Deploy NSX-T 2.4 Edge Nodes on a N-VDS Logical Switch

To be able to deploy an Edge node or nodes in your lab or other environment where you only have 2 physical nic you must be able to deploy it on a N-VDS switch as you have already migrated all your kernels etc to this one N-VDS switch.

But trying to do this from the NSX-T 2.4 manager GUI you will only have the option to deploy it to VSS or VDS portgroups, the N-VDS portgroups are not visible at all.

So, I followed this blog https://blogs.vmware.com/networkvirtualization/2018/10/flexible-deployment-options-for-nsx-t-edge-vm.html/ by which explains how this works.

So after I read this blog post I sat out to try this. I had to write down the api-script he used by hand because I could not find it when I searched for a example I could use. By using PostMan I filled out this:

{
“resource_type”: “EdgeNode”,

“display_name”: “YourEdgevCenterInventoryName”,
“tags”: [],
“ip_addresses”: [
“X.X.X.X”    (Your edge MGMT IP adress)
],
“deployment_config”: {
“vm_deployment_config”: {
“placement_type”: “VsphereDeploymentConfig”,
“vc_id”: “YourvCenterIDFromNSXTManager”,
“management_network_id”: “YourLSPortGroupIDFromNSXTManager”,
“default_gateway_addresses”: [
“X.X.X.X”
],
“compute_id”: “YourClusterIDFromNSXTManager”,
“allow_ssh_root_login”: true,
“enable_ssh”: true,
“hostname”: “yourEdge_FQDNName”,
“storage_id”: “YourDataStoreIDfromNSXTManager”,
“management_port_subnets”: [
{
“ip_addresses”: [
“YourEdgeIPMGMT_AddressAgain”
],
“prefix_length”: 24
}
],

“data_network_ids”: [
“This_IS_the_ID_of_Your_LS_PortGroup_for_the_Edge_OverLayVLAN(NotTheHostOverlayVLAN)”,
“This_IS_the_ID_of_Your_LS_PortGroup_for_the_Edge_VLANUplink1”,
“This_IS_the_ID_of_Your_LS_PortGroup_for_the_Edge_VLANUplink1”
]
},
“form_factor”: “SMALL”,

“node_user_settings”: {
“cli_username”: “admin”,
“root_password”:”YourPasswordHere”,
“cli_password”:”YourPasswordHere”

}
}

}

Then POST it to your NSX-T manager from Postman and after a short blink, the Edge is deployed, and you have to add it as a transport node in the NSX-T manager. Here it is important that you do this right at once, because (as I found out) this is a one-time config GUI where the first time you will be able to choose the right fp-eth nics. If you try to edit the edge deployment a second time it switches back to only showing the VDS/VSS portgroups. Then you have to redeploy.

 

Example screenshots:

Remember that the Uplink VLANs will belong to their own N-VDS (which you have already defined in their respective Transport Zone) which will not be created on the host, but the Edges.
The first N-VDS are already in place on the Hosts. Its only the last two NICs which will be on their own Edge N-VDS switches.

 

 

I am not saying this is a best practice or the right way to do this, but it works in my lab environment so I can fully test out the latest NSX-T 2.4 and continue playing with PKS (when we get CNI plugins for NSX-T 2.4… are we there yet? are we there yet, are we there yet….. its hard to wait 😉 )

 

 

 

 

 

Leave a Reply

Your email address will not be published. Required fields are marked *