Recommended Configuration Maximums. NSX for vsphere Updated on August 08, 2018

Similar documents
Recommended Configuration Maximums

Recommended Configuration Maximums

vrealize Operations Management Pack for NSX for vsphere 3.5 Release Notes

NSX-T Data Center Migration Coordinator Guide. 5 APR 2019 VMware NSX-T Data Center 2.4

vcenter Operations Management Pack for NSX-vSphere

vrealize Operations Management Pack for NSX for vsphere 2.0

vrealize Operations Management Pack for NSX for vsphere 3.0

NSX Administration Guide. Update 3 Modified on 20 NOV 2017 VMware NSX for vsphere 6.2

Cross-vCenter NSX Installation Guide. Update 6 Modified on 16 NOV 2017 VMware NSX for vsphere 6.3

vcloud Director Tenant Portal Guide vcloud Director 8.20

vrealize Operations Management Pack for NSX for vsphere 3.5.0

Cross-vCenter NSX Installation Guide. Update 3 Modified on 20 NOV 2017 VMware NSX for vsphere 6.2

Cross-vCenter NSX Installation Guide. Update 4 VMware NSX for vsphere 6.4 VMware NSX Data Center for vsphere 6.4

2V VMware Certified Professional 6 - Network Virtualization. Exam Summary Syllabus Questions

Exam Name: VMware Certified Associate Network Virtualization

vcloud Air - Virtual Private Cloud OnDemand Networking Guide

Exam Questions VCPN610

VMware vcloud Director Configuration Maximums vcloud Director 9.1 and 9.5 October 2018

2V0-642 vmware. Number: 2V0-642 Passing Score: 800 Time Limit: 120 min.

vrealize Operations Management Pack for NSX for vsphere Release Notes

Quick Start Guide (SDN)

vsphere Networking Update 1 ESXi 5.1 vcenter Server 5.1 vsphere 5.1 EN

VMware Integrated OpenStack Quick Start Guide

IBM Cloud for VMware Solutions NSX Edge Services Gateway Solution Architecture

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Customer Onboarding with VMware NSX L2VPN Service for VMware Cloud Providers

VMware Cloud on AWS Networking and Security. 5 September 2018 VMware Cloud on AWS

vcloud Air Advanced Networking Services Guide

What s New in VMware vcloud Director 8.20

Installing and Configuring vcloud Connector

vcloud Director API for NSX Programming Guide API Version 30.0 vcloud Director 9.1

vcloud Director API for NSX Programming Guide

Introducing VMware Validated Design Use Cases. Modified on 21 DEC 2017 VMware Validated Design 4.1

vcenter Operations Management Pack for vcns

NSX Installation Guide. Update 6 Modified on 16 NOV 2017 VMware NSX for vsphere 6.3

Introducing VMware Validated Design Use Cases

Vmware VCXN610. VMware Certified Implementation Expert (R) Network Virtualization.

Planning and Preparation. VMware Validated Design 4.0 VMware Validated Design for Remote Office Branch Office 4.0

1V0-642.exam.30q.

Introducing VMware Validated Designs for Software-Defined Data Center

IPv6 Best Operational Practices of Network Functions Virtualization (NFV) With Vmware NSX. Jeremy Duncan Tachyon Dynamics

Introducing VMware Validated Designs for Software-Defined Data Center

vcloud Director API for NSX Programming Guide API Version 29.0 vcloud Director 9.0

vcloud Director API for NSX Programming Guide API Version 27.0 vcloud Director 8.20

Introducing VMware Validated Designs for Software-Defined Data Center

DISASTER RECOVERY- AS-A-SERVICE FOR VMWARE CLOUD PROVIDER PARTNERS WHITE PAPER - OCTOBER 2017

Deploying VMware Validated Design Using OSPF Dynamic Routing. Technical Note 9 NOV 2017 VMware Validated Design 4.1 VMware Validated Design 4.

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Architecture and Design. 17 JUL 2018 VMware Validated Design 4.3 VMware Validated Design for Management and Workload Consolidation 4.

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

Getting Started Guide. VMware NSX Cloud services

Disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no commitme

vrealize Operations Management Pack for NSX for Multi-Hypervisor

VMware - NSX-vSphere. Dashboards. NSX-vSphere - Overview. Version:

VMware Cloud on AWS Getting Started. 18 DEC 2017 VMware Cloud on AWS

vsphere Networking Update 2 VMware vsphere 5.5 VMware ESXi 5.5 vcenter Server 5.5 EN

21CTL Disaster Recovery, Workload Mobility and Infrastructure as a Service Proposal. By Adeyemi Ademola E. Cloud Engineer

Architecture and Design. Modified on 21 AUG 2018 VMware Validated Design 4.3 VMware Validated Design for Software-Defined Data Center 4.

