【免费】NSXT-EUC-DESIGN-GUIDE-v1.0资源-CSDN文库

需积分: 0 72 浏览量 2023-09-13 16:03:51 上传评论收藏 4.95MB PDF 举报

资源推荐

资源详情

资源评论

NSX-T End User Computing Design Guide

 
NSX-T End User Computing Design Guide 
Table of Contents 
Intended Audience ............................................................................................................................. 5 
Introduction ....................................................................................................................................... 5 
1 Horizon 7 Reference Architecture ............................................................................................ 6 
2 NSX-T Design Guide ................................................................................................................. 6 
NSX-T and Horizon Architecture and Components ............................................................................ 6 
1 NSX-T Component Definitions ................................................................................................. 6 
1.1 NSX-T Architecture ....................................................................................................... 6 
2 Horizon Core Component Definitions ...................................................................................... 8 
2.1 Horizon Architecture - Pod and Block ........................................................................... 9 
NSX-T and Horizon Use Cases ........................................................................................................... 10 
NSX-T Features for Horizon .............................................................................................................. 11 
1 NSX-T Virtual Networking for Horizon ................................................................................... 11 
1.1 NSX-T Networking Logical View .................................................................................. 12 
2 NSX-T Security for Horizon ..................................................................................................... 13 
2.1 NSX-T Context Micro-segmentation for Horizon ........................................................ 15 
2.2 Context-aware Micro-segmentation Design Methodologies ...................................... 17 
2.3 NSX-T Distributed Firewall .......................................................................................... 17 
2.3.1 NSX-T Distributed Firewall Security Definitions ....................................................... 18 
2.3.3 NSX-T Distributed Firewall Connectivity Strategy .................................................... 19 
2.3.4 NSX-T Distributed Firewall Enforcement ................................................................. 20 
2.4 NSX-T Identity Firewall ............................................................................................... 21 
2.5 NSX-T Security Consumption ...................................................................................... 24 
3 NSX-T Edge and Partner Services ........................................................................................... 27 
3.1 NSX-T Gateway Routing .............................................................................................. 27 
3.2 Load Balancing ............................................................................................................ 28 
3.3 Gateway Firewall ........................................................................................................ 29 
3.4 DHCP Relay ................................................................................................................. 29 
3.5 Partner Service – Guest Introspection ........................................................................ 29 
Deployment Topology for Horizon with NSX-T ................................................................................. 31 

 
NSX-T End User Computing Design Guide 
1 NSX-T and Horizon – Pod and Block ....................................................................................... 31 
2 NSX-T and Horizon – Server and Horizon Domain.................................................................. 32 
3 NSX-T and Horizon Cross-vCenter Topology .......................................................................... 34 
4 NSX-T and Horizon Topologies ............................................................................................... 34 
4.1 NSX-T and Horizon – Small (Converged Cluster) Topology – Single Pod up to 4000 VMs  35 
4.2 NSX-T and Horizon – Medium Topology – Single Pod up to 10000 VMs .................... 36 
4.3 NSX-T and Horizon – Large Topology – Multi-Pod for 10000+ VMs ............................ 38 
NSX-T for Horizon Core Architecture Design Recommendations ..................................................... 40 
1 NSX-T Core Network Infrastructure Layout ............................................................................ 40 
1 Horizon Access ....................................................................................................................... 41 
1.1 External Access ........................................................................................................... 41 
1.1.1 External Access – Services ....................................................................................... 41 
1.1.2 External Access – Security ....................................................................................... 42 
1.2 Internal Access ............................................................................................................ 42 
1.2.1 Internal Access – Services ........................................................................................ 42 
1.2.2 Internal Access – Security ........................................................................................ 43 
2 Unified Access Gateways ....................................................................................................... 44 
2.1 Unified Access Gateways – Networking...................................................................... 44 
2.2 Unified Access Gateways – Edge and Partner Services ............................................... 45 
2.3 Unified Access Gateways – Load Balancing ................................................................ 45 
2.4 – Unified Access Gateways – Grouping and Tagging .................................................. 47 
2.5 Unified Access Gateways – Services ........................................................................... 48 
2.6 Unified Access Gateways – Security ........................................................................... 49 
3 Connection Servers ................................................................................................................ 50 
3.1 Connection Servers – Networking .............................................................................. 50 
3.1 Connection Servers – Edge and Partner Services ....................................................... 51 
3.2 Connection Servers – Load Balancing ......................................................................... 52 
3.4 Connection Servers – Grouping and Tagging .............................................................. 54 
3.5 Connection Servers – Services .................................................................................... 55 
3.6 Connection Servers – Security .................................................................................... 55 
4 Virtual Desktops ..................................................................................................................... 57 

NSX-T End User Computing Design Guide

1. Intended Audience

This guide highlights design and deployment considerations when using NSX-T Data Center (NSX-T) to implement network

virtualization, create a secure end user computing environment, and load balance Horizon infrastructure.

