Deploy the distributed logical routers (DLR).

Procedure

  1. Log in to the Compute vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://lax01w01vc01.lax01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.
      Setting Value
      User name administrator@vsphere.local
      Password vsphere_admin_password
  2. Under Inventories, click Networking & Security.
  3. In the Navigator, click NSX Edges.
  4. From the NSX Manager drop-down menu, select 172.17.11.66.
  5. Click the Add icon to create a new DLR.
  6. On the Name and description page, enter the following settings and click Next.
    Setting Value
    Logical (Distributed) Router Selected
    Name lax01w01dlr01
    Deploy Edge Appliance Selected
    Enable High Availability Selected
  7. On the Settings page, enter the following settings and click Next.
    Setting Value
    User Name admin
    Password dlr_admin_password 
    Enable SSH access Selected
    Enable FIPS mode Deselected
    Edge Control Level logging INFO
  8. On the Configure deployment page, click the Add icon.
  9. In the Add NSX Edge Appliance dialog box, enter the following settings and click Next.
    Setting Value
    Cluster/Resource Pool lax01-w01rp-sddc-edge
    Datastore lax01_shared_edge_and_compute_datastore
    Folder lax01-w01fd-nsx
    Resource Reservation System Managed
  10. On the Configure deployment page, click the Add icon a second time to add a second NSX Edge device.
  11. In the Add NSX Edge Appliance dialog box, enter the following settings and click Next.
    Setting Value
    Cluster/Resource Pool lax01-w01rp-sddc-edge
    Datastore lax01_shared_edge_and_compute_datastore
    Folder lax01-w01fd-nsx
  12. On the Configure interfaces page, under HA Interface Configuration, click Select and connect to lax01-w01-vds01-management.
  13. On the Configure interfaces page, enter the following configuration settings and click Next.
    1. In the Add Interface dialog box, enter the following settings, click OK and click Next.
    Setting Value
    Name Uplink
    Type Uplink
    Connected To Global Transit Network
    Connectivity Status Connected
    Primary IP Address 192.168.102.3
    Subnet Prefix Length 24
    MTU 9000
  14. In the Default gateway settings page, deselect Configure Default Gateway and click Next.
  15. In the Ready to complete page, click Finish.
  16. Allow SSH access in the Universal Distributed Logical Router firewall.
    1. Double-click the device labeled lax01w01dlr01.
    2. Click the Manage tab and click the Firewall tab.
    3. Click Add icon to create a new firewall rule with the following settings.
      Setting Value
      Name enableSSH
      Source any
      Destination any
      Service SSH
      Action Accept
    4. Click Publish Changes.