5.1
Table Of Contents
- vCloud Director User's Guide
- Contents
- vCloud Director User's Guide
- Getting Started with vCloud Director
- Managing Users and Groups
- Managing Cloud Resources
- Managing Virtual Datacenters
- Managing Organization vDC Networks
- Configuring Oganization vDC Network Services
- Configure DHCP for an Organization vDC Network
- Configure the Firewall for an Organization vDC Network
- Add a Firewall Rule to an Organization vDC Network
- Reorder Firewall Rules for an Organization vDC Network
- Enable VPN for an Organization vDC Network
- Create a VPN Tunnel In an Organization
- Create a VPN Tunnel Between Organizations
- Create a VPN Tunnel to a Remote Network
- Enable Static Routing for an Organization vDC Network
- Add Static Routes Between vApp Networks Routed to the Same Organization vDC Network
- Add Static Routes Between vApp Networks Routed to Different Organization vDC Networks
- Reset an Organization vDC Network
- View IP Use for an Organization vDC Network
- Add IP Addresses to an Organization vDC Network IP Pool
- View vApps and vApp Templates That Use an Organization vDC Network
- View Syslog Server Settings for an Organization vDC Network
- Apply Syslog Server Settings to an Organization vDC Network
- Configuring Oganization vDC Network Services
- Managing Expired Items
- Working in an Organization
- Understanding Leases
- Set Up an Organization
- Review Your Organization Profile
- Modify Your Email Settings
- Modify Your Organization's Policies
- Set Default Domain for Organization Virtual Machines
- Enable Your Organization to Use an SAML Identity Provider
- Manage Users and Groups in Your Organization
- Manage Resources in Your Organization
- Manage Virtual Machines in Your Organization
- Viewing Organization Log Tasks and Events
- Working with Catalogs
- Working with Media Files
- Working with vApp Templates
- Open a vApp Template
- Add a vApp Template to My Cloud
- Download a vApp Template
- Upload an OVF Package as a vApp Template
- Resume the Upload of a vApp Template
- Copy a vApp Template from a Public Catalog to an Organization Catalog
- Copy a vApp Template Between an Organization's Catalogs
- Move a vApp Template Between an Organization's Catalogs
- Delete a vApp Template
- Save a vApp as a vApp Template
- Modify vApp Template Properties
- Working with vApps
- Create a vApp From a vApp Template
- Create a New vApp
- Import a Virtual Machine as a vApp
- About the vApp Placement Engine
- Copy a vApp
- Start a vApp
- Start a vApp with an Older Version of VMware Tools
- Stop a vApp
- Suspend a vApp
- Discard the Suspended State of a vApp
- Reset a vApp or Virtual Machine
- View vApp Virtual Machines
- Add a Virtual Machine to a vApp
- Import a Virtual Machine to a vApp from vSphere
- Remove Virtual Machines from a vApp
- Set vApp Start and Stop Options
- Working with Networks in a vApp
- View vApp Networks
- Adding Networks to a vApp
- Configuring Network Services for a vApp Network
- Configure DHCP for an vApp Network
- Configure the Firewall for a vApp Network
- Add a Firewall Rule to a vApp Network
- Reorder Firewall Rules for a vApp Network
- Enable IP Masquerading for a vApp Network
- Add a Port Forwarding Rule to a vApp Network
- Add an IP Translation Rule to a vApp Network
- Reorder Port Forwarding Rules for a vApp Network
- Enable Static Routing for a vApp Network
- Add Static Routes to vApp Networks
- Reset Your vApp Network
- Delete a vApp Network
- Modify Network Properties
- Display the IP Allocations for Your vApp Network
- Configure IP Address Persistence
- View Syslog Server Settings for a vApp Network
- Apply Syslog Server Settings to a vApp Network
- Editing vApp Properties
- Display a vApp Diagram
- Change the Owner of a vApp
- Upgrade the Virtual Hardware Version for a vApp
- Save vApp as a vApp Template to Your Catalog
- Create a Snapshot of a vApp
- Revert a vApp to a Snapshot
- Remove a Snapshot of a vApp
- Copy a vApp to Another vDC
- Move a vApp to Another vDC
- Delete a vApp
- Working with Virtual Machines
- Open a Virtual Machine Console
- Power On a Virtual Machine
- Power Off a Virtual Machine
- Reset a vApp or Virtual Machine
- Suspend a Virtual Machine
- Resume a Suspended Virtual Machine
- Discard the Suspended State of a Virtual Machine
- Insert a CD/DVD
- Eject a CD/DVD
- Insert a Floppy