IaaS Integration for Multi- Machine Services. vrealize Automation 6.2

vshield Administration Guide

VMWare NSX Networking

Creating a VMware Software-Defined Data Center REFERENCE ARCHITECTURE VERSION 1.5

vshield Quick Start Guide

Session objectives and takeaways

NSX-T Upgrade Guide. VMware NSX-T 2.0

vcloud Air - Hybrid Cloud Manager Release Notes

Parallel to NSX Edge Using VXLAN Overlays with Avi Vantage for both North-South and East-West Load Balancing Using Transit-Net

Workload Mobility and Disaster Recovery to VMware Cloud IaaS Providers

Design Guide: Deploying NSX for vsphere with Cisco ACI as Underlay

PassTorrent. Pass your actual test with our latest and valid practice torrent at once

Architecting Tenant Networking with VMware NSX in VMware vcloud Director

Configure RSPAN with VMware

Installing and Configuring vcloud Connector

VMware Certified Professional 6 - Network Virtualization (NSX v6.2) Exam

vcloud Director Tenant Portal Guide 04 OCT 2018 vcloud Director 9.5

VMware vcloud Air. Enterprise IT Hybrid Data Center TECHNICAL MARKETING DOCUMENTATION

DESIGN GUIDE. VMware NSX for vsphere (NSX-v) and F5 BIG-IP Design Guide

VMware Cloud Foundation Planning and Preparation Guide. VMware Cloud Foundation 3.0

Architecture and Design. VMware Validated Design 4.0 VMware Validated Design for Micro-Segmentation 4.0

Provisioning Overlay Networks

vcloud Director User's Guide 04 OCT 2018 vcloud Director 9.5

IaaS Integration for Multi-Machine Services

Ordering and deleting Single-node Trial for VMware vcenter Server on IBM Cloud instances

Virtual Security Gateway Overview

Getting Started with VMware Cloud Assembly. 27 August 2018 VMware Cloud Assembly

VMworld disclaimer This presentation may contain product features that are currently under development. This overview of new technology represents no

VMware VCP6-NV 2V0-642

VMware vcloud Air Key Concepts

VMware Validated Design for Micro-Segmentation Reference Architecture Guide

VMware Integrated OpenStack Installation and Configuration Guide

VMware vcloud Networking and Security Overview

Service Description VMware NSX Cloud

Architecture and Design of VMware NSX-T for Workload Domains. Modified on 20 NOV 2018 VMware Validated Design 4.3 VMware NSX-T 2.3

Architecture and Design. Modified on 21 DEC 2017 VMware Validated Design 4.1 VMware Validated Design for Micro-Segmentation 4.1

vcloud Director User's Guide

Architecture and Design. 22 AUG 2017 VMware Validated Design 4.1 VMware Validated Design for Management and Workload Consolidation 4.

What s New with VMware vcloud Director 8.0

vcloud Director User's Guide

Dedicated Hosted Cloud with vcloud Director

vcloud Director Administrator's Guide vcloud Director 9.0

Transcription:

Recommended Configuration Maximums NSX for vsphere 6.3.6 Updated on August 08, 2018

You can find the most up-to-date technical documentation on the VMware website at: https://docs.vmware.com/ If you have comments about this documentation, submit your feedback to configmaxtool@vmware.com 3401 Hillview Ave. Palo Alto, CA 94304 www.vmware.com Copyright 2018 All rights reserved.copyright and trademark information. 2

This Configuration Maximums document provides the recommended configuration limits for VMware products.when you configure, deploy and operate your virtual and physical equipment, it is highly recommended you stay at or below the maximums supported by your product.the limits presented in the document are tested, recommended limits, and are fully supported by VMware. Disclaimer: The limits can be affected by other factors, such as hardware dependencies. For more information about the supported hardware, see the appropriate hardware compatibility guide.it might not be possible to maximize all configuration settings and expect your desired outcome.to ensure that you do not exceed supported configurations for your environment, consult individual solution limits.the recommended configuration maximums do not represent the theoretical possibilities of your product. 3

