Configure Edge Nodes for High Availability (HA)

Page last updated:

This topic provides instructions for configuring Edge Node high-availability (HA) for Enterprise PKS.

Prerequisites

Make sure you have completed all preceding NSX-T installation tasks.

About Edge Node HA

If Enterprise PKS is deployed in NAT mode, Edge Nodes for high availability (HA) use Active/Standby mode to support failover. Properly configuring the Edge Nodes for HA requires two uplinks on the T0 router: one attached to Edge Transport Node 1, and the other attached to Edge Transport Node 2. In addition, you need to create a VIP that is the IP address used for the T0 uplink defined when the T0 Router was created.

Verify Tier-0 Router Configuration

If the T0 Router is not correctly configured for HA, failover to the standby Edge Node will not occur. Before you configure Edge Node HA, verify the following for the T0 Router:

  1. In NSX Manager, go to Advanced Networking & Security > Routing > Routers.

  2. Select the T0 Router you created for Enterprise PKS.

  3. Select Configuration > Router Ports.

  4. Verify that you created two uplink router ports for the Edge Nodes as described in the topic Create Tier-0 Logical Router.

  5. With the T0 router selected, select Routing > Static Routes.

  6. Verify that you defined a default static route so that the next hop points to the physical router.

    • Network: 0.0.0.0/0
    • Next Hop: 10.179.67.233
    • Logical Router Port: empty
  7. If you did not create the required router ports and static routes for the Edge Transport Nodes, see Create Tier-0 Logical Router.

Create HA VIP

Create an HA virtual IP (VIP) address. This address is used for the T0 router uplink. External router devices, such as the physical router, that peer with the T0 router must use the VIP address.

Note: The IP addresses for the uplink-1 router port, uplink-2 router port, and the HA VIP must belong to same subnet.

  1. In NSX Manager, go to Advanced Networking & Security > Routing > Routers.

  2. Select the T0 Router you created for Enterprise PKS.

  3. Select Configuration > HA VIP.

  4. Create the VIP as follows.

    • VIP Address: 10.179.67.235/24, for example
    • Status: Enabled
    • Uplinks Ports: Uplink1 and Uplink2, for example
  5. Click Save and verify the creation of the HA VIP.

Disconnect Unused NICs

Disconnect unused vNICs to prevent the duplication of traffic from two vNICs connected to same VLAN. This can occur when you configure HA for an active/standby Edge Node pair.

  1. Using vCenter, disconnect any unused vNIC interface in each Edge Node VM (this interface can cause duplicate packets.)

  2. For example, in the screenshot below, Network adapter 4 is not being used, so it is disconnected:

Verify Edge Node HA Configuration

  1. The T0 router should display both Edge Node uplink ports in active/standby pairing.

  2. Run the following commands to verify HA channels:

    nsx-edge-1> get high-availability channels
    nsx-edge-1> get high-availability channels stats
    nsx-edge-1> get logical-router
    nsx-edge-1> get logical-router ROUTER-UUID high-availability status
    
  3. Repeat for Edge Node 2.

Next Step

See Configure ESXi Hosts as NSX Transport Nodes.

NSX-T Installation Instructions Home

See Installing and Configuring NSX-T for Enterprise PKS.


Please send any feedback you have to pks-feedback@pivotal.io.