VMware NSX-T Data Center: What’s New [V3.2] (NSXTWN32)

 

Course Overview

In this three-day, hands-on training course, you explore the new features and enhancements in VMware NSX-T™ Data Center 3.2. You will be introduced to all new security features in NSX-T Data Center 3.2, including the NSX Application Platform, NSX Malware Prevention, NSX Intrusion Detection and Prevention, URL Filtering, VMware NSX® Intelligence™, and VMware NSX® Network Detection and Response™.

This course also discusses the architectural and operational changes introduced in 3.2 and discusses the enhancements to OSPF, VMware NSX® Advanced Load Balancer™, and NSX Federation.

Product Alignment

  • VMware NSX-T Data Center 3.2

Who should attend

Network and security administrators, IT managers, VMware partners, and individuals responsible for implementing and managing the NSX-T Data Center deployments

Prerequisites

This course requires completion of the VMware NSX-T Data Center: Install, Configure, Manage course or equivalent knowledge and administration experience with NSX-T Data Center 3.0 or above.

Solid understanding of the concepts presented in the Kubernetes Fundamentals course is also required.

The following knowledge is also beneficial:

  • Good understanding of TCP/IP services and protocols
  • Knowledge and working experience of computer networking, including switching and routing technologies (L2-L3) and L2-L7 firewall
  • Knowledge and working experience of VMware vSphere® environments
  • Knowledge and working experience with Kubernetes or vSphere with Tanzu environments.

The VMware Certified Professional – Network Virtualization (2021) certification is recommended.

Course Objectives

By the end of the course, you should be able to meet the following objectives:

  • Describe the architectural and operations enhancements in NSX-T Data Center 3.2
  • Configure OSPF in the NSX-T Data Center 3.2
  • Describe the NSX security architecture and features of NSX-T Data Center 3.2
  • Configure Distributed Firewall on VDS Security Only Use Case
  • Configure URL Filtering and Identity Firewall on NSX Edges
  • Configure NSX Intrusion Detection and Prevention for east-west traffic
  • Deploy the NSX Application Platform
  • Configure NSX Malware Prevention for east-west and north-south traffic
  • Analyze the networking secure posture and threats with NSX Intelligence and NSX Network Detection and Response
  • Deploy the NSX Advanced Load Balancer components
  • Describe the NSX Federation Enhancements in NSX-T Data Center 3.2

Course Content

1 Course Introduction
  • Introduction and course logistics
  • Course objectives
2 NSX Architecture and Operations
  • Review key components of the NSX-T Data Center architecture
  • Explain the Management Plane to Policy Promotion tool
  • Compare Live Traffic Analysis with traditional network traffic analysis methods
  • Identify how Fabric View helps visualize the underlying network fabric of a topology
  • Recognize improvements in historical trending for network and system monitoring
  • Explain how the fabric MTU health check can be used to identify an MTU mismatch
3 OSPF Routing Protocol
  • Explain the core concepts of OSPF routing
  • Define the OSPF use cases in NSX-T Data Center
  • Explain the Tier-0 gateway topologies with OSPF
  • Configure OSPF in NSX-T Data Center
4 NSX Security Architecture
  • Describe the NSX security architecture and main components
  • Identify the use cases for NSX Distributed Security
  • Identify the use cases for NSX Gateway Security
  • Describe NSX Network Detection and Response
5 Distributed Firewall on VDS Security Only Use Case
  • Identify the distributed firewall on VDS requirements
  • Configure the distributed firewall on VDS
  • Validate the distributed firewall on VDS configurations
6 Gateway Security
  • Identify use cases for URL filtering
  • Describe the URL filtering architecture
  • Configure URL filtering
  • Describe the uses cases, architecture, and components of Identity Firewall
  • Configure Identity Firewall for north-south traffic
7 Intrusion Detection and Prevention
  • Describe the MITRE ATT&CK framework
  • Explain the phases of a cyberattack
  • Describe features and methods used by intrusion detection and prevention systems
  • Identify VMware NSX® Distributed IDS/IPS™ use cases
  • Describe the NSX Distributed IDS/IPS terminology and architecture
  • Configure NSX Distributed IDS/IPS
8 NSX Application Platform
  • Describe NSX Application Platform and its use cases
  • Define the core concepts of vSphere with Tanzu
  • Deploy NSX Application Platform on vSphere with Tanzu
  • Explain the NSX Application Platform architecture and services
  • Scale out and scale up NSX Application Platform
9 Malware Prevention
  • Describe techniques used in malware prevention
  • Identify use cases for NSX Malware Prevention
  • Identify the components in the NSX Malware Prevention architecture
  • Describe the NSX Malware Prevention packet flows for known and unknown files
  • Configure NSX Malware Prevention for east-west and north-south traffic
10 NSX Intelligence and NSX Network Detection and Response
  • Describe the NSX Intelligence architecture and core components
  • Install NSX Intelligence
  • Describe NSX Intelligence visualization, recommendation, and Suspicious Traffic Detection enhancements
  • Describe NSX Network Detection and Response architecture and its use cases
  • Activate NSX Network Detection and Response
  • Describe the visualization capabilities of NSX Network Detection and Response
11 NSX Advanced Load Balancer
  • Describe NSX Advanced Load Balancer and its use cases
  • Explain the NSX Advanced Load Balancer architecture
  • Deploy NSX Advanced Load Balancer
  • Explain the NSX Advanced Load Balancer components and how they manage traffic
  • Configure virtual IP addresses, virtual services, and server pools
  • Perform basic troubleshooting of virtual services, server pools, and service engines
12 NSX Federation Enhancements
  • Recognize NSX Federation use cases
  • Describe the main components of the NSX Federation architecture
  • Explain LDAP support for the Global Manager
  • Explain the purpose of firewall drafts on the NSX Global Manager
  • Explain NSX Federation support for tag-based replication
  • Describe ways to monitor NSX Federation components

Prices & Delivery methods

Online Training

Duration 3 days

Classroom Training

Duration 3 days

 

Schedule

English
1 hour difference
Online Training Time zone: British Summer Time (BST)
Instructor-led Online Training:   This computer icon in the schedule indicates that this date/time will be conducted as Instructor-Led Online Training.