Académique Documents
Professionnel Documents
Culture Documents
Management / Management /
Common vCenter Single Sign-On Domain Management /
vRealize
Management /
Compute
vRealize
Compute
vRealize
Automation
Management Stack Management Stack Compute
Automation
Compute Automation
(Ring Topology) vCenter Servers vCenter Servers
vCenter Servers vCenter Servers Proxy Agents
vCenter Server vCenter Server
Appliance Appliance
NSX vRealize Log Insight Cluster vRealize Log Insight Cluster NSX
NSX Remote Collectors Remote Collectors NSX
Event
Region A
Region B Management Stack Management Stack Master Worker Worker
Forwarding
via Ingestion Master Worker Worker
Clctr Clctr Clctr Clctr
NSX Manager Pairing Shared Node Node Node API Node Node Node
NSX Manager NSX Manager Storage
Node Node Node Node Shared
Storage vSAN vSAN
(Primary) (Secondary) Systems Systems
vRealize
Platform Services Platform Services SDPlatform Services Platform Services NSX Edge Management Stack Import of Management Stack NSX Edge Analytics Cluster
vRealize
Operations
vSAN NFS vSAN NFS Operations
Remote
Controller Controller Controller Controller Services Gateways NSX Universal NSX Controller Configuration Services Gateways
Collectors
Appliance Appliance Appliance Appliance from Primary NSX Manager Master Replica Data
(N/S Routing) Controller Cluster (N/S Routing) Node Node Node
NSX Edge Services Compute Stack Compute Stack NSX Edge Services Region A Management Pod Region B Management Pod Region A Management Pod Region B Management Pod
NSX Edge Services NSX Edge Services Gateway w/ HA vCenter Server vCenter Server Gateway w/ HA
Gateway w/ HA Gateway w/ HA (One-Arm Load Balancer) Appliance Appliance (One-Arm Load Balancer)
(Load Balancer) (Load Balancer)
Manager Manager
Orchestrator Automation Business Automation Business
https://my.sddc.local/vcac/org/company
vSphere Update vSphere Update NSX Edge Compute Stack NSX Import of Compute Stack NSX Edge VRO VRA IWS IMS DEM IAS SQL BUS IAS BUC
Manager Download Manager Download Services Gateways Universal Controller NSX Controller Configuration Services Gateways Edge Business Group Business Group Business Group Business Group Edge
Service Service (N/S Routing) Cluster
from Primary NSX Manager
(N/S Routing) Reservation Reservation Reservation Reservation Reservation Reservation
VRO VRA IWS IMS DEM IAS BUC IAS Fabric Fabric
Region A Fabric Group Region B Fabric Group
Admin Admin
IaaS Region A Data Center Infrastructure Fabric Region B Data Center Infrastructure Fabric IaaS
Region A Management Pod Region B Management Pod Region A Shared Edge and Compute Pod Region B Shared Edge and Compute Pod Admin Admin
Shared Edge/Compute Pod Additional Compute Pod(s) Shared Edge/Compute Pod Additional Compute Pod(s)
(Edge Resource Pool) (Edge Resource Pool)
Region A Management Pod Region B Management Pod
OS OS OS OS OS OS OS OS OS
Universal Compute Transport Zone Management Pod ESXi Host Shared Edge and Compute Pod ESXi Host
Spine Spine Spine Universal Logical Switch Universal Logical Switch
Universal Management Transport Zone Local Compute Transport Zone
North/South
L2
10 GigE nic0 nic1 10 GigE 10 GigE nic0 nic1 10 GigE L2
UDLR UDLR & DLR
Routing
L3 L3 L3 L3
Spine Spine
Management Distributed Switch Compute Distributed Switch L3 L3
APP APP APP APP APP APP APP APP APP APP
Routed Uplinks (ECMP) MTU 9000 MTU 9000
VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP VTEP OS OS OS OS OS OS OS OS OS OS
L3 L3
Layer 3 ToR Switch
Management Distributed Switch Compute Distributed Switch
VDP vCenter vCenter L2 L2
Core Platform
(Management)
ESXi ESXi ESXi ESXi ESXi ESXi ESXi ESXi L3
(Management) (Compute)
Services
MTU MTU
VLAN NFS VLAN NFS SRM PSC PSC
40 GigE 40 GigE L2 9000 9000 Edge
(Management) (Compute) (Management) NSX Controllers N/S NSX EDGE N/S NSX EDGE NSX Controllers
Leaf Leaf Leaf Leaf Leaf Leaf Resource
Leaf Leaf (Management) (Management) (Compute) (Compute)
MTU MTU Pool
VLAN Management VLAN Management VR NSX Manager NSX Manager
vSAN
9000 9000
L3 L3 L3
Any Supported Storage VLAN 1611 VLAN 1612 VLAN 1613 VLAN 1614
(Management) (Compute) (Management)
UDLR UDLR & DLR
IGMP IGMP IGMP IGMP IGMP IGMP MTU MTU
L2 IGMP IGMP VLAN vMotion 9000 VLAN vMotion 9000
L2 L2
Span of VLANs
plus NFS plus NFS MTU MTU Management Management
10 GigE 10 GigE VLAN VTEP (VXLAN) 9000 VLAN VTEP (VXLAN) 9000
Distributed
Management Pod
Shared Edge and Compute Cluster
Switches
North/South Uplink(s)
Span of VLANs
North/South Uplink(s)
(4 vSAN Ready Nodes) Management Cluster
& Compute Cluster n
MTU MTU vMotion vMotion
VLAN vSAN 9000 VLAN vSAN 9000
Minimum 4 vSAN Ready Nodes Recommended | vSAN Enabled Minimum 4 Nodes | vSAN Ready Nodes Recommended VLAN Trunk (802.1Q) vSAN vSAN
Server vSphere HA and DRS Enabled vSphere HA and DRS Enabled | Business Workload Requirements Region Dependent VXLAN VXLAN xxxx
ESXi Host VLAN External Management VLAN Uplink 01
Region Independent VXLAN VXLAN xxxx
Shared Edge and Compute Pod
Management Pod MTU
& Compute Pod n VLAN vSphere Replication 9000 VLAN Uplink 02
The management pod hosts the infrastructure components used to instantiate,
Management vMotion VXLAN vSAN
manage and monitor the SDDC. This includes the core infrastructure
Shared Edge and Compute Pod Workloads running in the SDDC do not have direct access to external networks.
172.16.11.0/24 172.16.12.0/24 172.16.13.0/24 172.16.14.0/24 VLAN Uplink 01
components, such as the Platform Services Controllers, vCenter Server instances,
Edge/Compute Cluster
To access external networks, tra c is routed through distributed routing ESXi-MGMT-01 ESXi-MGMT-02 ESXi-MGMT-03
Transport Zones
(4+ Hosts) VTEPs VTEPs VTEPs VTEPs ESX-COMP-01
Management Custer
NSX Managers, NSX Controllers for the management stack, vSphere Replication, to the NSX Edge Services Gateways in the shared edge and compute pod. DGW: DGW:
Site Recovery Manager, as well as the SDDC monitoring and automation Expansions beyond the initial shared pod are simply compute pods. 172.16.11.253 172.16.12.253 UDLR UDLR UDLR UDLR & DLR
Universal
solutions like vRealize Operations, vRealize Log Insight and vRealize Automation. VLAN Uplink 02
Distributed Logical Routing and Application Virtual Networks for Management, Operations and Automation Solutions Storage
Distributed Logical Routing vRealize Operations vRealize Automation, vRealize Orchestrator vSAN Ready Nodes NFS Storage
and Application Virtual Networks and vRealize Log Insight and vRealize Business for Cloud
Region A Region B
Caching
SSD PCIe NVMe Tier
Read and Write Cache NFS Storage Array NFS Storage Array
ECMP
NSX Edge
Region A Region B ECMP
NSX Edge
Region A Region B Region A Region B
ECMP ECMP Services Gateways Services Gateways
NSX Edge NSX Edge
Internet or Internet or Services Gateways Services Gateways BGP Universal Transit Network Universal Transit Network BGP
