create_tier1_gateway
Creates a Tier-1 gateway for routing segments, optionally linked to a Tier-0 for north-south connectivity. Set route advertisement types to enable external reachability of connected subnets.
Instructions
[WRITE] Create a Tier-1 gateway for routing segments, with optional Tier-0 uplink.
For north-south reachability, link it to a Tier-0 (get the path from list_tier0_gateways). Side effect to note: if route_advertisement is omitted, nothing is advertised to the Tier-0, so connected subnets stay unreachable from outside until advertisement types are set (here or via update_tier1_gateway). Re-running with the same tier1_id overwrites it (PUT semantics). Returns the created gateway dict; on failure returns {"error", "hint"}. Recorded in the audit log (~/.vmware/audit.db).
Args: tier1_id: Unique gateway identifier (alphanumerics, hyphens, underscores only); becomes policy path /infra/tier-1s/. display_name: Human-readable name shown in the NSX UI. tier0_path: Parent Tier-0 policy path, e.g. "/infra/tier-0s/". Omit to create a standalone (unlinked) gateway. edge_cluster_path: Edge cluster policy path for stateful services such as NAT, e.g. "/infra/sites/default/enforcement-points/default/ edge-clusters/". Optional. route_advertisement: Comma-separated advertisement types. Valid values: TIER1_CONNECTED, TIER1_STATIC_ROUTES, TIER1_NAT, TIER1_LB_VIP, TIER1_LB_SNAT, TIER1_DNS_FORWARDER_IP, TIER1_IPSEC_LOCAL_ENDPOINT. target: NSX Manager name from config.yaml. Uses the default target if omitted.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| target | No | ||
| tier1_id | Yes | ||
| tier0_path | No | ||
| display_name | Yes | ||
| edge_cluster_path | No | ||
| route_advertisement | No |