Create a Service Segment in VMware NSX-T

Registering the NSX-T details on GigaVUE-FM is a prerequisite to create the service segment.

To create a service segment in VMware NSX-T:

  1. On the NSX manager, go to Security and select Network Introspection from the left navigation pane. The Network Introspection Settings page opens. Select Service Segment from the top navigation bar. Then the Service Segment page appears.
  2. On the Service Segment page, click ADD SERVICE SEGMENT and a new row appears to create a service segment.
  3. Enter the name and map it to the overlay transport zone created for the VMs.
  4. Click Save.

Note:  Due to certificate validation requirement in NSX-T manager nodes, V Series node deployment may fail. Before deploying the V Series nodes, disable the certificate validation as follows.

  1. Login to each NSX-T manager using CLI with root credentials.
  2. Open /config/vmware/auth/ovf_validation.properties file
  3. Set a value for THIRD_PARTY_OVFS_VALIDATION_FLAG as 2. The definition of the legends are as follows:
    • 0: only VMware-signed OVFs are allowed for deployment
    • 1: only VMware-signed and well-known CA-signed OVFs are allowed for deployment
    • 2: no validation
  4. Save and Exit the file.