darrylcauldwell.com On a journey around the datacenter and public cloud.

VMware VCP-NV Study Resources

While studying for VCP-NV I found a lot of study resources online which were in varying stages of completion.   Here are the resources I’ve found and how they map to each blueprint objective.

General Resources

NSX Product Data Sheet

NSX Platform White Paper

NSX 6 Install Guide

NSX 6 Admin Guide

NSX API Guide

NSX CLI Guide

NSX Design Guide

Whats New in VMware vSphere 5.5 Networking

buildvirtual.net Test Questions

Plural Sight - VMware NSX for vSphere Introduction and  Installation

PluralSight - VMware NSX for vSphere : Network Services

Unofficial VMware VCIX-NV Study Guide

vWilmo Blueprint Breakdown

Hands On Labs

HOL-SDC-1403 - VMware NSX Introduction

HOL-SDC-1425 - VMware NSX Advanced

HOL-SDC-1424 - VMware NSX in the SDDC

Section 1 - Define VMware NSX Technology and Architecture

https://www.youtube.com/watch?v=nN3Iy32dNbM

Objective 1.1 - Describe the Benefits of a VMware NSX Implementation

Knowledge

  • Identify challenges within a physical network interface
  • Explain common VMware NSX terms
  • Describe and differentiate functions and services performed by
  • VMware NSX
  • Describe common use cases for VMware NSX

Blog Links

Rich Dowling – Objective 1.1

Scott Lowe - High Level Architecture

Objective 1.2 – Describe VMware NSX Architecture

Knowledge

  • Identify the components in a VMware NSX stack
  • Identify common physical network topologies
  • Describe a basic VMware NSX topology
  • Differentiate functional services delivered by a VMware NSX stack

Document Links

VMware NSX for Multi-Hypervisor Network Virtualization Design Guide

Blog Links

Rich Dowling – Objective 1.2

Objective 1.3 – Differentiate VMware Network and Security Technologies

Knowledge

  • Identify upgrade requirements for ESXi hosts
  • Identify steps required to upgrade a vSphere implementation
  • Describe core vSphere networking technologies
  • Describe vCloud Networking and Security technologies
  • Describe and differentiate VMware NSX for vSphere and VMware NSX for third-party hypervisors

Blog Links

Rich Dowling – Objective 1.3

Objective 1.4 - Contrast Physical and Virtual Network Technologies

Knowledge

  • Differentiate logical and physical topologies
  • Differentiate logical and physical components (i.e. switches, routers, etc.)
  • Differentiate logical and physical services (i.e. firewall, NAT, etc.)
  • Differentiate between physical and logical security constructs
    • Service Composer
    • Endpoint
    • Security
    • Data Security

Blog Links

Rich Dowling – Objective 1.4

Objective 1.5 – Explain VMware NSX Integration with Third-Party Products and Services

Knowledge

  • Describe integration with third-party hypervisors
  • Describe integration with third-party cloud automation
  • Describe integration with third-party services
    • Network services
    • Security services
  • Describe integration with third-party hardware
    • Network Interface Cards (NICs)
    • Terminating overlay networks
  • Manually register a third-party service with NSX
  • Install a third-party service with NSX

Blog Links

Rich Dowling – Objective 1.5

Objective 1.6 – Explain VMware NSX Integration with vCloud Automation Center (vCAC)

Knowledge

  • Describe integration with vCAC
  • Explain NSX deployment capabilities built into vCAC
  • List NSX components that can be pre-created using vCAC
  • Describe Network Profiles available in vCAC
  • Explain NSX preparation tasks that must be completed prior to attaching a network profile to a blueprint
  • Explain vCAC preparation tasks that must be completed prior to deploying a machine with on-demand network services

Blog Links

Rich Dowling – Objective 1.6

Section 2 – Describe VMware NSX Physical Infrastructure Requirements

https://www.youtube.com/watch?v=NN4Cds_GXTs

Objective 2.1 – Define Benefits of Running VMware NSX on Physical Network Fabrics

Knowledge

  • Identify physical network topologies (Layer 2 Fabric, Multi-Tier,
  • Leaf/Spine, etc.)
  • Identify physical network trends
  • Explain the purpose of a Spine node
  • Explain the purpose of a Leaf node
  • Identify virtual network topologies (Enterprise, Service Provider Multi-Tenant, Multi-Tenant Scalable)
  • Explain benefitsof Multi-Instance TCP/IP stack
  • Describe challenges in a Layer 2 Fabric topology
  • Describe challenges in a Multi-Tier topology
  • Describe challenges in a Leaf/Spine topology
  • Differentiate physical/virtual QoS implementation
  • Differentiate single/multiple vSphere Distributed Switch (vDS)
  • Distributed Logical Router implementations
  • Differentiate NSX Edge High Availability (HA)/Scale-out NSX
  • NSX Edge HA implementations
  • Differentiate Collapsed/Separate vSphere Cluster topologies
  • Differentiate Layer 3 and Converged cluster infrastructures

Blog Links

Rich Dowling – Objective 2.1

Objective 2.2 – Describe Physical Infrastructure Requirements for a VMware NSX Implementation

Knowledge

  • Identify management and edge cluster requirements
  • Describe minimum/optimal physical infrastructure requirements for a VMware NSX implementation
  • Describe how traffic types are handled in a physical infrastructure
  • Determine use cases for available virtual architectures
  • Describe ESXi host vmnic requirements
  • Differentiate virtual to physical switch connection methods
  • Describe VMkernel networking recommendations

Blog Links

Rich Dowling – Objective 2.2

Section 3 – Configure and Manage vSphere Networking

https://www.youtube.com/watch?v=hC-TaKBqnIg

VCAP-DCA Study Guide Objective 2 – Implement and Manage Networking

Objective 2.1 – Implement and Manage Complex Virtual Networks

Objective 2.2 – Configure and Maintain VLANs, PVLANs and VLAN Settings

Objective 2.3 – Deploy and Maintain Scalable Virtual Networking

Objective 2.4 – Administer vSphere Distributed Switch Settings

Objective 3.1 – Configure and Manage vSphere Standard Switches (vSS)

Knowledge

  • Identify vSS capabilities
  • Add/Configure/Remove vmnics on a vSS
  • Configure vmkernel ports for network services
  • Add/Edit/Remove port groups on a vSS
  • Determine use cases for a vSphere Standard Switch

Blog Links

Rich Dowling – Objective 3.1

Objective 3.2 – Configure and Manage vSphere Distributed Switches (vDS)

Knowledge

  • Identify vDS capabilities
  • Create/Delete a vDS
  • Add/Remove ESXi hosts from a vDS
  • Edit general vSphere vDS settings
  • Add/Configure/Remove dvPortgroups
  • Configure dvPort settings
  • Add/Remove uplink adapters to dvUplinkgroups
  • Create/Configure/Remove virtual adapters
  • Migrate virtual adapters to/from a vSS
  • Migrate virtual machines to/from a vDS
  • Monitor dvPort state
  • Determine use cases for a vDS

Blog Links

Rich Dowling – Objective 3.2

Objective 3.3 – Configure and Manage vSS and vDS Policies

Knowledge

  • Identify common vSS and vDS policies
  • Configure dvPortgroup blocking policies
  • Configure load balancing and failover policies
  • Configure VLAN settings
  • Configure traffic shaping policies
  • Enable TCP Segmentation Offload (TOE) support for a virtual machine
  • Enable Jumbo Frame support on appropriate components
  • Determine appropriate VLAN configuration for a vSphere implementation

Blog Links

Rich Dowling – Objective 3.3

Section 4 – Install and Upgrade VMware NSX

https://www.youtube.com/watch?v=cEA98aez8JY

VMware Arena Installing NSX

Objective 4.1 – Configure Environment for Network Virtualization

Knowledge

  • Configure the physical infrastructure (MTU, Dynamic Routing for edge, etc.)
  • Prepare a new vSphere infrastructure
  • Configure Quality of Service (QoS)
  • Configure Link Aggregation Control Protocol (LACP)
  • Configure an existing vSphere infrastructure
  • Upgrade VMware Tools
  • Explain how IP address assignments work in VMware NSX Identify minimum permissions required to deploy NSX in a
  • vSphere environment

Blog Links

Rich Dowling – Objective 4.1

Objective 4.2 – Deploy VMware NSX Components

Knowledge

  • Install NSX Manager
  • Register NSX Manager with vCenter Server
  • Install NSX License
  • Prepare ESXi hosts
  • Deploy NSX Controllers
  • Assign Segment ID pool and Multicast addresses
  • Configure VXLAN Transport
  • Install NSX Edge
  • Install vShield Endpoint
  • Install Data Security
  • Create an IP pool

Blog Links

Rich Dowling – Objective 4.2

Chris Whal - Installing NSX Manager

Scott Lowe - Installing NVP (NSX) Manager

Chris Whal - Installing NSX Controllers

Scott Lowe - Installing NVP (NSX) Controllers

Chris Whal -Preparing The Cluster and Hosts

Scott Lowe - Adding Hypervisors to NVP (NSX)