General : Nodes NSX for vsphere has a number of component nodes required for operation of the product. These include the NSX Manager, NSX Controllers and Hosts that are prepared for NSX. This section captures the configuration maximums for NSX nodes. In addition, NSX supports some vcenter objects that are discovered from vcenter inventory. Nodes Nodes vcenter Systems in Single NSX Manager Deployments vcenter Systems in CrossvCenter Deployments Nodes NSX Controllers 3 Only 3 controllers are supported in a production deployment of NSX for vsphere. A single controller may be used in a lab or proofof-concept deployment but is not supported for production deployments. Nodes vcenter Clusters Nodes Hosts per Cluster Nodes Nodes General : Hosts per NSX Manager (Single vcenter - Transport Zone) Hosts in Cross-vCenter Deployment 1 8 512 For IDFW deployments see the IDFW section. 24 For IDFW deployments see the IDFW section. A core component of NSX for vsphere is the which delivers routing, loadbalancing,vpn and other features. There are several general configuration maximums which are covered in this section. s per NSX Manager 2000 The backup Edge in a High- Availability pair of Edges is not included in this maximum. Interfaces Includes internal, uplink, and trunk interfaces. Sub-interfaces per Edge 200 Layer 2 Networking NSX for vsphere offers a layer 2 overlay networking solution as well as layer 2 bridging. Layer 2 Networking Logical Switches 000 Non-universal logical switches. Layer 2 Networking Logical Switch Ports 20000 Layer 2 Networking Layer 2 Networking Layer 2 Networking Layer 3 Networking : DHCP Universal Logical Switches in a Cross-vCenter Deployment MAC Identifiers per Overlay Logical Switch (VNI) VXLAN-VLAN Bridging per Instance 8500 This maximum includes both universal and non-universal logical switches. 24 If this number of MAC entries is exceeded then newer MAC entries will not be added until l the older MAC entries expire. This condition can lead to flooding in the logical network. 500 NSX for vsphere provides a DHCP server to deliver IP addresses to DHCP clients. DHCP DHCP Leases per Edge 2048 4

DHCP DHCP DHCP Layer 3 Networking DHCP Leases per Edge DHCP Leases per Edge DHCP Leases per Edge : 4096 4096 8192 NSX for vsphere provides an in-kernel distributed logical router. s 00 Interfaces per Distributed Logical Router Interfaces per ESXi Host ARP Entries per Distributed Logical Router Routes per Distributed Logical Router OSPF Adjacencies per BGP Neighbors per Layer 3 Networking : 999 Maximum of 8 uplinks. 000 20000 If this number of ARP entries is exceeded then newer ARP entries in the ARP table will replace older entries. 2000 Includes connected routes. Maximum 750 LSA type-1 prefixes. The NSX for vsphere provides a number of layer 3 networking features such as static and dynamic routing. ECMP Paths 8 NAT Rules per Edge Service Gateway - Compact NAT Rules per Edge Service Gateway - Large NAT Rules per Edge Service Gateway - Quad Large Edge NAT Rules per Edge Service Gateway - Extra Large Edge Static Routes per Edge Service Gateway BGP Routes per Edge Service Gateway - Compact BGP Routes per Edge Service Gateway - Large BGP Routes per Edge Service Gateway - Quad Large Edge BGP Routes per Edge Service Gateway - Extra Large Edge 2048 Includes both SNAT and DNAT rules. 4096 Includes both SNAT and DNAT rules. 4096 Includes both SNAT and DNAT rules. 8192 Includes both SNAT and DNAT rules. 2048 Applies to all Edge sizes. 20000 50000 250000 250000 5

BGP Neighbors per Edge BGP Neighbors per Edge BGP Neighbors per Edge BGP Neighbors per Edge OSPF Routes per Edge OSPF Routes per Edge OSPF Routes per Edge OSPF Routes per Edge OSPF LSA entries per Edge OSPF LSA entries per Edge OSPF LSA entries per Edge OSPF LSA entries per Edge OSPF Adjacencies per Edge OSPF Adjacencies per Edge OSPF Adjacencies per Edge OSPF Adjacencies per Edge OSPF Routes Redistributed per - Compact OSPF Routes Redistributed per - Large OSPF Routes Redistributed per - Quad Large OSPF Routes Redistributed per - Extra Large 20 50 50 20000 50000 0000 0000 20000 Maximum of 750 type-1 LSA entries. 50000 Maximum of 750 type-1 LSA entries. 0000 Maximum of 750 type-1 LSA entries. 0000 Maximum of 750 type-1 LSA entries. 20 40 40 2000 5000 20000 20000 6

