vmware_nsx_logoVMware usually publishes a Configuration Maximums paper on their products. NSX has quite a bit of specifics that have a limit, but there is not an official configuration maximums paper yet. I hope there will be one soon, but for now I’ve compiled a list of findings from my travels on the interwebs.

Most of the figures on NSX 6.1 are confirmed by a paper from PSO, others are from the documentation and real life limits.

DescriptionNSX 6.1NSX 6.2NSX 6.3
Relations
vCenters111
DRS Clusters121216
NSX Controllers333
Hosts per cluster323232
Hosts per Transport Zone256512512
Layer 2
Logical Switches10,00010,00010,000
Logical Switch Ports50,00050,00050,000
Bridges per DLR500500500
Distributed Firewall
Rules per NSX Manager100,000100,000100,000
Rules per VM1,0003,5003,500
Rules per Host10,00010,000+ 110,000+ 1
Concurrent connections per Host2,000,0002,000,0002,000,000
Security Groups per NSX Manager10,00010,00010,000
Distributed Logical Router
DLRs per Host1,000 (6.1.2+)1,0001,000
DLRs per NSX Manager1,2001,2001,200
Interfaces per DLR999 2999 2999 2
Uplink interfaces per DLR888
Active routes per DLR2,0002,0002,000
Active routes per NSX Manager12,00012,00012,000
OSPF Adjacencies per DLR101010
BGP Peers per DLR101010
NSX Edge Services Gateway
ESGs per NSX Manager2,0002,0002,000
Interfaces per ESG (internal, uplink or trunk)101010
Subinterfaces on a trunk200200200
Static routes per ESG2,0482,0482,048
ESG – Compact
NAT Rules per ESG1,0242,0482,048
OSPF Routes per ESG20,000 320,000 320,000 3
OSPF Adjacencies per ESG101010
BGP Peers per ESG101010
BGP Routes per ESG20,00020,00020,000
Total Routes per ESG20,00020,00020,000
Concurrent connections per ESG64,00064,00064,000
Load Balancer VIPs646464
Load Balancer Pools646464
Load Balancer Servers per Pool32320320
SSL-VPN Concurrent connections505050
ESG – Large
NAT Rules per ESG1,0242,0484,096
OSPF Routes per ESG50,000 350,000 350,000 3
OSPF Adjacencies per ESG202020
BGP Peers per ESG202020
BGP Routes per ESG50,00050,00050,000
Total Routes per ESG50,00050,00050,000
Concurrent connections per ESG1,000,0001,000,0001,000,000
Load Balancer VIPs646464
Load Balancer Pools646464
Load Balancer Servers per Pool32320320
SSL-VPN Concurrent connections100100100
ESG – X-Large
NAT Rules per ESG1,0242,0484,096
OSPF Routes per ESG100,000 3100,000 3100,000 3
OSPF Adjacencies per ESG404040
BGP Peers per ESG505050
BGP Routes per ESG250,000250,000250,000
Total Routes per ESG250,000250,000250,000
Concurrent connections per ESG1,000,0001,000,0001,000,000
Load Balancer VIPs6410241024
Load Balancer Pools6410241024
Load Balancer Servers per Pool3230723072
SSL-VPN Concurrent connections100100100
ESG – Quad-Large
NAT Rules per ESG1,0242,0488,196
OSPF Routes per ESG100,000 3100,000 3100,000 3
OSPF Adjacencies per ESG404040
BGP Peers per ESG505050
BGP Routes per ESG250,000250,000250,000
Total Routes per ESG250,000250,000250,000
Concurrent connections per ESG1,000,0001,000,0001,000,000
 Load Balancer VIPs6410241024
Load Balancer Pools6410241024
 Load Balancer Servers per Pool3230723072
 SSL-VPN Concurrent connections100010001000
ESG – All Sizes
Firewall rules per ESG2,0002,0002,000
DHCP Pools per Edge Service Gateway20,00020,00020,000

1 = Maximum depends on multiple factors, can be different in different environments.
2 = Maximum of 991 internal and max 8 uplinks
3 = Maximum of 750 LSA type-1 routes

Change log

6 Feb 2017: Added 6.2 and 6.3, removed 6.1 as it’s end-of-life.

Disclaimer

None of these numbers are officially confirmed by VMware and they can differ in different environments. I’m hoping there will be an official document stating the maximums in the future.