Chris Whal - Configuring VXLAN and VTEPs

Objective 4.3– Upgrade Existing vCNS/NSX Implementation

Knowledge

  • Verify upgrade prerequisites have been met
  • Upgrade vCNS 5.5 to NSX 6.x
  • Upgrade vCNS Virtual Wires to NSX Logical Switches
  • Upgrade to NSX Components
    • Upgrade to NSX Firewall
    • Upgrade to NSX Edge
    • Upgrade vShield Endpoint from 5.5 to 6.x
    • Upgrade to NSX Data Security
  • Upgrade NSX Manager from 6.0 to 6.x
  • Update vSphere Clusters after NSX upgrade

Blog Links

Rich Dowling – Objective 4.3

Objective 4.4 – Expand Transport Zone to Include New Cluster(s)

Knowledge

  • Explain the function of a Transport Zone
  • Add a Transport Zone
  • Expand/Contract a Transport Zone
  • Edit a Transport Zone
  • Change the Control Plane mode for a Transport Zone

Blog Links

Rich Dowling – Objective 4.4

Chris Whal - Configuring VXLAN and VTEPs

Section 5 – Configure VMware NSX Virtual Networks

https://www.youtube.com/watch?v=do5Ur1MXO7s

Objective 5.1 – Create and Administer Logical Switches

Knowledge

  • Configure IP address assignments
  • Add/Remove a logical switch
  • Modify control plane mode
  • Connect a logical switch to an NSX Edge gateway
  • Deploy services to a logical switch
  • Connect/Disconnect virtual machines
  • Test logical switch connectivity
  • Determine distributed virtual switch type and version for a given NSX implementation

Blog Links

Rich Dowling – Objective 5.1

Chris Whal - Building Logical Switches

Scott Lowe - Creating A Logical Switch

Objective 5.2 – Configure VXLAN

Knowledge

  • Identify where to install and configure VXLAN
  • Identify physical network requirements
  • Prepare a cluster for VXLAN
  • Determine the appropriate teaming policy for a given implementation
  • Add/Edit/Expand/Contract transport zones
  • Prepare VXLAN Tunnel End Points (VTEPs) on clusters

Blog Links

Rich Dowling – Objective 5.2

 

Objective 5.3 – Configure and Manage Layer 2 Bridging

Knowledge

  • Identify High Availability requirements for Layer 2 Bridging
  • Add a Layer 2 Bridge to an NSX Edge device
  • Determine when Layer 2 Bridging would be required for a given NSX implementation
  • Determine when multiple Layer 2 Bridges are required for a given NSX implementation

Blog Links

Rich Dowling – Objective 5.3

Chris Whal - Layer 2 Bridging

Objective 5.4 – Configure and Manage Logical Routers

Knowledge

  • Describe and differentiate router interfaces
  • Determine controller and logical switch requirements for logical router deployment
  • Add a logical router
  • Configure distributed routing
  • Configure a management interface
  • Configure High Available for a logical router
  • Configure edge routing
  • Configure routing protocols
    • Static
    • OSPF
    • BGP
    • IS-IS
  • Configure default gateway
  • Add/Delete a static route
  • Determine if cross-protocol route sharing is needed for a given NSX implementation

Blog Links

Rich Dowling – Objective 5.4

Section 6 – Configure and Manage NSX Network Services

https://www.youtube.com/watch?v=sresgQvPq8g

Objective 6.1–Configure and Manage Logical Load Balancing

Knowledge

  • Identify general ESXi host troubleshooting guidelines
  • Configure global load balancing configuration
  • Create a service monitor
  • Add/Edit/Delete a server pool
  • Add/Edit/Delete an application profile
  • Add/Edit/Delete virtual servers
  • Configure global server load balancing
  • Determine appropriate NSX Edge instance size based on load balancing requirements

Rich Dowling – Objective 6.1

Objective 6.2 – Configure and Manage Logical Virtual Private Networks (VPN)

Knowledge

  • Configure IPSec VPN
    • Add/Edit/Disable IPSec VPN Service
    • Configure IPSec VPN parameters
    • Enable logging
  • Configure Layer 2 VPN
    • Enable Layer 2 VPN
    • Add Layer 2 VPN Client/Server
    • View Layer 2 VPN Statistics
  • Configure Network Access/Web Access SSL VPN-Plus
    • Edit Client Configurations
    • Edit General Settings
    • Edit Web Portal Designs
    • Add/Edit/Delete IP Pools
    • Enable/Disable IP Pools
    • Add/Edit/Delete Private Networks
    • Enable/Disable Private Networks
    • Add/Edit/Delete Installation Packages
    • Add/Edit/Delete Users
    • Add/Edit/Delete Login/Logoff script
    • Enable/Disable Login/Logoff script
  • Determine appropriate VPN service type for a given NSX implementation
  • Determine appropriate NSX Edge instance size based on load balancing requirements

