VCP6-NV Official Cert Guide (Exam #2V0-641)

Sample Content

Table of Contents

Introduction xx

    About This Book xx

    Who Should Read This Book xxi

    Book Features xxii

    How to Use This Book xxiii

    Certification Exam and This Preparation Guide xxv

    Book Content Updates xxvi

    Companion Website xxviii

    Pearson IT Certification Practice Test Engine and Questions xxviii

        Install the Software xxix

        Activate and Download the Practice Exam xxix

        Activating Other Exams xxx

        Assessing Exam Readiness xxx

        Premium Edition eBook and Practice Tests xxxi

Chapter 1 Introduction to VMware NSX 3

    Do I Know This Already? 3

    Foundation Topics 6

    Physical Network Challenges 6

    Ethernet Challenges 7

    IP Network Challenges 10

    Security Challenges 12

    VMware NSX 12

    Exam Preparation Tasks 17

    Review All the Key Topics 17

    Complete Tables and Lists from Memory 18

    Define Key Terms 18

Chapter 2 Network and VMware vSphere Requirements for NSX 21

    Do I Know This Already? 21

    Foundation Topics 24

    Physical Network Infrastructure 24

    POD Design 28

    Collapsed Access Layer 30

    Spine and Leaf Design 31

    NSX and Physical Network Infrastructure 33

    NSX and vSphere 34

        ESXi Host Network Connectivity 35

        vSphere Standard Switch 36

        vSS Configuration 39

    vSphere Distributed Switch 43

        Create vSphere Distributed Switch 45

        Migrate to vSphere Distributed Switch 49

    Configure LACP 52

    Configure QoS Marking 55

    Exam Preparation Tasks 58

    Review All the Key Topics 58

    Complete Tables and Lists from Memory 59

    Define Key Terms 59

Chapter 3 NSX Architecture and NSX Manager 61

    Do I Know This Already? 61

    Foundation Topics 64

    Network Planes 64

    NSX Architecture 66

    NSX Manager 68

    NSX Manager Base Configuration 73

    Cross vCenter NSX 80

    Exam Preparation Tasks 84

    Review All the Key Topics 84

    Complete Tables and Lists from Memory 85

    Define Key Terms 85

Chapter 4 VXLAN, NSX Controllers, and NSX Preparation 87

    Do I Know This Already? 87

    Foundation Topics 90

    VXLAN Introduction 90

    VXLAN 90

    NSX Controllers 96

        Deploying NSX Controllers 97

        Verifying NSX Controllers 101

        Creating an NSX Controller Cluster 104

        NSX Controller Master and Recovery 106

    IP Pools 107

    Host Preparation 109

    Host Configuration 113

    VNI Pools, Multicast Pools, and Transport Zones 120

    Exam Preparation Tasks 124

    Review All the Key Topics 124

    Complete Tables and Lists from Memory 125

    Define Key Terms 125

Chapter 5 NSX Switches 127

    Do I Know This Already? 127

    Logical Switches 130

    x VCP6-NV Official Cert Guide

    Foundation Topics 130

    Creating a Logical Switch 131

    Verifying Logical Switches 135

    Adding Virtual Machines to Logical Switches 137

    Logical Switch Tables 138

    VTEP Table 139

        Example: Populating the VTEP Table 140

        Example: Updating the VTEP Table 143

    MAC Table 144

    ARP Table 147

    Logical Switch Table Verification 149

    Unknown Unicast or ARP Request 152

    Replication Mode 152

    Multicast Replication Mode 154

    Unicast Replication Mode and Proxy VTEP 155

    Hybrid Replication Mode 156

    Exam Preparation Tasks 158

    Review All the Key Topics 158

    Complete Tables and Lists from Memory 159

    Define Key Terms 159

Chapter 6 Logical Switch Packet Walks 161

    Do I Know This Already? 161

    Foundation Topics 165

    Logical Switches Packet Walks 165

    Logical Switch Packet Walk Example 1 169

    Logical Switch Packet Walk Example 2 170

    Logical Switch Packet Walk Example 3 171

    Logical Switch Packet Walk Example 4 177

