Prerequisites for Integrating V Series Nodes with NSX-T
The following are the prerequisites for integrating V Series nodes with NSX-T:
- VMware vCenter Standard Version must be 7.0 with the required privileges. Refer to Required VMware Virtual Center Privileges for more information on vCenter privileges.
- Before deploying V Series nodes through GigaVUE-FM, Service segment must be created in the NSX-T manager.
- NSX-T version must be 3.1.3 or 3.2.0.
- ESXi hosts must have the minimum vCPU and memory resources.
- GigaVUE-FM version must be 5.10.01 or later.
- V Series 2 device OVA image file.
- Port number 8889 must be available for GigaVUE-FM to access V Series nodes.
Note: Service insertion is not supported when the VMware NSX-T manager in federation mode.
Note: You cannot have both GigaVUE-VM and GigaVUE V Series Node visibility solutions deployed on the same vCenter.
The V Series 2 Node OVA image files can be downloaded from Gigamon Customer Portal.
Network Firewall Requirements
Following are the Network Firewall Requirements for V Series 2 node deployment.
| Source | Destination | Source Port | Destination Port | Protocol | Service | Purpose |
|
GigaVUE-FM |
ESXi hosts |
Any (1024-65535) |
443 |
TCP |
https |
Allows GigaVUE-FM to communicate with vCenter, NSX-T and all ESXi hosts. |
|
NSX-T Manager |
||||||
|
vCenter |
||||||
|
GigaVUE FM |
GigaVUE V Series Nodes |
Any (1024-65535) |
8889 |
TCP |
Custom API |
Allows GigaVUE-FM to communicate with GigaVUE V Series Node |
|
Administrator |
GigaVUE-FM |
Any (1024-65535) |
443 |
TCP |
https |
Management connection to GigaVUE‑FM |
|
22 |
ssh |
|||||
|
Remote Source |
GigaVUE V Series Nodes |
Custom Port(VXLAN and UDPGRE),N/A for GRE |
4789 |
UDP |
VXLAN |
Allows to UDPGRE Tunnel to communicate and tunnel traffic to GigaVUE V Series Nodes(Applicable for Tunnel Ingress option only) |
|
N/A |
IP 47 |
GRE |
||||
|
4754 |
UDP |
UDPGRE |
||||
|
V Series Nodes |
Tool/ HC Series instance |
Custom Port(VXLAN),N/A for GRE |
4789 |
UDP |
VXLAN |
Allows GigaVUE V Series Node to communicate and tunnel traffic to the Tool |
|
N/A |
IP 47 |
GRE |
||||
|
V Series Nodes |
Tool/ HC Series instance |
N/A |
N/A |
ICMP |
echo Request |
Allows V Series node to health check tunnel destination traffic (Optional) |
|
echo Response |
||||||
|
GigaVUE-FM |
External Image Server URL |
Any (1024-65535) |
Custom port on web Server |
TCP |
http |
Access to image server to image lookup and checks, and downloading the image |
|
NSX-T Manager |
||||||
|
vCenter |
Recommended Form Factor (Instance Types)
The form factor (instance type) size of the GigaVUE V Series Node is configured on the OVF file and packaged as part of the OVA image file. The following table lists the available form factors and sizes based on memory and the number of vCPUs for a single V series node. Instances sizes can be different for GigaVUE V Series Nodes in different ESXi hosts and the default size is Small.
|
Type |
Memory |
vCPU |
Disk space |
|---|---|---|---|
| Small | 4GB | 2vCPU | 8GB |
| Medium | 8GB | 4 vCPU | 8GB |
| Large | 16GB | 8 vCPU | 8GB |
Required VMware Virtual Center Privileges
This section lists the minimum privileges required for the GigaVUE‑FM user in Virtual Center.
The following table lists the minimum required permissions for GigaVUE‑FM to manage the virtual center user with roles specified above.
|
Category |
Required Privilege |
Purpose |
||||||||||||
|
Virtual machine |
Interaction
|
|
Default Login Credentials
You can login to the GigaVUE V Series Node, GigaVUE V Series proxy, and G-vTAP Controller by using the default credentials.
|
Product |
Login credentials |
|
GigaVUE V Series Node |
You can login to the GigaVUE V Series Node by using ssh. The default username and password is: Username: gigamon Password: Gigamon123! |