Blog Links

Rich Dowling – Objective 6.2

Chris Whal - Administering User Right Assignment

Objective 6.3 – Configure and Manage DHCP/DNS/NAT

Knowledge

  • Add/Edit a DHCP IP pool
  • Enable a DHCP IP pool
  • Add/Edit DHCP static binding
  • Configure DNS services
  • Add Source NAT (SNAT) rule
  • Add Destination NAT (DNAT) rule

Blog Links

Rich Dowling – Objective 6.3

Objective 6.4 – Configure and Manage Edge Services High Availability

Knowledge

  • Describe NSX Edge High Availability
  • Explain Edge High Availability best practices
  • Describe service availability during an Edge High Availability failover
  • Differentiate NSX Edge High Availability and vSphere High Availability
  • Configure NSX Edge High Availability
  • Configure heartbeat settings
  • Configure management IP addresses
  • Modify and existing Edge High Availability deployment
  • Determine resource pool requirements for a given Edge High Availability configuration

Blog Links

Rich Dowling – Objective 6.4

Section 7–Configure and Administer Network Security

https://www.youtube.com/watch?v=8dBHnxVVQvs

Objective 7.1 –Configure and Administer Logical Firewall Services

Knowledge

  • Add/Edit/Delete an Edge Firewall rule
  • Configure Source/Destination/Service/Action rule components
  • Change the order of an Edge Firewall rule
  • Change the priority of an Edge Firewall rule

Blog Links

Rich Dowling – Objective 7.1

Objective 7.2 – Configure Distributed Firewall Services

Knowledge

  • Differentiate between Layer 2 and Layer 3 rules
  • Differentiate between entity-based and identity-based rules
  • Identify firewall rule entities
  • Explain rule processing order
  • Explain rule segregation
  • Add/Delete a Distributed Firewall rule
  • Configure Source/Destination/Service/Action rule components
  • Change the order of a Distributed Firewall rule
  • Add/Merge/Delete a Distributed Firewall rule section
  • Determine publishing requirements for rules in a given NSX implementation
  • Import/Export Distributed Firewall Configuration
  • Load Distributed Firewall configuration
  • Determine need for excluding virtual machines from distributed firewall protection
  • Configure and manage SpoofGuard
    • Create a SpoofGuard policy
    • Approve IP addresses
    • Edit/Clear IP addresses

Blog Links

Rich Dowling – Objective 7.2

Objective 7.3 – Configure and Manage Service Composer

Knowledge

  • Identify assets that can be used with a Security Group
  • Identify services contained in a Security Policy
  • Identify common Service Composer use cases
  • Differentiate Security Groups and Security Policies
  • Create/Edit a Security Group in Service Composer
  • Create/Edit/Delete a Security Policy
  • Map a Security Policy to a Security Group
  • Add/Edit/Delete a Security Tag
  • Assign and view a Security Tag

Blog Links

Rich Dowling – Objective 7.3

Section 8 – Perform Operations Tasks in a VMware NSX Environment

https://www.youtube.com/watch?v=gj-HSN7kNRA

Objective 8.1 – Configure Roles, Permissions, and Scopes

Knowledge

  • Identify default roles
  • Explain Single Sign-On (SSO) integration
  • Assign a role to a vCenter Server user
  • Assign objects to a user
  • Configure SSO
  • Enable/Disable a user account
  • Edit/Delete a user account

Blog Links

Rich Dowling – Objective 8.1

Objective 8.2 – Describe NSX Automation

Knowledge

  • Identify API-only functionality
  • Explain how REST APIs work
  • Describe how to use the NSX API in a supported browser
  • Identify port requirements for the NSX API
  • Describe common use cases for VMware NSX API
  • Explain how to access the VMware NSX API
  • Modify an existing API workflow

Blog Links

Rich Dowling – Objective 8.2

Objective 8.3 – Monitor a VMware NSX Implementation

Knowledge

  • Identify available monitoring methods (UI, CLI, API, etc.)
  • Monitor infrastructure components
    • Control Cluster Health
    • Manager Health
    • Hypervisor Health
  • Perform Inbound/Outbound activity monitoring
  • Enable data collection for single/multiple virtual machines
  • Perform virtual machine activity monitoring
  • Monitor activity between inventory containers (security groups, AD groups)
  • Analyze network and security metrics in vCOPS
  • Monitor logical networks and services
    • Identify available statistics/counters
    • Network/service health
    • Configure and collect data from network

