Type
Virtual
Classroom ILT
Skill Level

Available dates
Learning Path
Virtual
Duration
1 Day

TYPE
Virtual
Classroom ILT
LEARNING PATH
SKILL LEVEL

DURATION
AVAILABLE DATES
Introduction
This five-day, comprehensive, fast-paced training course presents VMware NSX as a part of the software-defined data center. You will learn how to use logical switching in VMware NSX to virtualize your switching environment. The course also details logical routing to enable you to dynamically route between different virtual environments. You will also learn how to use gateway services, firewall configurations, and security services to help secure and optimize your VMware NSX environment.
Audience profile
Experienced system or network administrators.
Pre-requisites
- Understanding of enterprise switching and routing
- Knowledge of TCP/IP services
- Experience with firewalls and firewall rule sets
Course objectives
By the end of the course, you should be able to meet the following objectives:
- Configure and deploy VMware NSX components for management and control
- Describe basic VMware NSX layer 2 networking
- Configure, deploy, and use logical switch networks
- Configure and deploy VMware NSX distributed router appliances to establish east-west connectivity
- Configure and deploy VMware NSX Edge services gateway appliances to establish north- south connectivity
- Configure VMware NSX L2 bridging
- Configure and use all main features of the NSX Edge services gateway
- Configure NSX Edge firewall rules to restrict network traffic
- Configure VMware NSX distributed firewall rules to restrict network traffic
- Configure Service Composer policies
- Configure an identity-aware firewall
- Describe VMware NSX data security
- Use the cross-vCenter VMware NSX feature
Course content
Session 1: Introduction to vSphere Networking | |
Describe VMware vSphere networking components | Describe vSphere standard switches |
Describe vSphere distributed switches | Explain the function VMkernel ports provide |
Explain the services provided by VMkernel ports | |
Session 2: Introduction to NSX | |
Explain what is missing in data centers today | Describe how network virtualization can help data centers |
Explain how the new complete SDDC model improves data center operations | Describe the benefits of NSX |
Identify NSX key use cases | |
Session 3: NSX Architecture | |
Describe the NSX architecture | Identify the planes of NSX operations |
Summarize the planes of NSX operations | Identify the components of each plane |
Summarize the deployment of NSX Manager | Describe the deployment of the control plane |
Identify and describe user world agents | List the data plane components |
Session 4: NSX Infrastructure Preparation | |
Describe the NSX installation overview | • Identify what is involved in planning an NSX deployment |
Verify the NSX Manager and vCenter Server registration | Describe the deployment and verification of the NSX Controller cluster |
Session 5: NSX Logical Switch Networks | |
Describe the switching challenges in current data centers | Explain TZ, VTEP, and VXLAN |
Describe the procedure of preparing the infrastructure for virtual networking | Summarize logical switching segment ID pools and address ranges |
Discuss the NSX replication modes | Explain the VXLAN Network Identifier (VNI) |
Explain the special CDO logical switch and transport parameters | Explain logical switch packet walks |
Session 6: NSX Logical Routing | |
Describe the routing challenges in current data centers | Explain Hairpinning |
Describe the East-West and North-South routing concepts | Define the NSX Distributed Logical Router |
Define the NSX Edge services gateway | Explain the work flows of a DLR |
Explain the logical router, interfaces, and interface addresses | Describe the logical router traffic flow on the same hosts and Between different hosts |
Describe logical router deployment models | Explain the packet flows of an NSX Edge services gateway |
Explain the common topologies of an NSX Edge services gateway | |
Session 7: Advanced NSX Logical Routing | |
Explain static and dynamic routing | Describe DLR and NSX Edge static and dynamic routing configuration |
Explain OSPF and BGP routing protocols | Explain ingress and egress traffic flows |
Describe and configure Equal-Cost Multipathing | Describe high availability for DLR and NSX Edge service gateways |
Session 8: NSX L2 Bridging | |
Explain L2 bridging use cases | Describe software and hardware L2 bridging between VXLAN and VLANs |
Discuss L2 bridging packet flows | |
Session 9: NSX Edge Services | |
Describe the NSX Edge Services | Explain how Network Address Translation (NAT) works |
Describe source and destination NAT | Explain NAT64 |
Session 10: NSX Edge VPN Services | |
Describe the NSX Edge VPN Services | Describe the VPN use cases |
Explain NSX IPsec VPN services | Describe the IPsec security protocols: Encapsulating Security Payload |
Configure an NSX Edge for IPsec VPN services | Explain NSX Edge L2 VPN services |
Configure a L2 VPN on an NSX Edge | Explain NSX Edge SSL VPN-Plus services |
Explain the SSL VPN-Plus client and installation package | Configure NSX Edge SSL VPN-Plus server settings |
Session 11: NSX Security Services | |
Describe SDDC security challenges | Explain the evolution of firewalls |
Describe the NSX logical firewalls | Describe the Distributed Firewall architecture |
Explain how to work with firewall rule sections | Differentiate L2 and L3 firewall rules |
Describe exclusion lists | Explain L7 filtering in the DFW |
Define an IP address, MAC address, a security, and service group | Describe the VMware Tools IP address discovery method |
Session 12: NSX Advanced Security Services | |
Describe NSX SpoofGuard | Explain how to enable NSX SpoofGuard |
Describe the NSX Identity Firewall | Explain how Identity Firewall works with AD |
Discuss RDSH and its use in Identity Firewall | Explain Application Rule Manager |
Describe the selection of virtual machines for Application Rule Manager | Explain how to create a monitoring session |
Describe the publication of firewall rules from Application Rule Manager | |
Session 13: NSX Introspection Services | |
Describe the types of introspection services | Describe the installation and configuration of Guest and Network Introspection |
Explain service chaining | Define the available advanced services |
Describe Guest Introspection services | Describe Network Introspection services |
Describe how to view the status of Guest and Network Introspection | Summarize Guest and Network Introspection alarms, events, and audit messages |
Session 14: Cross-vCenter NSX | |
Describe cross-vCenter features and use cases | Describe the components involved in cross-vCenter NSX |
Identify NSX Manager roles and NSX Controller cluster placement | Deploy universal logical networks |
Describe the deployment models available for cross-vCenter NSX | Explain the design considerations for cross-vCenter NSX |
Associated certifications and exam
The VMware NSX 4.x Professional V2 exam (2V0-41.24) which leads to VMware Certified Professional – Network Virtualization 2024 (VCP-NV 2024) is a 55-item exam, with a passing score of 300 using a scaled method.
This exam may contain a variety of item types including multiple-choice, multiple-selection multiple-choice, build-list, matching, drag-and-drop, point-and-click and hot-area.
Associated Certification:
VCP-NV 2024
Exam Delivery:
This is a proctored exam delivered through Pearson VUE.

VMware Overview
VMware has been at the forefront with innovative software solutions that enable a software-defined enterprise. To take advantage, organizations need IT professionals who possess the cloud and virtualization skills required to support these environments.
For nearly 8 years, Torque IT has maintained the status of VMware Authorized Training Centre (VATC) in Africa. Torque IT is the first South African owned VMware Authorized Training Centre (VATC) that has locally available skills and resources to offer our clients the broadest range of scheduled authorized VMware training courses, across our national offices, or onsite at any of our customer’s offices across Africa.
Torque IT has been the proud recipient of the prestigious (VATC) of the year award in Africa for four consecutive years. These achievements reflect our commitment to providing you with the highest quality skills development, enablement, training, and certification solutions that demonstrate exceptional depth, breadth, and expertise across Data Center Virtualization, Cloud Infrastructure, Data Center & Cloud Management, Network Virtualization and End-User Computing.