NSXTWN32 — VMware NSX-T Data Center: What’s New v3.2
NSXTWN32 - VMware NSX-T Data Center: What’s New v3.2
Course Overview
In this three-day, hands-on training course, you explore the new features and enhancements in VMware NSX-T™ Data Center 3.2. You will be introduced to all new security features in NSX-T Data Center 3.2, including the NSX Application Platform, NSX Malware Prevention, NSX Intrusion Detection and Prevention, URL Filtering, VMware NSX® Intelligence™, and VMware NSX® Network Detection and Response™.
This course also discusses the architectural and operational changes introduced in 3.2 and discusses the enhancements to OSPF, VMware NSX® Advanced Load Balancer™, and NSX Federation.
Product Alignment
VMware NSX-T Data Center 3.2
Who should attend
Network and security administrators, IT managers, VMware partners, and individuals responsible for implementing and managing the NSX-T Data Center deployments
Prerequisites
This course requires completion of the VMware NSX-T Data Center: Install, Configure, Manage course or equivalent knowledge and administration experience with NSX-T Data Center 3.0 or above.
Solid understanding of the concepts presented in the Kubernetes Fundamentals course is also required.
The following knowledge is also beneficial:
Good understanding of TCP/IP services and protocols
Knowledge and working experience of computer networking, including switching and routing technologies (L2-L3) and L2-L7 firewall
Knowledge and working experience of VMware vSphere® environments
Knowledge and working experience with Kubernetes or vSphere with Tanzu environments.
The VMware Certified Professional – Network Virtualization (2021) certification is recommended.
Course Objectives
By the end of the course, you should be able to meet the following objectives:
Describe the architectural and operations enhancements in NSX-T Data Center 3.2
Configure OSPF in the NSX-T Data Center 3.2
Describe the NSX security architecture and features of NSX-T Data Center 3.2
Configure Distributed Firewall on VDS Security Only Use Case
Configure URL Filtering and Identity Firewall on NSX Edges
Configure NSX Intrusion Detection and Prevention for east-west traffic
Deploy the NSX Application Platform
Configure NSX Malware Prevention for east-west and north-south traffic
Analyze the networking secure posture and threats with NSX Intelligence and NSX Network Detection and Response
Deploy the NSX Advanced Load Balancer components
Describe the NSX Federation Enhancements in NSX-T Data Center 3.2
Course Outline
Course Introduction
Introduction and course logistics
Course objectives
NSX Architecture and Operations
Review key components of the NSX-T Data Center architecture
Explain the Management Plane to Policy Promotion tool
Compare Live Traffic Analysis with traditional network traffic analysis methods
Identify how Fabric View helps visualize the underlying network fabric of a topology
Recognize improvements in historical trending for network and system monitoring
Explain how the fabric MTU health check can be used to identify an MTU mismatch
OSPF Routing Protocol
Explain the core concepts of OSPF routing
Define the OSPF use cases in NSX-T Data Center
Explain the Tier-0 gateway topologies with OSPF
Configure OSPF in NSX-T Data Center
NSX Security Architecture
Describe the NSX security architecture and main components
Identify the use cases for NSX Distributed Security
Identify the use cases for NSX Gateway Security
Describe NSX Network Detection and Response
Distributed Firewall on VDS Security Only Use Case
Identify the distributed firewall on VDS requirements
Configure the distributed firewall on VDS
Validate the distributed firewall on VDS configurations
Gateway Security
Identify use cases for URL filtering
Describe the URL filtering architecture
Configure URL filtering
Describe the uses cases, architecture, and components of Identity Firewall
Configure Identity Firewall for north-south traffic
Intrusion Detection and Prevention
Describe the MITRE ATT&CK framework
Explain the phases of a cyberattack
Describe features and methods used by intrusion detection and prevention systems
Identify VMware NSX® Distributed IDS/IPS™ use cases
Describe the NSX Distributed IDS/IPS terminology and architecture
Configure NSX Distributed IDS/IPS
NSX Application Platform
Describe NSX Application Platform and its use cases
Define the core concepts of vSphere with Tanzu
Deploy NSX Application Platform on vSphere with Tanzu
Explain the NSX Application Platform architecture and services
Scale out and scale up NSX Application Platform
Malware Prevention
Describe techniques used in malware prevention
Identify use cases for NSX Malware Prevention
Identify the components in the NSX Malware Prevention architecture
Describe the NSX Malware Prevention packet flows for known and unknown files
Configure NSX Malware Prevention for east-west and north-south traffic
NSX Intelligence and NSX Network Detection and Response
Describe the NSX Intelligence architecture and core components
Install NSX Intelligence
Describe NSX Intelligence visualization, recommendation, and Suspicious Traffic Detection enhancements
Describe NSX Network Detection and Response architecture and its use cases
Activate NSX Network Detection and Response
Describe the visualization capabilities of NSX Network Detection and Response
NSX Advanced Load Balancer
Describe NSX Advanced Load Balancer and its use cases
Explain the NSX Advanced Load Balancer architecture
Deploy NSX Advanced Load Balancer
Explain the NSX Advanced Load Balancer components and how they manage traffic
Configure virtual IP addresses, virtual services, and server pools
Perform basic troubleshooting of virtual services, server pools, and service engines
NSX Federation Enhancements
Recognize NSX Federation use cases
Describe the main components of the NSX Federation architecture
Explain LDAP support for the Global Manager
Explain the purpose of firewall drafts on the NSX Global Manager
Explain NSX Federation support for tag-based replication
Describe ways to monitor NSX Federation components