You deploy a load balancer for use by the cross-region Workspace ONE Access, vRealize Operations Manager, and vRealize Automation components, which are connected to the Mgmt-xRegion01-VXLAN application virtual network.

1. In a Web browser, log in to vCenter Server by using the vSphere Client.

   Setting	Value
   URL	https://sfo01m01vc01.sfo01.rainpole.local/ui
   User name	[email protected]
   Password	vsphere_admin_password

2. In the Networking and security inventory, click NSX Edges.
3. From the NSX Manager drop-down menu, select 172.16.11.65.
4. Click Add and select Edge services gateway.
5. On the Basic details page of the New edge services gateway wizard, enter these values and click Next.

   Setting	Value
   Name	sfo01m01lb01
   Hostname	sfo01m01lb01.sfo01.rainpole.local
   Tenant	-
   Description	Load Balancer for vRealize Suite
   Deploy NSX Edge	Selected
   Enable high availability	Selected

6. On the Settings page, enter these values and click Next.

   Setting	Value
   User name	admin
   Password	edge_admin_password
   Enable SSH access	Selected
   Enable FIPS mode	Deselected
   Enable auto rule generation	Selected
   Edge control level logging	Info

7. On the Deployment configuration page, perform the following configuration steps, and click Next.
   1. From the Datacenter drop-down menu, select sfo01-m01dc.
   2. Under Appliance size, select Large.
   3. Click Add edge appliance VM, enter these values, and click OK.

      Setting	Value
      Resource pool	sfo01-m01-mgmt01
      Datastore	sfo01-m01-vsan01
      Folder	sfo01-m01fd-nsx
      Resource reservation	System Managed

   4. Repeat Step 7.c to create a second appliance.
8. On the Configure interfaces page, configure the OneArmLB interface.
   1. Click Add.
   2. On Basic tab, enter these values.

      Setting	Value
      Name	OneArmLB
      Type	Internal
      Connected to	Mgmt-xRegion01-VXLAN
      Connectivity status	Connected

   3. On Basic tab, under Configure subnets, click Add and enter these values.

      Setting	Value
      Primary IP address	192.168.11.2
      Subnet prefix length	24

   4. Click the Advanced tab and enter these values.

      Setting	Value
      MAC address	-
      MTU	9000
      Proxy ARP	Disabled
      Send ICMP redirect	Selected
      Reverse path filter	Enable Strict
      Fence parameters	-

   5. Click OK and click Next.
9. On the Default gateway page, turn off the Configure default gateway toggle to disable the default gateway and click Next.
10. On the Firewall default policy page, configure these settings and click Next.

    Setting	Value
    Firewall default policy	Enabled
    Default traffic policy	Accept
    Logging	Disabled

11. On the High availability page, configure these settings and click Next.

    Setting	Value
    vNIC	any
    Declare dead time	15
    Management IPS	-
    HA logging	Disabled

12. On the Review page, review the configuration settings that you entered and click Finish.
13. Enable HA logging.
    1. On the NSX Edges page, click the ID of the sfo01m01lb01 edge services gateway to open its network settings.
    2. Click the Configure tab and click High availability.
    3. Click Edit.
    4. Turn on the Logging toggle and click Save.
14. Configure the default gateway.
    1. On the NSX Edges page, click the ID of the sfo01m01lb01 edge services gateway to open its network settings.
    2. Click the Routing tab and click Global configuration.
    3. Next to Default Gateway, click Edit.
    4. In the Gateway IP text box, enter 192.168.11.1 and click Save.
    5. Click Publish changes.
15. Enable the Load Balancer and Acceleration mode.
    1. On the NSX Edges page, click the ID of the sfo01m01lb01 edge services gateway to open its network settings.
    2. Click the Load balancer tab, click Global configuration.
    3. Click Edit and turn on the Load balancer and Acceleration toggles.
    4. Click Save.