What needs to be configured on a Tier-0 Gateway to make NSX Edge Services available to a VM on a VLAN-backed logical switch?
What needs to be configured on a Tier-0 Gateway to make NSX Edge Services available to a VM on a VLAN-backed logical switch?
To make NSX Edge Services available to a VM on a VLAN-backed logical switch, a service interface needs to be configured on a Tier-0 Gateway. The service interface is a special-purpose port specifically designed to enable services primarily for VLAN-based networks. This interface supports functionalities such as Firewall, NAT, and VPNs, making it apt for the given scenario.
A is correct, "The service interface is a special-purpose port to enable services for mainly VLAN-based networks. North-south service insertion is another use case that requires a service interface to connect a partner appliance and redirect north-south traffic for partner services. Service interfaces are supported on both active-standby Tier-0 logical routers and Tier-1 routers. Firewall, NAT, and VPNs are supported on this interface. The service interface is also a downlink" . Take from NSX-T ICM 3.0 Lecture Manual.
A is correct from lecture book "The service interface is a special-purpose port to enable services for mainly VLAN-based networks. North-south service insertion is another use case that requires a service interface to connect a partner appliance and redirect north-south traffic for partner services. Service interfaces are supported on both active-standby Tier-0 logical routers and Tier-1 routers. Firewall, NAT, and VPNs are supported on this interface. The service interface is also a downlink"
Answer: A is correct https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.0/administration/GUID-BB4D26AD-AF81-4B7C-AA4A-366AEF6F79D2.html
A is correct from lecture book: Please refer to page 213-214 section 5-19 of the ICM training guide.
please could you email me a copy of the ICM training guide?
Definitely not A. It might be D?
Yes i also suspect that, above explantions are for NAT, Firewall and VPN's. But here ask is that, what we need to configure on Tier 0... Need to discuss more on this
might be. but consider that a service interface is also a downlink interface
A is correct
Service interface is used for VLAN backed segments.
A is correct
Answer is A as per the below: https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.2/administration/GUID-3F163DEE-1EE6-4D80-BEBF-8D109FDB577C.html On a tier-0 or tier-1 logical router, you can configure different types of ports. One type is called centralized service port (CSP). You must configure a CSP on a tier-0 logical router in active-standby mode or a tier-1 logical router to connect to a VLAN-backed logical switch, or to create a standalone tier-1 logical router. A CSP supports the following services on a tier-0 logical router in active-standby mode or a tier-1 logical router: NAT Load balancing Stateful firewall VPN (IPsec and L2VPN)
Correct one
The service interface is a special interface for VLAN-based services and partner service redirection
Service interface is correct
A is correct