Advanced Networking Services Guide
Table Of Contents
- vCloud Air Advanced Networking Services Guide
- Contents
- Preface
- Introducing Advanced Networking Services for vCloud Air
- Advanced Routing for vCloud Air
- Certificate and Security Group Management
- Network Security and Isolation
- Load Balancing
- Secure Access Using Virtual Private Networks
- IP Service Management: NAT and DHCP
- Index
Prerequisites
A Router ID must have been selected. “Specify Global Configuration,” on page 15
Procedure
1 Log in to vCloud Air and navigate to the vCloud Edge Gateway Services UI.
See “Log In and Navigate to Advanced Networking Services,” on page 9 for information.
2 Click the Routing tab and OSPF.
3 In OSPF Configuration, complete the OSPF options:
a Click Edit next to OSPF Configuration.
b Select Enable OSPF.
c For packet forwarding to be uninterrupted during restart of OSPF services, select Enable Graceful
Restart.
d To allow the edge gateway to advertise itself as a default gateway to its peers, select Enable
Default Originate.
e Click OK.
4 In Area Definitions, configure the OSPF areas:
a Delete the not-so-stubby area (NSSA) 51 that is configured by default.
b
Click the Add (
) icon.
c Type an area ID.
The edge gateway supports an area ID in the form of an IP address or decimal number.
d In Type, select Normal or NSSA.
NSSAs prevent the flooding of AS-external link-state advertisements (LSAs) into NSSAs. They rely
on default routing to external destinations. Hence, NSSAs must be placed at the edge of an OSPF
routing domain. NSSA can import external routes into the OSPF routing domain, thereby
providing transit service to small routing domains that are not part of the OSPF routing domain.
e In Authentication, select Password or MD5 and type the password or MD5 key, respectively, for
the value.
n
Password: In this method of authentication, a password is included in the transmitted packet.
n
MD5: This authentication method uses MD5 (Message Digest type 5 ) encryption. An MD5
checksum is included in the transmitted packet.
5 In Area to Interface Mapping, map interfaces to areas by completing the following steps:
a
In Area Definitions, click the Add ( ) icon.
b From the vNIC drop-down list, select the interface that you want to map to the OSPF area. The
interface specifies the external network that both edge gateways are connected to.
c Type an Area ID. The edge gateway supports an area ID in the form of an IP address or decimal
number.
Chapter 2 Advanced Routing for vCloud Air
VMware, Inc. 19