Manualshelf

Setup guide

ManualsBrandsUpgrading everyday security ManualsHome building and DecorCommpact
21222324252627282930
c Click Edit Host Profile.
d Select Networking Configuration > Host Port Group > vmservice-vmknic-pg > IP address
settings > How is IPv4 address determined.
e Type the IP address as 169.254.1.1 and Subnet mask as 255.255.255.0.
f Select Networking Configuration > Host Port Group > vmservice-vmknic-pg > Determine how
MAC address for vmknic should be decided.
g Select User must explicitly choose the policy option.
2 Save the host profile.
3 In a web browser, type https://vsm-ip/bin/offline-bundles/VMware-vShield-fastpath-
esx5x-5.5.0-1280404.zip and download the zip file.
4 Use the host profile you created in Step 1 and the offline bundle you downloaded in Step 3 to update
the stateless ESX configuration.
Installing vShield Edge
You can install multiple vShield Edge virtual appliances in a datacenter. Each vShield Edge virtual
appliance can have a total of ten uplink and internal network interfaces. The internal interfaces connect to
secured port groups and act as the gateway for all protected virtual machines in the port group. The subnet
assigned to the internal interface can be RFC 1918 private space. Firewall rules and other vShield Edge
services are enforced on traffic between interfaces.
uplink interfaces of vShield Edge connect to uplink port groups that have access to a shared corporate
network or a service that provides access layer networking.
Multiple external IP addresses can be configured for load balancer, site-to-site VPN, and NAT services.
Overlapping IP addresses are not allowed for internal interfaces, and overlapping subnets are not allowed
for internal and uplink interfaces.
Prerequisites
You must have been assigned the Enterprise Administrator or vShield Administrator role .
Procedure
1 Open the Add Edge Wizard on page 29
Open the Add Edge wizard to install and configure a vShield Edge instance.
2 Name vShield Edge on page 29
vShield Edge requires a descriptive name that is unique across all vShield Edge virtual machines in a
single tenant. This name appears in your vCenter inventory.
3 Specify the CLI Credentials on page 29
Edit the credentials to be used for logging in to the Command Line Interface (CLI).
4 Add Appliances on page 30
You must add an appliance before you can deploy a vShield Edge. If you do not add an appliance
when you install vShield Edge, vShield Edge remains in an offline mode until you add an appliance.
5 Add Internal and Uplink Interfaces on page 31
You can add up to ten internal and uplink interfaces to a vShield Edge virtual machine.
6 Configure the Default Gateway on page 32
Provide the IP address for the vShield Edge default gateway.
vShield Installation and Upgrade Guide
28 VMware, Inc.