The intended audience is virtualization, networking, and security architects who are interested in deploying Horizon for virtual

desktops and NSX in a vSphere environment. Solid conceptual understanding and hands-on experience with both NSX-T and Horizon

products is recommended for successfully understanding this design guide. While this document is not specifically meant for

comparing and contrasting the differences in NSX for vSphere (NSXv) and NSX-T, there may be times where the comparison is

necessary to differentiate the two platform design differences as they relate to Horizon. NSX-T does provide additional benefits and

simplicities to the overall Horizon and NSX-T deployment.

None

First Release

2. Introduction

The Software Defined Data Center (SDDC) is defined by server virtualization, storage virtualization, and network virtualization. Server

virtualization has already proven the value of SDDC architecture by reducing costs and complexity of compute infrastructure. VMware

NSX-T addresses the third critical pillar of SDDC, extending the same benefits obtained from the virtualization of compute to the data

center network. NSX-T accelerates the provisioning of core network and security services, simplifying operations and improving

economics.

With network virtualization, the functional equivalent of a network hypervisor, NSX-T reproduces the complete set of Layer 2 through

Layer 7 networking services (e.g., switching, routing, firewalling, and load balancing) in software. It allows these services to be

programmatically assembled in any arbitrary combination to produce unique, isolated virtual networks in a matter of seconds. NSX-T

also provides a platform for various security services – both network and endpoint based. NSX-T provides various built-in services,

including L2-L7 firewall and contextual-based security. Additionally, security vendors can leverage its Guest Introspection and Network

Introspection frameworks to deliver service chained next-generation firewall, IDS/IPS, agentless anti-virus/anti-malware, file integrity

monitoring, and vulnerability management capabilities.

Horizon delivers hosted virtual desktops and applications to end users through a single platform. These desktop and application

services - including RDS-hosted applications, packaged applications with VMware ThinApp®, software-as-a-service (SaaS) applications,

and virtualized applications from Citrix - can all be accessed from a single unified workspace across devices, locations, media, and

connections. Leveraging closed-loop management and optimized for the software-defined data center, Horizon helps IT control,

manage, and protect the Windows resources that end users want at the speed they expect while delivering the efficiency that business

demands.

This design guide provides recommended practices and topologies to optimize interoperability between the NSX-T and Horizon

platforms, enabling deployment of a secure end user SDDC environment. It is intended for customers who would like to utilize the

benefits of network virtualization, micro-segmentation, and load-balancing in their brownfield/greenfield Horizon virtual desktop

environment.

剩余63页未读，继续阅读

评论收藏

内容反馈

routetable

粉丝: 0
资源: 6

NSXT-EUC-DESIGN-GUIDE-v1.0

Python库 | library_nsxt-1.0.8.post12-py3-none-any.whl

PyPI 官网下载 | library_nsxt-1.0.8.post12-py3-none-any.whl

nsxt-design-guide:NSXT设计指南文档

soc-nsxt-integration-example：SUSE OpenStack Cloud和VMWare NSX-T集成样本输入模型

vghetto-vsphere-with-kubernetes-external-nsxt-automated-lab-deployment:带有Kubernetes的vSphere for 7.0的外部NSX-T自动化实验室部署

FGT_VM64-v6-build1778-FORTINET.out.ovf.zip

terraform-provider-nsxt：Terraform VMware NSX-T提供程序

nsxt_31_migrate_cn.rar

nsxt_31_upgrade_cn.rar

收藏奉献_DOS汉字系统80：MS-DOS 6.21 简体中文版 + PCE 0.2.2

铺装：用于铺装基础架构以部署Pivotal平台的Terraform模板

雷蛇PUBG鼠标宏-雷蛇鼠标驱动

Synaptics病毒专杀工具

WishRecy数据恢复软件

软件测试实战项目(Web项目)

双闭环直流调速系统仿真

Windows 10系统连接共享打印机报错0x00000709、0x0000007c、0x0000011b.zip

DLL文件修复软件（强力修复）Repair.exe

VMware Workstation Pro 安装包

windows update 病毒

X64dbg(20240603)添加中文字符串补丁并附官网原版

ISO26262-2018 全套标准

S7-1200全系列最新固件V4.6

华为RH2288H V3，V100R003C00SPC733更新包

HCU-Client v1.0.0.0378

远程控制工具：ToDesk（免安装，免费使用）

上网记录、USB痕迹、硬盘文件痕迹彻底清除，记住，不是清除注册表，是彻底清除硬盘碎片一切记录，在PE下运行。

[centos7]openssh8.6p1.tar

SecureCRT-8.7.2.zip

华为/荣耀/鸿蒙手机管家12.0.1.331可更换默认桌面/启动器

最新资源