- Eject a Floppy
- Upgrade the Virtual Hardware Version for a Virtual Machine
- Connect Remotely to a Virtual Machine
- Create a Snapshot of a Virtual Machine
- Revert a Virtual Machine to a Snapshot
- Remove a Snapshot of a Virtual Machine
- Copy or Move a Virtual Machine to a vApp
- Delete a Virtual Machine
- Editing Virtual Machine Properties
- Installing VMware Tools
- Install VMware Tools in a New Virtual Machine with No Guest Operating System
- Installing VMware Tools in a vApp
- Install VMware Tools in a Virtual Machine in a vApp
- Install VMware Tools in a vApp Template
- Install VMware Tools With Guest Customization Disabled
- Upgrade VMware Tools
- Install VMware Tools on a Windows Guest
- Install VMware Tools on a Linux Guest in X with the RPM Installer
- Install VMware Tools on a Linux Guest with the Tar Installer or RPM Installer
- Install VMware Tools on a Solaris Guest
- Guest Operating Systems
- Install a Guest Operating System
- Customizing Your Guest Operating System
- Understanding Guest Customization
- Customizing a Guest OS When Saving a vApp Template as a vApp
- Enable or Disable Guest Customization
- Change Guest Customization Settings for Virtual Machines in a vApp Template
- Power on and Force Recustomization of a Virtual Machine
- Customize Your Windows NT vApp Template
- Customize Your Solaris vApp Template
- Upload a Customization Script
- Reset Your Virtual Machine's Password
- Domain Join Requirements for Windows
- Join a Windows Guest Domain During Guest Operating System Personalization
- Guest Operating System Support
- Index
4 Type a range of IP addresses or use the default range.
vCloud Director uses these addresses to satisfy DHCP requests. The range of DHCP IP addresses cannot
overlap with the static IP pool for the organization vDC network.
5 Set the default lease time and maximum lease time or use the default values.
6 Click OK.
vCloud Director updates the network to provide DHCP services.
Configure the Firewall for an Organization vDC Network
An organization administrator can configure certain organization vDC networks to provide firewall services.
Enable the firewall on an organization vDC network to enforce firewall rules on incoming traffic, outgoing
traffic, or both.
When you enable the firewall, you can specify a default firewall action to deny all incoming and outgoing
traffic or to allow all incoming and outgoing traffic. You can also add specific firewall rules to allow or deny
traffic that matches the rules to pass through the firewall. These rules take precedence over the default firewall
action. See “Add a Firewall Rule to an Organization vDC Network,” on page 24.
If a system administrator specified syslog server settings and those settings were applied to the organization
vDC network, then you can log events related to the default firewall action. For information about applying
syslog server settings, see “Apply Syslog Server Settings to an Organization vDC Network,” on page 33. To
view the current syslog server settings see “View Syslog Server Settings for an Organization vDC Network,”
on page 33.
Prerequisites
Verify that a routed organization vDC network is in place.
Procedure
1 Click Administration and select the organization vDC.
2 Click the Org vDC Networks tab, right-click the organization vDC network name, and select Configure
Services.
3 Click the Firewall tab and select Enable firewall to enable firewall services, or deselect it to disable firewall
services.
4 Select the default firewall action.
Option Description
Deny
Blocks all traffic except when overridden by a firewall rule.
Allow
Allows all traffic except when overridden by a firewall rule.
5 (Optional) Select the Log check box to log events related to the default firewall action.
6 Click OK.
Add a Firewall Rule to an Organization vDC Network
An organization administrator can add firewall rules to an organization vDC network that supports a firewall.
You can create rules to allow or deny traffic that matches the rules to pass through the firewall.
When you add a new firewall rule to an organization vDC network, it appears at the bottom of the firewall
rule list. For information about how to set the order in which firewall rules are enforced, see “Reorder Firewall
Rules for an Organization vDC Network,” on page 26.
vCloud Director User's Guide
24 VMware, Inc.