Getting Started With NSX ALB: Part-1- Introduction & Architecture

Manish Jha

NSX Advanced Load Balancer (Formerly Avi Vantage) is a multi-cloud Software Defined Load Balancer which provides scalable application delivery across any infrastructure. NSX ALB is 100% software-defined and provides:

  • Multi-cloud: Consistent experience across on-premises and cloud environments through central management and orchestration.
  • Intelligence: Built-in analytics drive actionable insights that make autoscaling seamless, automation intelligent and decision making easy.
  • Automation: 100% RESTful APIs enable self-service provisioning and integration into the CI/CD pipeline for application delivery.

Note: NSX ALB solution came through VMware acquisition of Avi Networks in 2019.

Some of the key features of NSX ALB are:

  • Autoscaling of Load Balancers and Applications.
  • Web Application Analytics & Performance Insights.
  • Automation for IT, Self-Service for Developers.

To know more about these features, please visit Avi Networks website. 

NSX ALB Architecture

NSX-ALB Consists of two main components,

  • Avi Controller.
  • Service Engines (SE).

Controllers are deployed by platform administrator and Service Engines are automatically deployed by the controller when we create Virtual Services. Avi Controllers forms control plane and Service Engine forms data plane.

Below diagram shows the high level architecture of NSX ALB.

Control Plane: Avi Controller is the central repository for the configurations and policies and can be deployed in both on-Prem environment or in the cloud. For Lab/Poc purpose one controller node suffices, but in production environments 3 node cluster is recommended. Avi Controller runs on a VM and can be managed using its web interface, CLI, or REST API.

Controller Responsibilities:

  • All platform related configuration is done on controllers.
  • Controller stores and manages all policies related to services and management.
  • Controllers are also responsible for deploying SE’s and place virtual services on SEs to load balance new applications or increase the capacity of running applications.

Data Plane: The Service Engines (SEs) are lightweight data plane engines that handle all data plane operations by receiving and executing instructions from the controller.

Service Engine Responsibilities:

  • The SEs perform load balancing and all client- and server-facing network interactions.
  • It collects real-time application telemetry from application traffic flows.
  • Execute data plane Application Delivery Controls operations, such as health monitoring and test the performance of the back-end servers.
  • Protects against security threats (DoS, suspicious client IPs).
  • Delivers high performance web security with iWAF and Offloads SSL decryption from back-end servers.

NSX ALB can be deployed in multiple cloud environments like VMware vCenter, Amazon Web Services, Microsoft Azure, Google Cloud Platform, Oracle Cloud, IBM Cloud, VMC on AWS, Nutanix, OpenStack or bare-metal.

NSX ALB Use Cases

Few use cases that are attracting customers towards NSX ALB adoption are:

  • Load Balancer refresh.
  • Multi-Cloud initiatives.
  • Security including WAF, DDoS attack mitigation, achieve compliance (GDPR, PCI, HIPAA).
  • Container ingress (integrates via REST APIs with K8s ecosystems like GKE, PKS, OpenShift, EKS, AKS, TKG.

And that concludes this post. In Next post of this series, I will demonstrate NSX ALB deployment & configuration.

I hope you enjoyed reading this post. Feel free to share this on social media if it is worth sharing 🙂

Leave a Reply