    Logical Switch Packet Walk Example 5 189

    Exam Preparation Tasks 193

    Review All the Key Topics 193

    Define Key Terms 193

Chapter 7 Logical Router 195

    Do I Know This Already? 195

    Foundation Topics 198

    NSX Logical Router 198

    Logical Router Control VM 201

    Creating and Deploying the Logical Router 204

    Logical Router Verification 210

    Connectivity Testing 216

    Locale ID 221

    Exam Preparation Tasks 225

    Review All the Key Topics 225

    Define Key Terms 225

Chapter 8 Logical Router Packet Walks 227

    Do I Know This Already? 227

    Foundation Topics 232

    Logical Router Packet Walks 232

    Logical Router Packet Walk Example 1 235

    Logical Router Packet Walk Example 2 240

    Logical Router Packet Walk Example 3 246

    Exam Preparation Tasks 250

    Review All the Key Topics 250

    Define Key Terms 250

Chapter 9 NSX Edge Services Gateway 253

    Do I Know This Already? 253

    Foundation Topics 256

    NSX Edge 256

    NSX Edge Size 259

    Edge HA 260

    Creating and Deploying an NSX Edge 262

    Undeployed NSX Edge 267

    Monitoring and Verifying the NSX Edge 269

    Exam Preparation Tasks 273

    Review All the Key Topics 273

    Complete Tables and Lists from Memory 273

    Define Key Terms 273

Chapter 10 Layer 2 Extensions 275

    Do I Know This Already? 275

    Foundation Topics 278

    Layer 2 VPN 278

    Configuring Layer 2 VPN 280

    Verifying Layer 2 VPN 289

    Layer 2 VPN Packet Walk 290

    Layer 2 Bridging 296

    Configuring Layer 2 Bridging 299

    Verifying Layer 2 Bridging 301

    Layer 2 Bridging Packet Walk 303

    Hardware VTEPs 307

    Exam Preparation Tasks 312

    Review All the Key Topics 312

    Complete Tables and Lists from Memory 313

    Define Key Terms 313

Chapter 11 Layer 3 Connectivity Between Virtual and Physical Networks 315

    Do I Know This Already? 315

    Foundation Topics 318

    Logical Router VLAN LIF 318

    Designated Instance 324

    NSX Edge Gateway 330

    Equal Cost Multipathing 336

    Exam Preparation Tasks 340

    Review All the Key Topics 340

    Complete Tables and Lists from Memory 340

    Define Key Terms 341

Chapter 12 Routing Protocols 343

    Do I Know This Already? 343

    Foundation Topics 346

        Routing 346

    Administrative Distance and Cost 347

    Static Routes 349

        OSPF 351

        OSPF Areas 352

        OSPF Neighbor Adjacencies 354

        LSA Types 355

        Configuring OSPF 356

        Verifying OSPF 360

    BGP 361

        Configuring BGP 366

        Verifying BGP 368

    IS-IS 369

        IS-IS Areas and IS Types 369

        Configuring IS-IS 370

        Verifying IS-IS 373

    Route Redistribution 373

    Exam Preparation Tasks 376

    Review All the Key Topics 376

    Complete Tables and Lists from Memory 377

    Define Key Terms 377

Chapter 13 NSX Edge VPN Services 379

    Do I Know This Already? 379

    Foundation Topics 382

    IPsec VPNs 382

        IPsec VPN Establishment 384

    Configuring IPsec VPNs 386

    Verifying IPsec VPNs 392

    SSL VPN-Plus 394

    Configure SSL VPN-Plus 395

        SSL VPN-Plus Server Settings 396

        Creating a Web Resource 397

        Configuring Authentication 398

        Enable SSL VPN-Plus Service 402

        Adding the Installation Package 403

        Adding an IP Pool 405

        Adding Private Networks 406

    Verifying SSL VPN-Plus 408

    Exam Preparation Tasks 411

    Review All the Key Topics 411

    Complete Tables and Lists from Memory 411

    Define Key Terms 411

Chapter 14 NSX Edge Network Services and Security 413

    Do I Know This Already? 413

    Foundation Topics 416

    Network Address Translation 416

    NSX Edge Load Balancer 420

    Configuring the Edge Load Balancer 427

        Application Profile 427