Firewall : Grouping Objects Total Routes per Edge Service Gateway - Compact Total Routes per Edge Service Gateway - Large Total Routes per Edge Service Gateway - Quad Large Edge Total Routes per Edge Service Gateway - Extra Large Edge ARP entries per Edge Service Gateway - Compact ARP entries per Edge Service Gateway - Large ARP entries per Edge Service Gateway - Quad Large Edge ARP entries per Edge Service Gateway - Extra Large Edge 20000 50000 250000 250000 24 If exceeded then newer ARP entries in the ARP table will replace older entries. 2048 If exceeded then newer ARP entries in the ARP table will replace older entries. 2048 If exceeded then newer ARP entries in the ARP table will replace older entries. 2048 If exceeded then newer ARP entries in the ARP table will replace older entries. NSX for vsphere leverages a number of objects that allow for grouping to aid in configuration of various components of the product. Grouping Objects IP Sets 000 Grouping Objects Security Tags 750 Grouping Objects Virtual Machines per Tag 3500 Grouping Objects Grouping Objects Security Groups to which a Virtual Machine can be a Member Security Groups per NSX Manager 5 000 Grouping Objects Universal Security Groups 4000 Grouping Objects Universal IP Sets 4000 Grouping Objects Universal IP Sets per Universal Security Group Grouping Objects Universal Security Tags 750 Grouping Objects Firewall : Distributed Firewall Universal Security Tags per Virtual Machine NSX for vsphere provides a distributed, in-kernel Host based firewall to achieve micro-segmentation of workloads at the virtual NIC level. Distributed Firewall Rules per NSX Manager 0000 Can be a mix of local and universal rules. Distributed Firewall Rules per Virtual NIC 3500 Distributed Firewall Distributed Firewall Sections 000 Distributed Firewall Universal Distributed Firewall Rules 5 24000 Distributed Firewall Universal Firewall Sections 500 Distributed Firewall Audit Log Entries 00000 Distributed Firewall Flow Monitoring Data 2000000 Records over 15 days. Distributed Firewall Saved Distributed Firewall Rule Configurations 0 7

Firewall : The NSX for vsphere can function as a firewall in addition to the distributed firewall. Firewall : Firewall Rules per Edge Service Gateway 2000 Applies to all Edge sizes. NSX for vsphere supports the network introspection use case in which traffic can be redirected to a third-party service for introspection of that network traffic. Virtual Machines with Enabled Virtual Machines per Host with Enabled Rules per NSX Manager Security Policies with Redirection Rules per vnic Virtual Machines per Security Group with Network Introspection Enabled Redirection Rules per Security Policy Redirection Rules per Firewall Section Security Groups per Security Policy with Network Introspection Redirection Rules 3500 125 3500 25 00 300 00 The NSX for vsphere provides a load balancing service to distribute load across multiple workloads. Load Balancer VIPs per Edge Load Balancer VIPs per Edge Load Balancer VIPs per Edge Load Balancer VIPs per Edge Load Balancer Pools per Edge Load Balancer Pools per Edge Load Balancer Pools per Edge Load Balancer Pools per Edge 24 24 8

VPN : Layer 2 VPN Load Balancer Servers per Pool - Compact Load Balancer Servers per Pool - Large Load Balancer Servers per Pool - Quad Large Load Balancer Servers per Pool - Extra Large Load Balancer Health Checks - Compact Load Balancer Health Checks - Large Load Balancer Health Checks - Quad Large Load Balancer Health Checks - Extra Large Load Balancer Application Rule in Characters 32 32 32 32 320 320 320 3072 The NSX for vsphere provides a layer 2 VPN service. Layer 2 VPN Layer 2 VPN VPN : IPsec VPN L2VPN Clients (spoke) Handled by a Single L2VPN Server (hub) Networks per L2VPN Client- Server Pair 4096 Applies to all Edge sizes. 5 200 The NSX for vsphere provides a IPsec VPN service. IPsec VPN IPsec VPN IPsec VPN IPsec VPN VPN : SSL VPN IPsec Tunnels per Edge IPsec Tunnels per Edge IPsec Tunnels per Edge IPsec Tunnels per Edge 512 1600 4096 6000 The NSX for vsphere provides a SSL VPN service. SSL VPN Concurrent Sessions - Compact SSL VPN SSL VPN SSL VPN Concurrent Sessions - Large Concurrent Sessions - Quad Large Concurrent Sessions - Extra Large SSL VPN Private Networks 16 Applies to all Edge sizes. Firewall : NSX for vsphere supports an identity-based firewall in which the firewall rules that protect a given workload can be changed based on the identity of the user whom is using the workload. 50 0 0 00 9

Active Directory Groups 30000 Users per Active Directory Group Users in the Active Directory Domain Virtual Machines per NSX Manager Groups per Individual User 20 Security Groups Based on Active Directory Active Directory Groups per Security Group Virtual Machines per Security Group 250 0000 2500 300 00 Security Policies 250 Hosts 250 For the use case. Virtual Machines per Host 50 Note maximum VMs per host where both RDSH and VDI are in present is 30.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback