Configure and Manage Layer 2 Bridging

By | February 4, 2019

In this post, we will cover following topics of Objective 2.2 of VCAP6-NV Deploy Exam

Objective 2.2 – Configure and Manage Layer 2 Bridging

  • Add Layer 2 Bridging
  • Connect Layer 2 Bridging to the appropriate virtual port group

Add Layer 2 Bridging

A Layer 2 (L2) Bridge allows connectivity between a logical switch (VXLAN based) and a VLAN based portgroup on vDS that shares the same IP address space i.e VMs connected to VXLAN and distributed portgroup are on same subnet.

Prior to NSX version 6.2, it was not possible to bridge a Logical Switch that was connected to a Distributed Logical Router: for that scenario it was required to connect the Logical Switch directly to an Edge Gateway.

With NSX 6.2 VMware introduced in-kernel software L2 Bridging capabilities that allow you to connect VLAN backed VMs to VMs connected VXLAN based network (virtual wires). L2 bridging is achieved by deploying a Logical router control VM. The control VM is used only for the bridge configuration and its pinning to a particular ESXi host.

In a L2 bridge, there is always a 1:1 relationship between VXLAN and VLAN. Although there can be multiple bridge instances on a DLR, but the same VXLAN or VLAN cannot be connected to more than one bridge.

The following prerequisites are for Layer 2 Bridging.

  • An NSX logical router must be deployed in your environment.
  • You cannot use a universal logical router to configure bridging, and you cannot add a bridge to a universal logical switch.


If the DLR is configured for High-Availability (HA) mode, when the primary NSX Edge VM fails (think ESXi host failure) the bridge is moved to the host with the standby NSX Edge VM (thus this host must also have the VLAN connected).

To Add a Layer 2 Bridge

Note: You need an Edge DLR deployed prior.

Log into the vSphere Web Client.

GO inNetworking and Security and click NSX Edges.

Double click the target Distributed Logical Router.

Click the Manage tab.

Click Bridging.

Click Add(+).

Enter the Name of the new L2 Bridge.

Select the target Logical Switch

Click OK.

Then click the Select Distributed Port Group and select target VLAN

Click OK.

Click Publish Changes.

and here we configured the L2 Bridging

Also read the below reference documents:

In Next post we will cover: Objective 2.3 – Configure and Manage Routing

I hope this has been informative and thank you for reading! Be social and share it on social media, if you feel worth sharing it…!!!

Reference : by Clinton Prentice & VMware Documentations.

Leave a Reply

Your email address will not be published. Required fields are marked *