What needs to be configured on a Tier-0 Gateway to make NSX Edge Services available to a VM on a VLAN-backed logical switch?
What needs to be configured on a Tier-0 Gateway to make NSX Edge Services available to a VM on a VLAN-backed logical switch?
To enable NSX Edge Services for a VM on a VLAN-backed logical switch, a service interface needs to be configured on a Tier-0 Gateway. The service interface is designed specifically to support services for VLAN-based networks. It connects the Tier-0 Gateway with VLAN-backed logical switches, facilitating the necessary networking functions such as routing, firewall, NAT, and VPNs that are essential for the deployment and operation of such services.
Answer: Service Interface The service interface is a special-purpose port to enable services for mainly VLAN-based networks. North-south service insertion is another use case that requires a service interface to connect a partner appliance and redirect north-south traffic for partner services. Service interfaces are supported on both active-standby Tier-0 logical routers and Tier-1 routers. Firewall, NAT, and VPNs are supported on this interface. The service interface is also a downlink
The service interface is a special port to enable services for VLAN-based networks. source: Hoogendoorn, Iwan. Getting Started with NSX-T: Logical Routing and Switching: The Basic Principles of Building Software-Defined Network Architectures with VMware NSX-T (p. 230).
Answer is vlan
answer should be C: The service interface is a special-purpose port to enable services for VLAN-based networks. The service interface is also a downlink. North-south service insertion is another use case that requires a service interface to connect a partner appliance and redirect north-south traffic for partner services.
Service interfaces are supported on both active-standby Tier-0 logical routers and Tier-1 routers
The question is tricky. It asks what has to be configured in a "Tier-0 Gateway" (Policy mode) to make NSX Edge Services available to a VM configured in a logical switch (Manager mode) Keep in mind that you need to configure the Tier-0 Gateway to communicate with an already created "VLAN-backed logical switch". For that reason, Tier-0 Gateway in Policy mode only has the ability to configure External and Service Interfaces to communicate to vLAN networks. "vLAN Uplink" is configured in Logical Switches under Manager mode and attached to Tier-0 Logical Router Port, but the text does not ask to configure it, only the Tier-0 Gateway.
Answer: Service Interface The service interface is a special-purpose port to enable services for mainly VLAN-based networks. North-south service insertion is another use case that requires a service interface to connect a partner appliance and redirect north-south traffic for partner services. Service interfaces are supported on both active-standby Tier-0 logical routers and Tier-1 routers. Firewall, NAT, and VPNs are supported on this interface. The service interface is also a downlink
As Per Below KB it should be Uplink https://docs.vmware.com/en/VMware-NSX/4.1/administration/GUID-D641380B-4C8E-4C8A-AF64-4261A266ACA4.html