PSC HA 6.5: 2c-Prepare an NSX Edge Load Balancer

The following section explains how to configure an NSX Edge Load Balancer for use with PSC 6.5 HA.

This guide assumes that NSX is already installed and correctly configured.

Note: This guide was written using NSX for vSphere 6.3. Some settings may vary in older or new versions.

This configuration guide uses the following Network Information as examples.

First PSC Node (psc-ha-a1.domain.com, 192.168.2.101)
Additional PSC Node (psc-ha-a2.domain.com, 192.168.2.102)
PSC Virtual IP (psc-ha-vip.domain.com, 192.168.2.99)

1. Deploy a new NSX Edge

1-deploy-a-new-nsx-edge

  1. Navigate to Networking & Security > NSX Edges
  2. Click the + icon
  3. Select Install Type Edge Services Gateway
  4. Provide a Name
  5. Select the checkbox for Deploy NSX Edge
  6. Select the checkbox for Enable High Availability
  7. Click Next

2. Settings

2-settings

  1. Provide a username
  2. Provide a password for the defined username
  3. Enable or Disable SSH Access
  4. Set a desired logging level
  5. Click Next

3. Configure Deployment

3-configure-deployment

  1. Choose a Datacenter location
  2. Choose an Appliance Size
  3. Click the + icon

3a. Configure Deployment

3a-configure-deployment

  1. Choose a Cluster
  2. Choose a Datastore
  3. Choose an ESXi Host
  4. Choose a folder
  5. Click OK

3b. Configure Deployment

3b-configure-deployment

  1. Click Next

4. Configure Interfaces

4-configure-interfaces

  1. Click the + icon
  2. Provide a Name
  3. Select Type Internal
  4. Next to Connected To: click the Select link and choose the appropriate VM Network
  5. Click the + icon and provide the IP Address and Prefix Length for the PSC HA VIP
  6. Click OK
  7. Click Next

5. Default Gateway Settings

5-default-gateway-settings

  1. Provide the default gateway for the PSC HA VIP
  2. Click Next

6. Firewall and HA

6-firewall-and-ha

  1. Enable the checkbox for Configure Firewall default policy
  2. Set Default Traffic Policy to Accept
  3. Under Configure HA Parameters select the PSC HA VIP vNIC
  4. Click Next

7. Ready to complete

7-ready-to-complete

  1. Review the configuration and click Finish

7a. Ready to complete

You should see two new NSX Edge VMs deployed in your environment

7b. Ready to complete

7b-ready-to-complete

The new Edge should appear as Deployed after a few minutes

8. Enable Edge Load Balancer

8-enable-edge-load-balancer

  1. Double-Click into the deployed Edge and Navigate to Manage > Load Balancer
  2. Click the Edit Button
  3. Enable the checkbox for Enable Load Balancer
  4. Enable the checkbox for Logging and set the desired logging level.
  5. Click OK

9. Application Profiles

9-application-profiles

  1. Select Application Profiles
  2. Click the + icon
  3. Provide a Name
  4. Select Type TCP
  5. Under Persistence select Source IP
  6. Click OK

9a. Application Profiles

9a-application-profiles

The Application Profile should appear in the list of profiles

10. Pools

10-pools

  1. Select Pools
  2. Click the + icon
  3. Provide a Name
  4. Select Algorithm ROUND-ROBIN
  5. Select Monitors psc-ha-websso-monitor
  6. Click the + icon
  7. Provide a Name for the node member
  8. Provide the IP Address of the First PSC node
  9. Ensure Port is left blank
  10. Enter Monitor Port 443
  11. Click OK
  12. Add a second member for the Additional PSC node

10a. Pools

10a-pools

You should have two members listed

Click OK

11. Virtual Servers

11-virtual-servers

  1. Select Virtual Servers
  2. Click the + icon
  3. For Application Profile select the psc-ha-profile created earlier
  4. Provide a Name
  5. Provide the PSC HA VIP IP Address
  6. For Protocol select TCP
  7. For Port enter 443,389,636,2012,2014,2020
  8. For Default Pool select the psc-ha-pool created earlier
  9. Click OK

11a. Virtual Servers

11a-virtual-servers

The Virtual Server should appear in the list

Next: Preparing a certificate