Routing Design in ROBO

ROBO-VI-SDN-011

Deploy a minimum of two NSX Edge services gateways (ESGs) in an ECMP configuration for North-South routing.

• You use an NSX ESG for directing North-South traffic. Using ECMP provides multiple paths in and out of the SDDC.

• Failover is faster than deploying ESGs in HA mode.

ECMP requires 2 VLANS in each availability zone and region for uplinks which adds an extra VLAN over traditional HA ESG configurations.

ROBO-VI-SDN-012

Deploy a single NSX DLR in HA mode to provide East-West routing.

Using the DLR reduces the hop count between nodes attached to it to 1. This reduces latency and improves performance.

UDLRs are limited to 1,000 logical interfaces. If that limit is reached, you must deploy a new UDLR.

ROBO-VI-SDN-013

Use BGP as the dynamic routing protocol inside the SDDC.

Using BGP as opposed to OSPF eases the implementation of dynamic routing. There is no need to plan and design access to OSPF area 0 inside the SDDC. OSPF area 0 varies based on customer configuration.

BGP requires configuring each ESG and DLR with the remote router that it exchanges routes with.

ROBO-VI-SDN-014

Configure BGP Keep Alive Timer to 1 and Hold Down Timer to 3 between the DLR and all ESGs that provide North-South routing.

With Keep Alive and Hold Timers between the DLR and ECMP ESGs set low, a failure is detected quicker, and the routing table is updated faster.

If an ESXi host becomes resource constrained, the ESG running on that ESXi host might no longer be used even though it is still up.

ROBO-VI-SDN-015

Configure BGP Keep Alive Timer to 4 and Hold Down Timer to 12 between the ToR switches and all ESGs providing North-South routing.

This provides a good balance between failure detection between the ToRs and the ESGs and overburdening the ToRs with keep alive traffic.

By using longer timers to detect when a router is dead, a dead router stays in the routing table longer and continues to send traffic to a dead router.

ROBO-VI-SDN-016

Create one or more static routes on ECMP enabled edges for subnets behind the DLR with a higher admin cost than the dynamically learned routes.

When the DLR control VM fails over router adjacency is lost and routes from upstream devices, such as the ToR switches, to subnets behind the DLR are lost.

You must configure each ECMP edge device with static routes to the DLR. If any new subnets are added behind the DLR, the routes must be updated on the ECMP edges.

ROBO-VI-SDN-017

Disable Graceful Restart on all ECMP Edges and Logical Router Control Virtual Machines.

Graceful Restart maintains the forwarding table which in turn will forward packets to a down neighbor even after the BGP timers have expired causing loss of traffic.

None.

ROBO-VI-SDN-018

In the consolidated cluster, do not create an anti-affinity rule to separate ECMP edges and Logical Router Control Virtual Machines.

• Because these clusters contain four hosts, creating an anti-affinity rule that contains four virtual machines results in not being able to enter maintenance mode to perform life cycle activities.

• During a host failure, vSphere HA cannot restart the virtual machine because of the anti-affinity rule.

If the active Logical Router control virtual machine and an ECMP edge reside on the same host and that host fails, a dead path in the routing table appears until the standby Logical Router control virtual machine starts its routing process and updates the routing tables.

To avoid this situation, add an additional host to the cluster and create an anti-affinity rule to keep these virtual machines separated.