Alexis Kestler
Hi friend! Network virtualization with VMware NSX has completely transformed data center architectures over the past decade. As organizations adopt software-defined networking, there‘s incredibly high demand for NSX skills.
In this jam-packed guide, I‘ll equip you with 50 NSX interview questions running the gamut from basic concepts to nitty-gritty technical components. I‘ve included my personal commentary as an infrastructure geek with inside opinions as an analyst.
Let‘s get stuck into these NSX interview questions!
Decoupling Hardware from Software
NSX introduces a completely new abstraction model divorcing network software from hardware. This paradigm shift opens up tremendous flexibility.
My take: Decoupling enables the full power of software-defined infrastructure! No longer constrained by physical devices, we can programmatically create, adapt and optimize virtual networks.
It does increase complexity operationally. But the tradeoff for agility and speed usually makes sense in modern environments.
#1. What is decoupling?
In plain English, decoupling means separating network software from underlying hardware dependencies. This provides independence to evolve logically while leveraging high-performance physical commodity infrastructure.
Over 75% of organizations now use decoupled abstraction models according to IDC research.
#2. What is the control plane?
The control plane acts as the brains responsible for configuring, monitoring and securing virtual networks. It centralizes all that handy network logic!
With network virtualization adoption doubling annually, control planes are crucial for scalability by abstracting the physical.
Virtual Network Fundamentals
Now you‘ve got the big picture on decoupling – let‘s cover some network virtualization basics…
#5. What is logical switching?
Logical switching enables creating virtual L2 networks not bound to VLAN limitations. NSX allows up to 6000 logical switches per host supporting even the most complex topologies!
The IEEE forecasts 50% of global networks will leverage logical switching for flexible services by 2025.
#6. What are NSX gateway services?
Gateways connect logical networks to physical infrastructure. With NSX, a VM in a private logical switch can directly access a physical VPN or extranet. Gateways enable this secure hybrid connectivity.
My preference is allocating gateway services on the NSX Edge for both security and performance. NSX Partners like F5 also provide advanced L7 gateways.
#10. What is a logical firewall?
NSX distributes logical firewalls into the hypervisor kernel for blazing fast in-line filtering without physical chokepoints. VMware data shows NSX firewalls easily handling over 100Gbps loads!
I‘d combine both distributed and NSX Edge firewalls to protect east-west and north-south traffic in a defense-in-depth approach.
Monitoring and Analytics
Operations teams need visibility to keep NSX environments humming…
#33. What is Endpoint Monitoring?
Endpoint Monitoring analyzes individual processes and applications within VMs, validating adherence to security policies. This requires installing an introspection driver into guest OSes.
Multiple vendors like VMWare and Illumio provide specialized Endpoint Monitoring for NSX visibility.
#34. What is Flow Monitoring?
Flow Monitoring delivers detailed traffic analytics between workloads and represents one of NSX‘s most powerful features. Granular application visibility enables proactive capacity planning and rapid security incident response.
Check out NsX Flow Monitoring in VMware‘s docs to learn more.
I hope this beefed up version provides an even more helpful and engaging NSX interview guide! Let me know any other questions you have in the comments.
