Deploy two NSX Edge devices for North-South Routing.

Perform this procedure two times to deploy two NSX Edge devices. Enter the name and IP addresses for the respective device using the values shown in the tables.

Table 1. NSX Edge Devices

NSX Edge Device

Device Name

NSX Edge Device 1

sfo01w01esg01

NSX Edge Device 2

sfo01w01esg02

Table 2. NSX Edge Interfaces Settings

Interface

Primary IP Address sfo01w01esg01

Primary IP Address sfo01w01esg02

Uplink01

172.16.35.2

172.16.35.3

Uplink02

172.27.13.3

172.27.13.2

sfo01w01udlr01

192.168.100.1

192.168.100.2

Procedure

  1. Log in to vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://sfo01w01vc01.sfo01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. Under Inventories, click Networking & Security.
  3. In the Navigator, click NSX Edges.
  4. Select 172.16.11.66 from the NSX Manager drop-down menu.
  5. Click the Add icon to deploy a new NSX Edge.

    The New NSX Edge wizard appears.

    1. On the Name and description page, enter the following settings and click Next.

      Settings

      sfo01w01esg01

      sfo01w01esg02

      Install Type

      Edge Service Gateway

      Edge Service Gateway

      Name

      sfo01w01esg01

      sfo01w01esg02

      Deploy NSX Edge

      Selected

      Selected

      Enable High Availability

      Deselected

      Deselected
    2. On the Settings page, enter the following settings and click Next.

      Settings

      Value

      User Name

      admin

      Password

      edge_admin_password

      Enable SSH access

      Selected

      Enable FIPS mode

      Deselected

      Enable auto rule generation

      Selected

      Edge Control Level logging

      INFO
    3. On the Configure deployment page, click Large to specify the Appliance Size and click the Add icon. 
    4. In the Add NSX Edge Appliance dialog, enter the following settings, click OK, and click Next.

      Setting

      Value

      Cluster/Resource Pool

      sfo01-w01rp-sddc-edge

      Datastore

      sfo01-w01-vsan01

      Folder

      sfo01-w01fd-nsx

      Resource Reservation

      System Managed
    5. On the Configure interfaces page, click the Add icon to configure the Uplink01 interface, enter the following settings, and click OK.

      Setting

      sfo01w01esg01

      sfo01w01esg02

      Name

      Uplink01

      Uplink01

      Type

      Uplink

      Uplink

      Connected To

      sfo01-w01-vds01-uplink01

      sfo01-w01-vds01-uplink01

      Connectivity Status

      Connected

      Connected

      Primary IP Address

      172.16.35.2

      172.16.35.3

      Subnet Prefix Length

      24

      24

      MTU

      9000

      9000

      Send ICMP Redirect

      Selected

      Selected
    6. Click the Add icon to configure the Uplink02 interface, enter the following settings, and click OK.

      Setting

      sfo01w01esg01

      sfo01w01esg02

      Name

      Uplink02

      Uplink02

      Type

      Uplink

      Uplink

      Connected To

      sfo01-w01-vds01-uplink02

      sfo01-w01-vds01-uplink02

      Connectivity Status

      Connected

      Connected

      Primary IP Address

      172.27.13.3

      172.27.13.2

      Subnet Prefix Length

      24

      24

      MTU

      9000

      9000

      Send ICMP Redirect

      Selected

      Selected
    7. Click the Add to configure the UDLR interface, enter the following settings click OK, and click Next.

      Setting

      sfo01w01esg01

      sfo01w01esg02

      Name

      sfo01w01udlr01

      sfo01w01udlr01

      Type

      Internal

      Internal

      Connected To

      Transit Network

      Transit Network

      Connectivity Status

      Connected

      Connected

      Primary IP Address

      192.168.100.1

      192.168.100.2

      Subnet Prefix Length

      24

      24

      MTU

      9000

      9000

      Send ICMP Redirect

      Selected

      Selected
    8. On the Default gateway settings page, deselect the Configure Default Gateway check box and click Next.
    9. On the Firewall and HA page, click Next.
    10. On the Ready to complete page, review the configuration settings that you entered and click Finish.
  6. Repeat this procedure to configure another NSX edge using the settings for the second NSX Edge device.
  7. Configure DRS anti-affinity rules for the Edge Services Gateways.
    Note:

    You do not perform this step if the management cluster has more than four hosts.

    1. Go back to the Home page.
    2. In the Navigator, click Hosts and Clusters, and expand the sfo01w01vc01.sfo01.rainpole.local  tree.
    3. Select the sfo01-w01-consolidated01 cluster, and click the Configure tab.
    4. Under Configuration, click VM/Host Rules.
    5. Click Add.
    6. In the sfo01-w01-consolidated01 - Create VM/Host Rule dialog box, enter the following settings and click Add.

      Setting

      Value

      Name

      anti-affinity-rule-ecmpedges

      Enable rule

      Selected

      Type

      Separate Virtual Machine

    7. In the Add Rule Member dialog box, select the check box next to each of the two newly deployed NSX ESGs and click OK.
    8. In the sfo01-w01-consolidated01 - Create VM/Host Rule dialog, click OK.