NSX DLR and ESG with OSPF – Part 4 – Deploy ESG

This is part 4 of the NSX Distributed Logical Router (DLR) and Edge Services Gateway (ESG) with OSPF configuration guide, describing the deployment of the Edge Services Gateway (ESG).

This is a five part series describing the steps to deploy DLR and ESG with OSPF:

What are we trying to do in this section?

Configure an Edge Services Gateway (ESG) that will allow the Distributed Logical Router (DLR) access to the Outside world.
The ESR will have a single “Internal” interface, that is connected to the DLR “Uplink” interface.
The ESR will have a single “Uplink” interface, that is connected to the “External” network Portgroup of the vDS.
All OSPF routing configuration will be covered in part 5.

A diagram to clarify things:

Deploy the Edge Services Gateway (ESG)

Login to the vSphere Web Client with an account that has NSX and vCenter Admin privileges.
Select “Home” and then the “Networking & Security” icon to access “NSX Home”.
Select “NSX Edges”, the correct “NSX Manager” IP Address and select the green “+” button.
In the “New NSX Edge” window, select the “Install Type” as “Edge Services Gateway” and enter the “Name”, “Hostname”, “Description” and “Tenant”. Then press the “Next” button.
In the “2 Settings” screen, enter the CLI “admin” Credentials and press “Next”.
In the “3 Configure deployment” screen, select the “Datacenter”, “Appliance Size” “Compact”, tick “Deploy NSX Edge” and press the green “+” button under “NSX Edge Appliances”.
In the “Add NSX Edge Appliance” window, select the “Cluster/Resource Pool” and the “Datastore” for the ESG. Then press “OK”.
In the “3 Configure deployment” screen, verify that the “NSX Edge Appliance” is listed and press the “Next” button.
In the “4 Configure Interfaces” screen, press the green “+” sign under “Configure interfaces for this NSX Edge”.
In the “Add NSX Edge Interface” window, enter the “Name”, select the “Type” as “Internal” for the DLR Interface and “Uplink” for External Network vDS Portgroup and press the “Select” button in “Connected To” to assign the “Logical Switch”/”vDS Portgroup”.
In the “Connect NSX Edge to a Network” window, select the “Logical Switch” object and select the “Logical Switch” that will be used for DLR connectivity.
In the “Add Interface” window, then press the green “+” button under “Configure subnets” to assign an IP Address to the interface.
In the “Add Subnet” window, pres the green “+” button and enter the Primary IP Address for the interface and set the “Subnet prefix length”. Then press “OK”.
In the “Add Interface” window, leave the “MTU” at “1500” and press the “OK” button.
In the “4 Configure Interfaces” screen, add the second interface as an “Uplink”. This will connect to the vDS Portgroup. Then press “Next”.
In the “5 Default gateway settings” screen, tick “Configure Default Gateway”, select the vDS Portgroup, add the “Gateway IP” of the external network and press “Next”. The ESG will publish the default route via OSPF to the DLR.
In the “6 Firewall and HA” screen, leave “Configure Firewall default policy” disabled and press “Next”.
In the “7 Ready to complete” screen, press the “Finish” button.
In the “NSX Edges” window, wait for the “NSX Edge” “Status” to change from “Busy” to “Deployed”.
To view the progress of the “NSX Edge” deployment, select the “Task Console” object from the “Home” location.
To view the “NSX Edge” virtual appliance within vCenter, select the “VMs and Templates” tab and locate the “<Edge-Name>-0” virtual appliance. You can open the console to login as “admin” once the deployment process has finished.
From the VM Summary tab, you can see that the ESG is deployed with the default VM Hardware resources of 1 vCPU, 512MB RAM and 500MB Hard Disk. Also note that only a single Console session can exist concurrently and vSphere Infrastructure Navigator has no visibility of the ESG.
You have completed the “NSX Edge” deployment process.
You are now ready to begin the OSPF Configuration in Part 5.