How to get started with the load-balancing solution for Performance Cloud VMware (NSX-T)

TABLE OF CONTENTS

• Description 
• Requirements
• Notes
• Procedures
  • Create a pool
  • Create a virtual service
  • Create an IP set
  • Create a firewall rule
  • Create a DNAT rule
• References 

Description 

Here is a quick guide to help you deploying your load-balancing solution based on VMware Avi Load Balancer (formerly known as NSX Advanced Load Balancer) for Performance Cloud VMware (NSX-T).

Follow this guide to quickly understand how to use the integrated load-balancing solution. In the example below, you will learn how to open an HTTP load-balanced web site. For an advanced setup, please see the documentation from the vendor.

Requirements

• For now, there is no offer or SKU to enable in your Cumulus account management portal to get this feature. Please contact your account manager for more information.

Notes

• For the setup of an internal load balancer, there is no need to create a DNAT rule.

Procedures

Create a pool

1. Open the Performance Cloud VMware portal using your credentials
 

2. In Networking, go to the Edges section and click on your Edge Gateway.

3. Click on Pools, then click on ADD.

4. On the next screen:

- Enter a name and a description for the pool

- Choose a Load Balancer Algorithm

- Add an Active Health Monitor (please make sure the firewall inside the virtual machine(s) is not blocking the chosen monitor)

- Change the Default Server Port (if required)
 

Then, go to the Members tab.

5. Enter the LAN IP address of servers to include in the pool.

Then, click on SAVE.

Notes:

- The Group type can be chosen to use IP Sets instead of specifying IP addresses.

- The port field is optional. Use it to override the default server port from the previous step if a server is using a different port than the default.

- The ratio field is also optional. Use it to distribute traffic unevenly.

Example below with the LAN IP addresses of two (2) web servers.

The SSL Settings tab is optional. Use it to enable SSL encryption between back-end servers and the NSX Service Engine.

Create a virtual service

1. Open the Performance Cloud VMware portal using your credentials
 

2. In Networking, go to the Edges section and click on your Edge Gateway.

3. Click on Virtual Services, then click on ADD.

4. On the next screen:

- Enter the service name

- Select a Service Engine Group

- Select the pool that was previously created

- Enter an unused LAN IP address for the service

- Select the service type and the service port. Add additional ports if needed.

Notes: Additional ports must be on the same service type. Example: You can’t add HTTP and HTTPS in the same virtual service.

Then, click on SAVE.

Create an IP set

Create an IP for the virtual IP address of the load-balancing setup of web servers.

If needed, please see this article for guidance to create an IP Set in your Edge Gateway.

Create a firewall rule

Create a firewall rule to allow the HTTP traffic to the virtual IP address of the load-balancing setup of web servers.

If needed, please see this article for guidance to create firewall rules in your Edge Gateway.

Create a DNAT rule

Create a DNAT rule to redirect the HTTP traffic from WAN to the virtual IP address of the load-balancing setup of web servers.

If needed, please see this article for guidance to create NAT rules in your Edge Gateway.
 

The HTTP port is now opened and load-balanced between the two (2) web servers.

References

https://techdocs.broadcom.com/us/en/vmware-security-load-balancing/avi-load-balancer.html