Transport zones

Segments are created as part of a VMware NSX-T Data Center object called a transport zone. There are VLAN-backed transport zones and overlay-backed transport zones.

VLAN backed transport zones: These zones connect to the physical infrastructure usually for north-south connectivity. VLAN backed transit zones can also provide VMware NSX-T Data Center services such as microsegmentation to workloads that do not require the GENEVE overlay.

Overlay transport zones: These zones use the VMware NSX-T Data Center domain to route GENEVE-encapsulated traffic to external devices or networks and centralized services. An edge VM can support one overlay transport zone.

The VMware NSX-T Data Center for VxBlock System design includes transport zones for uplink and overlay segments. The transport zones create the NSX-managed Virtual Distributed Switch (N-VDS) that the segments are connected to.

The uplink transport zones are VLAN-backed segments which are defined as the following in the design:

  • 9ka-tz for the VLAN traffic north-south to the Cisco Nexus 9000 Series 9K-A switch
  • 9kb-tz for the VLAN traffic north-south to the Cisco Nexus 9000 Series 9K-B switch

An overlay transport zone carries the east-west Geneve traffic. The overly transport zone is:

  • overlay-tz

The VMware NSX-T Data Center for VxBlock System design provides a minimal framework to support the following: 

  • East-west overlay-backed data flows
  • North-south egress from overlay-backed segments to nonoverlay-backed endpoints on the physical network
  • North-south ingress from the physical network destined to an endpoint behind the overlay

Customize or add to this design after the solution is delivered. However, modified designs must not interfere with the operation of the system as designed.