Bayu Wibowo is a seasoned Network Virtualization Consultant in the APJ arena. With over 10 years of industry experience, he has rapidly earned reputation and awards for his continual community involvement as a Cisco Champion, VMware vExpert NSX, and VMTN Community Warrior. Working as a Network Virtualization Consultant for Datacom, he now plays an integral role in the development and implementation of multiple innovative technologies, including VMware NSX, Open Networking, and numerous more.
Bayu Wibowo is a seasoned Network Virtualization Consultant in the APJ arena. With over 10 years of industry experience, he has rapidly earned reputation and awards for his continual community involvement as a Cisco Champion, VMware vExpert NSX, and VMTN Community Warrior. Working as a Network Virtualization Consultant for Datacom, he now plays an integral role i
1. Is it possible for the physical server to reach its gateway which is residing inside the virtual environment over VXLAN ?
I assume 10.10.10.x is your overlay network.
Do you use NSX logical switch?
Is the gateway of the virtual environment on NSX DLR?
Is your requirement to have physical server 10.10.10.6 on the same subnet as the network on the virtual environment?
NSX VXLAN is its own network virtualisation so if you want to extend that to outside world i.e. physical VLAN, you would need to do NSX Layer 2 bridging
There are two types of Layer 2 bridging
a. Software based layer 2 bridging, native in VMware NSX. The physical VLAN that you want to bridge must be accessible from NSX VXLAN/VTEP VDS and need to be layer 2 adjacent. The gateway of physical VLAN can be the NSX DLR
b. Hardware based layer 2 bridging using Hardware VTEP gateway, for Nexus 9K see this link: https://www.cisco.com/c/en/us/products/collateral/switches/nexus-9000-series-switches/white-paper-c11-740091.html
This is bridging NSX logical switch to a physical port, the actual physical port VLAN can be on any VLAN. Requires the hardware VTEP on different layer 3 network, gateway of NSX logical switch and physical server cannot be on the DLR
If I'm not mistaken, last time for hardware VTEP to work in Nexus 9K, the switch cannot run on MP-BGP EVPN - but I'm not quite sure better to double check this
I have a slide deck that cover hardware bridging here: https://www.slideshare.net/bayupw/vmware-nsx-and-arista-l2-hardware-vtep-gateway-integration
2. How to make my physical and virtual VTEPs communicate? Is there any configuration example for having hybrid overlays?
They don't really need to communicate unless you want to do hardware based layer 2 bridging to NSX
3. How to make the servers inside virtual environment communicate with L4 & L7 devices?
Is communicating over Layer 3 acceptable?
If the L4/L7 devices need to be on the same subnet then you need layer 2 bridging
... View more
Hi Sarabjit, I don't have any diagrams other than what listed in the links I provided in previous reply. But if you refer to this release notes: https://www.cisco.com/c/en/us/td/docs/switches/datacenter/aci/apic/sw/3-x/release_notes/apic_rn_311.pdf It says that AVE runs in user space as a VM (or also referred as Service VM) so it will not run in kernel space like NSX or AVS/Nexus1000v where NSX/AVS will install VIB(s) into ESXi kernel space. I don't have any public information yet on this but a service VM normally deployed on ESXi host. Will post here once I have public facing info around AVE
... View more
Hi Sarabjit, Yes it is true that 3rd party switch API is not supported after 6.5U1, it is also documented in VMware KB here: VMware KB 2149722 - FAQ: Discontinuation of third party vSwitch program As an AVS replacement, you may want to take a look at AVE, see below links: Introducing the Cisco Application Centric Infrastructure (ACI) Virtual Edge - Cisco Cisco Application Centric Infrastructure Virtual Edge Data Sheet - Cisco
... View more
Hi Mike, which vSphere license is used by your customer? Is it OEM license through Cisco or OLP/Open License through VMware? With OLP, if you have an active support & subscription services (SnS) you can upgrade license key in My VMware portal without the need to purchase a new license/SKU, see this VMware KB: How to upgrade license keys in My VMware (2006974) If it is an OEM license, you probably need to check with the OEM Vendor OEM Licensing Help
... View more