ReST NSX v1.2(7)

Release Notes

Updated: 10/10/2017

First Published: 8/15/2017

This document contains system requirements, supported features and bugs for ReSTNSX v1.2(7)

Important Notes


The ReST NSX appliance ships with a 45 day Evaluation License.  In this mode, users are limited to a single data source (NSX Manager) and the ability to create two Tenants only.

Default username is 'admin', default password is 'default'.


System Requirements

Support matrix and system requirements for ReST NSX.

RoleVersionCPUMemoryStorage
ReST NSX1.22 vCPU8GB50GB
vCenter6.0+---
NSX Manager6.3---

For REST API access, HTTPS (TCP Port 443) must be allowed through any transient firewalls for the ReSTNSX Appliance to access vCenter and NSX Manager

Browser Support

  • Chrome
  • Internet Explorer (Feature Preview)

 

Supported ReST NSX Features

System Level Features

  • Security workflows
  • Network Virtualization workflows
  • Custom workflows
  • Multi-tenant Administration for Security and Network Virtualization
  • Multi-tenant admin (local)
  • Bulk Object Creation via CSV
  • Central CLI
  • RBAC and Auditing
  • Event logging
  • Custom login banners (System and Tenant level)

Multi-Tenancy

  • Supported Roles
    • System-wide Admin role
    • Tenant Admin role (with object level management control)
    • Tenant User role (with object level management control)
  • Features
    • Per Tenant Firewall, Networking policies
    • IP-based Firewalling

Operations Management (Feature Preview)

Feature Preview is an early look into upcoming features.  Operations Management enables real-time management of the NSX environment to reduce (and in the future), completely eliminate the need to login to NSX Manager.  The capabilities were introduced with this version of ReSTNSX.

Feature Preview:

  • Networking
    • Logical Switching
    • Logical Routing
  • Tenant DLR and ESG Routing
    • Static Routing
    • Dynamic Routing

Supported VMware NSX Features

General Features

  • NSX-v
  • NSX-T (temporarily disabled to add additional functionality)
  • Universal objects

Security

  • Distributed Firewall Rules
  • IP Sets
  • Service/Service Groups
  • Edge Firewall Rules
  • Security Group inclusion / exclusion by: VM Name, Security Tag, IP Sets
  • Security tag creation and association with VMs

Network Virtualization

  • IP Pools
  • Segment IDs
  • Transport zones
  • Edge Services Gateway (ESG)*
  • Logical Switching
  • DLR configuration*

NSX Manager Services

  • Syslog
  • NTP
  • DNS
  • Backup Settings
  • System Locale
  • System Reboot

Multi-Tenant Administration

NOTE: Tenant level adds, edits and deletes are real-time.  Roll-back, XML Preview and work-flows are not available at the Tenant level.

General Features

  • System Tenant Dashboard for Creating, Editing and Deleting Tenants by the System Administrator
  • Granular Tenant Admin role capabilities
  • Tenant-level Dashboard
  • Custom login banners

Security Notes

  • Non-Tenant (System Level Admin) dFW management will not show Tenant Sections so they are not mistakingly deleted by the system administrator. They can still be deleted by the System Admin within the Tenant Space.
  • Tenants log into their environment by access the ReST NSX IP address and login using their Tenant credentials.  For example a Tenant user with the name John that is assigned to Tenant1, would login as John@Tenant1.

Networking

  • Manage Logical Switches, Distributed Logical Routers, dFW Rules, ESG Firewall Rules, ESG Configurations

Compute

  • For Tenants to access VMs designated for their environment,  vCenter Administrators simply begin any VM name with the Tenant Name.  For example, any VM named Tenant1-VM_Name would be available for assignment within the Tenant1 space

System Upgrades

Upgrades to ReST NSX leverage configuration export for easy migrations.  When exported, the following information is retained:

  • Local Users
  • Saved Workflows
  • Custom Wizards
  • Tenant Information
  • Data Sources
  • System Settings

By exporting this information, upgrades are performed in parallel to the production platform.  Once the new version of ReSTNSX is online, simply import the previously exported configuration file and the system is online.  Administrators can manage the same NSX environment(s) with both ReSTNSX versions at the same time and

Note: When both systems are online, configuration settings are not synchronized between the different versions and must be maintained separately until the old version is decommissioned.

 

Open Issues

Open ReST NSX issues and enhancement requests (ENH). Severity levels range from 1 (Severe) to 5 (Cosmetic).

IDDescriptionStatusSeverity (1-5)
ENH127001Add object name to XML metadata (Delete DLR, Delete Security Tag, Attach VM to LS, apply dfw exclusion etc)Open4
ENH127003ESG and dFW FW Table does not show entry for ANY in the table but ANY is in the preview and XMLOpen5
ENH127004Remove "Add Load Balancer" and "Read dFW Exclusions" in Custom WorkflowOpen5
ENH127002Cannot remove security tags from a VM in a workflowOpen2
ENH127005Create Tenant modal - Copy Tenant information persists even if Copy Tenant settings are disabledOpen3
ENH127006Filter out Tenant Logical Switches and DLR in System spaceOpen2
ENH127007dFW and ESG Rule are missing Service option when creating rules Open2
ENH127008Tenant and System Logical Switch, DLR listing tables need to default sorting by Name, not Wire-IDOpen4
ENH127009Tenant Support pop-up Close button inoperableOpen4

Closed Issues

None at this time