Peering Universal Logical Switch / VXLAN Segment 192.168.10.0/24 192.168.10.0/24 Universal Logical Switch / VXLAN Segment Peering
Enterprise Enterprise BGP Universal Transit Network Universal Transit Network BGP
WAN/MPLS WAN/MPLS Peering Universal Logical Switch / VXLAN Segment 192.168.10.0/24 192.168.10.0/24 Universal Logical Switch / VXLAN Segment Peering
Spine To Shared Edge and Compute Pod To Shared Edge and Compute Pod Spine Region Independent Application Virtual Network Region Independent Application Virtual Network
Switches Switches Region Independent Application Virtual Network Region Independent Application Virtual Network Universal Logical Switch / VXLAN Segment Universal Logical Switch / VXLAN Segment Volume 1 Volume 2 Volume 1 Volume 2
To Additional Compute Pods To Additional Compute Pods
Universal Logical Switch / VXLAN Segment Universal Logical Switch / VXLAN Segment Capacity
NSX Edge Services Gateway NSX Edge Services Gateway Data
NSX Edge Services Gateway NSX Edge Services Gateway
One-Arm Load Balancer
192.168.11.0/24 192.168.11.0/24
One-Arm Load Balancer
Persistence Export Export Export Export Export Export
One-Arm Load Balancer One-Arm Load Balancer
192.168.11.0/24 Tier (vRealize (vRealize (vSphere (vRealize (vRealize (vSphere
L3 L3 192.168.11.0/24
Top-of-Rack Top-of-Rack Automation) Log Insight) Data Protection) Automation) Log Insight) Data Protection)
Leaf Switches 172.16.11.0/24 172.17.11.0/24 Leaf Switches
L2 L2 APP APP APP APP
VRA VRA VRA VRA
OS OS OS OS
APP APP APP APP APP APP APP
BGP Peering BGP Peering
OS OS OS OS OS OS OS
NSXM VDP PSC VC VC PSC VDP NSXM
Master Replica Data Master Replica Data APP APP
IWS APP APP
IWS
VMware Validated Designs use vSAN Ready Nodes to ensure seamless compatibility and support. The design used NFS storage as a secondary storage tier for management and compute pods.
ECMP OS OS OS OS OS OS OS OS ECMP
Node Node Node
IWS IWS
NSX Edge NSX Edge Node Node Node OS OS OS OS The configuration and assembly for each node is standardized with all components installed the same manner to NFS is used as the target for vSphere Data Protection backups and vRealize Log Insight log archives in the management pod.
Services Gateways Services Gateways
BGP Universal Transit Network Universal Transit Network BGP vRealize Operations Replicated for Disaster Recovery eliminate system variability. vSAN enables both hybrid and all-flash architectures. NFS is also used to host the virtual machine templates in the compute pods.
Peering Universal Logical Switch / VXLAN Segment 192.168.10.0/24 192.168.10.0/24 Universal Logical Switch / VXLAN Segment Peering
APP APP
IMS APP APP
IMS
vSphere Data Protection is interchangable with any vSphere APIs for Data Protection compatible solution.
IMS IMS
OS OS OS OS
Region Dependent Application Virtual Network Region Dependent Application Virtual Network
Management Universal Distributed Logical Router
Universal Logical Switch / VXLAN Segment Universal Logical Switch / VXLAN Segment APP APP APP APP
DEM DEM DEM DEM
OS OS OS OS
192.168.31.0/24
192.168.32.0/24
Reference
Region Independent Application Virtual Network Region Independent Application Virtual Network
Copyright 2017 VMware, Inc. All rights reserved. Refer to the design release notes for products and versions included in the design. @tenthirtyam | vmware.com/go/vvd-docs