

CSDDC-VI-SDN-010

Enable Controller Disconnected Operation (CDO) mode.

During times when the NSX controllers are unable to communicate with ESXi hosts data plane updates, such as VNIs becoming active on an ESXi host, still occurs.

Enabling CDO mode adds some overhead to the hypervisors when the control cluster is down.

VCFSP-VI-SDN-007

Enable Controller Disconnected Operation (CDO) mode.

During times when the NSX controllers are unable to communicate with ESXi hosts data plane updates, such as VNIs becoming active on an ESXi host, still occur.

Enabling CDO mode adds some overhead to the hypervisors when the control cluster is down.