Blog Links

Rich Dowling – Objective 8.3

Objective 8.4 - Perform Auditing and Compliance

Knowledge

  • Identify applicable logs for auditing
  • Identify permissions for auditing
  • Identify common data security regulations supported by NSX
  • Data Security
  • Identify common file formats supported by NSX Data Security
  • Describe and differentiate information available in audit logs
  • Use flow monitoring to audit firewall rules
  • Audit deleted users
  • Audit infrastructure changes
  • View NSX Manager audit logs and change data
  • Configure NSX Data Security
  • Create a Data Security policy
  • Run a Data Security scan
  • View and download compliance reports
  • Create a regular expression

Blog Links

Rich Dowling – Objective 8.4

Objective 8.5 – Administer Logging

Knowledge

  • Identify content contained in technical support bundles
  • Identify where to locate component/service specific log information
  • Explain usage of CLI for logging
  • Configure Syslog(s)
  • Configure logging for Dynamic Routing information
  • Log Distributed Firewall rule processing information
  • Log Edge Firewall rule processing information
  • Log address translation information
  • Log VPN traffic
  • Configure basic/advanced Load Balancer logging
  • Log DHCP assignments
  • Log DNS resolutions
  • Log security policy session information
  • Download NSX Edge tech support logs
  • Generate NSX Manager tech support logs

Blog Links

Rich Dowling – Objective 8.5

Objective 8.6 – Backup and Recover Configurations

Knowledge

  • Identify remote backup destinations
  • Explain how to backup and recover various components
  • Schedule backups
  • Export/Restore vSphere Distributed Switch configuration
  • Import/Export Service Composer profiles
  • Perform NSX Manager backup and restore operations

Blog Links

Rich Dowling – Objective 8.6

Section 9 – Troubleshoot a VMware Network Virtualization Implementation

Blog Links

Troubleshooting NSX-V Controllers

Troubleshooting L2 Connectivity 

All Roie Troubleshooting Links

Objective 9.1 – Identify Tools Available for Troubleshooting

Knowledge

  • Identify filters available for packet capture
  • Capture and trace uplink, vmknic, and physical NIC packets
  • Identify and track NSX infrastructure changes
  • Output packet data for use by a protocol analyzer
  • Capture and analyze traffic flows
  • Mirror network traffic for analysis
  • Perform a a network health check
  • Configure vSphere Distributed Switch alarms

Blog Links

Rich Dowling – Objective 9.1

Objective 9.2 – Troubleshoot Common NSX Installation/Configuration Issues

Knowledge

  • Identify ports required for NSX communication
  • Troubleshoot lookup service configuration
  • Troubleshoot vCenter Server link
  • Troubleshoot licensing issues
  • Troubleshoot permissions issues
  • Troubleshoot host preparation issues
  • Troubleshoot IP pool issues

Blog Links

Rich Dowling – Objective 9.2

Objective 9.3 – Troubleshoot Common NSX Component Issues

Knowledge

  • Differentiate NSX Edge logging and troubleshooting commands
  • Verify NSX Controller cluster status and roles
  • Verify NSX Controller node connectivity
  • Check NSX Controller API service
  • Validate VXLAN and Logical Router mapping tables
  • List Logical Router instances and statistics
  • Verify Logical Router interface and route mapping tables
  • Verify active controller connections
  • View Bridge instances and learned MAC addresses
  • Display Logical Router instances
  • Verify NSX Manager services status
  • View Logical Interfaces and routing tables
  • Analyze NSX Edge statistics

Blog Links

Rich Dowling – Objective 9.3

Objective 9.4 – Troubleshoot Common Connectivity Issues

Knowledge

  • Review netcap logs for control plane connectivity issues
  • Verify VXLAN, VTEP, MAC, and ARP mapping tables
  • List VNI configuration
  • View VXLAN connection tables and statistics
  • Perform VTEP connectivity tests

Blog Links

Rich Dowling – Objective 9.4

Objective 9.5 – Troubleshoot Common vSphere Networking Issues

Knowledge

  • Verify network configuration
  • Verify a given virtual machine is configured with the correct network resources
  • Troubleshoot virtual switch and port group configuration issues
  • Troubleshoot physical network adapter configuration issues
  • Identify the root cause of a network issue based on troubleshooting information

Blog Links

Rich Dowling – Objective 9.5

Be social and share this post!