Advanced Networking Services Guide
Table Of Contents
- vCloud Air Advanced Networking Services Guide
- Contents
- Preface
- Introducing Advanced Networking Services for vCloud Air
- Advanced Routing for vCloud Air
- Certificate and Security Group Management
- Network Security and Isolation
- Load Balancing
- Secure Access Using Virtual Private Networks
- IP Service Management: NAT and DHCP
- Index
IP Service Management: NAT and
DHCP 7
Advanced Networking Services provides functionality to manage Network Address Translation for the
virtual machines deployed in vCloud Air and to configure the DHCP server for an edge gateway.
You can manage these services by using Advanced Networking Services or by using the networking
features in the vCloud Air UI and vCloud Director UI. See the vCloud Air Networking Guide for
information.
This chapter includes the following topics:
n
“Network Address Translation (NAT),” on page 67
n
“DHCP Service,” on page 69
Network Address Translation (NAT)
The edge gateway provides a network address translation (NAT) service to assign a public address to a
virtual machine or group of virtual machines in a private network.
Using this technology limits the number of public IP addresses that an organization or company must use,
for economy and security purposes. You must configure NAT rules to provide access to services running on
privately addressed virtual machines.
The NAT service configuration is separated into source NAT (SNAT) and destination NAT (DNAT) rules.
When you configure an SNAT or a DNAT rule, you always configure the rule from the perspective of
vCloud Air. Specifically, that means you configure the rules in the following ways:
n
SNAT: the traffic is traveling from a virtual machine on an internal network in vCloud Air (the source)
through the Internet to the external network (the destination).
n
DNAT: the traffic is traveling from the Internet (the source) to a virtual machine inside vCloud Air (the
destination).
You can configure NAT rules to create a private IP address space inside vCloud Air to port your private IP
address space from your enterprise into the cloud. Configuring NAT rules in vCloud Air allows you to use
the same private IP addresses for your virtual machines in vCloud Air that were used on premises in your
local data center.
NAT rules in vCloud Air include the following support:
n
Creating subnets within the private IP address space
n
Creating multiple private IP address spaces for an edge gateway
VMware, Inc.
67