        Server Pools 430

        Virtual Server 431

        Enable Load Balancer 433

    NSX Edge Protocol and Port Groupings 433

    Configure NSX Edge DHCP and DNS 434

    NSX Edge Logical Firewall 436

    Configuring an Edge Firewall 439

    Exam Preparation Tasks 443

    Review All the Key Topics 443

    Complete Tables and Lists from Memory 443

    Define Key Terms 443

Chapter 15 Distributed Logical Firewall 445

    Do I Know This Already? 445

    Foundation Topics 449

    Traditional Firewall Design Compromises 449

    Distributed Logical Firewall 453

        DFW Thresholds and Limits 458

        Exclusion List 460

    Logical Firewall Rules 460

        Creating Firewall Sections and Rules 462

        Firewall Rules Saved Configurations 468

    NSX Manager and Domains 469

    Verifying DFW Functionality 470

    SpoofGuard 471

    Exam Preparation Tasks 474

    Review All the Key Topics 474

    Complete Tables and Lists from Memory 475

    Define Key Terms 475

Chapter 16 Security Services 477

    Do I Know This Already? 477

    Foundation Topics 480

    Security Services for NSX 480

        Registering Service with NSX 482

        Deploying the Security Service Appliance 484

    Service Composer 486

        Security Groups 487

        Security Policies 491

    Logical Firewall Service Redirection 496

    Security Tags 497

    IP Sets and MAC Sets 499

    Exam Preparation Tasks 501

    Review All the Key Topics 501

    Complete Tables and Lists from Memory 501

    Define Key Terms 501

Chapter 17 Additional NSX Features 503

    Do I Know This Already? 503

    Foundation Topics 506

    VMware Data Security 506

    Activity Monitoring 509

        VM Activity 511

        Inbound Activity 512

        Outbound Activity 513

        Inter Container Interaction 513

        Outbound AD Group Activity 514

        Viewing Activity Report 514

    Flow Monitoring 514

    Traceflow 519

    Role Based Access Control 521

    Exam Preparation Tasks 524

    Review All the Key Topics 524

    Complete Tables and Lists from Memory 525

    Define Key Terms 525

Chapter 18 NSX Automation 527

    Do I Know This Already? 527

    Foundation Topics 530

    REST 530

    NSX API Calls for Logical Switch 532

    NSX API Calls for Logical Router 536

    NSX API Calls for NSX Edge 540

    vRealize Automation 542

        External Network Profile 544

        Routed Network Profile 544

        Private Network Profile 545

        NAT Network Profile 546

    Exam Preparation Tasks 548

    Review All the Key Topics 548

    Complete Tables and Lists from Memory 548

    Define Key Terms 549

Chapter 19 Upgrade to NSX for vSphere 6.2 551

    Do I Know This Already? 551

    Foundation Topics 555

    Upgrade vCloud Network and Security to NSX for vSphere 555

        Upgrade to NSX Manager 555

        Upgrade to NSX VIBs 558

        Upgrade to NSX DFW 559

        Upgrade to NSX Edge 559

        Upgrade to USVM 560

    Upgrade NSX for vSphere to NSX for vSphere 6.2 561

        Upgrade to NSX Manager 6.2 561

        Upgrade NSX Controllers to 6.2 563

        Upgrade Host Clusters to 6.2 565

        Upgrade NSX Edges to 6.2 566

    Exam Preparation Tasks 568

    Review All the Key Topics 568

    Define Key Terms 568

CHAPTER 20 Final Preparation 571

    Getting Ready 571

    Taking the Exam 574

    Tools for Final Preparation 575

        Review Tools on the Companion Website 575

        Pearson Cert Practice Test Engine and Questions 576

        Using the Exam Engine 578

Appendix A Answers to the “Do I Know This Already?” Quizzes 581

Appendix B VCP6-NV Exam 2V0-641 Updates 585

GLOSSARY 588

Index 596

ONLINE ELEMENTS

APPENDIX C Memory Tables

APPENDIX D Memory Tables Answer Key

APPENDIX E Study Planner

TOC, 9780789754806, 7/21/2016

Updates

Submit Errata

More Information