SDN connector for NSX-T manager 6.2.2
This feature provides SDN connector configuration for NSX-T manager. You can import specific groups or all groups from NSX-T manager.
To configure SDN connector for NSX-T manager using the GUI:
- Go to Security Fabric > Fabric Connectors and click Create New.
- In the Private SDN section, click VMware NSX.
- Enter the settings and click OK.
To configure SDN connector for NSX-T manager using the CLI:
config system sdn-connector edit "nsx_t24" set type nsx set server "172.18.64.205" set username "admin" set password xxxxxx next end
To import a specific group from the NSX-T manager using the CLI:
You must use the CLI for this function.
Root-F-1 # execute nsx group import nsx_t24 root csf_ns_group [1] 336914ba-0660-4840-b0f1-9320f5c5ca5e csf_ns_group: Name:csf_ns_group Address:1.1.1.0 Address:1.1.1.1 Address:172.16.10.104 Address:172.16.20.104 Address:172.16.30.104 Address:2.2.2.0 Address:2.2.2.2 Address:4.4.4.0 Address:5.5.5.0 Address:6.6.6.6 Address:7.7.7.7
To import all groups from NSX-T manager using the CLI:
You must use the CLI for this function.
Root-F-1 # execute nsx group import nsx_t24 root [1] 663a7686-b9a3-4659-b06f-b45c908349a0 ServiceInsertion_NSGroup: Name:ServiceInsertion_NSGroup Address:10.0.0.2 [2] 336914ba-0660-4840-b0f1-9320f5c5ca5e csf_ns_group: Name:csf_ns_group Address:1.1.1.0 Address:1.1.1.1 Address:172.16.10.104 Address:172.16.20.104 Address:172.16.30.104 Address:2.2.2.0 Address:2.2.2.2 Address:4.4.4.0 Address:5.5.5.0 Address:6.6.6.6 Address:7.7.7.7 [3] c462ec4d-d526-4ceb-aeb5-3f168cecd89d charlie_test: Name:charlie_test Address:1.1.1.1 Address:2.2.2.2 Address:6.6.6.6 Address:7.7.7.7 [4] ff4dcb08-53cf-46bd-bef4-f7aeda9c0ad9 fgt: Name:fgt Address:172.16.10.101 Address:172.16.10.102 Address:172.16.20.102 Address:172.16.30.103 [5] 3dd7df0d-2baa-44e0-b88f-bd21a92eb2e5 yongyu_test: Name:yongyu_test Address:1.1.1.0 Address:2.2.2.0 Address:4.4.4.0 Address:5.5.5.0
To view the dynamic firewall IP addresses that are resolved by the SDN connector using the GUI:
- Go to Policy & Objects > Addresses to view the IP addresses resolved by an SDN connector.
To view the dynamic firewall IP addresses that are resolved by the SDN connector using the CLI:
Root-F-1 # show firewall address csf_ns_group config firewall address edit "csf_ns_group" set uuid ee4a2696-bacd-51e9-f828-59457565b880 set type dynamic set sdn "nsx_t24" set obj-id "336914ba-0660-4840-b0f1-9320f5c5ca5e" config list edit "1.1.1.0" next edit "1.1.1.1" next edit "172.16.10.104" next edit "172.16.20.104" next edit "172.16.30.104" next edit "2.2.2.0" next edit "2.2.2.2" next edit "4.4.4.0" next edit "5.5.5.0" next edit "6.6.6.6" next edit "7.7.7.7" next end next end