1.0
Table Of Contents
- Cloud Director Administrator's Guide
- Contents
- About This Book
- Getting Started with Cloud Director
- Adding Resources to Cloud Director
- Adding vSphere Resources
- Adding Cloud Resources
- Provider Virtual Datacenters
- Create a Provider Virtual Datacenter
- External Networks
- Add an External Network
- Network Pools
- Add a Network Pool That Is Backed by VLAN IDs
- Add a Network Pool That Is Backed by Cloud Isolated Networks
- Add a Network Pool That Is Backed by vSphere Port Groups
- Set the MTU for a Network Pool Backed by Cloud Isolated Networks
- Creating and Provisioning Organizations
- Creating a Published Catalog
- Managing Cloud Resources
- Managing Provider vDCs
- Enable or Disable a Provider vDC
- Delete a Provider vDC
- Modify a Provider vDC Name and Description
- Enable or Disable a Provider vDC Host
- Prepare or Unprepare a Provider vDC Host
- Upgrade an ESX/ESXi Host Agent for a Provider vDC Host
- Repair a Provider vDC ESX/ESXi Host
- Enable or Disable a Provider vDC Datastore
- Add Storage Capacity to a Provider vDC
- Configure Low Disk Space Warnings for a Provider vDC Datastore
- Send an Email Notification to Provider vDC Users
- Managing Organization vDCs
- Managing External Networks
- Managing Organization Networks
- Creating Organization Networks
- Configuring Network Services
- Reset an Organization Network
- Delete an Organization Network
- View IP Usage for an Organization Network
- Add IP Addresses to an Organization Network IP Pool
- Modify an Organization Network Name and Description
- Modify an Organization Network DNS Settings
- Managing Network Pools
- Managing Cloud Cells
- Managing Provider vDCs
- Managing vSphere Resources
- Managing Organizations
- Enable or Disable an Organization
- Delete an Organization
- Modify an Organization Name
- Modify an Organization Full Name and Description
- Modify Organization LDAP Options
- Modify Organization Catalog Publishing Policy
- Modify Organization Email Preferences
- Modify Organization Lease, Quota, and Limit Settings
- Add a Catalog to an Organization
- Managing Organization Resources
- Managing Organization Users and Groups
- Managing Organization vApps
- Managing System Administrators and Roles
- Add a System Administrator
- Import a System Administrator
- Enable or Disable a System Administrator
- Delete a System Administrator
- Edit System Administrator Profile and Contact Information
- Send an Email Notification to Users
- Delete a System Administrator Who Lost Access to the System
- Import an LDAP Group
- Delete an LDAP Group
- Change an LDAP Group Description
- Roles and Rights
- Create a Role
- Copy a Role
- Edit a Role
- Delete a Role
- Managing System Settings
- Monitoring Cloud Director
- Roles and Rights
- Index
Add a Firewall Rule for an Organization Network
You can add firewall rules to an organization network that supports a firewall to allow traffic that matches the
rules to pass through the firewall.
In order for a firewall rule to be enforced, you must enable the firewall for the organization network. See
“Enable the Firewall for an Organization Network,” on page 55.
Both system administrators and organization administrators can add firewall rules.
Prerequisites
An external NAT-routed organization network.
Procedure
1 Click the Manage & Monitor tab and click Organization Networks in the left pane.
2 Right-click the organization network name and select Configure Services.
3 Click the Firewall tab and click Add.
4 Type a name for the rule.
5 Type the IP address of the virtual machine for which you want to allow incoming traffic.
6 Select the port for incoming traffic.
7 Select the protocol of the incoming traffic to accept.
8 Select the Enable check box and click OK.
Enable IP Masquerading for an Organization Network
You can configure certain organization networks to provide IP masquerade services. Enable IP masquerading
on an organization network to hide the internal IP addresses of virtual machines from the external network.
When you enable IP masquerade, Cloud Director translates a virtual machine's private, internal IP address
into a public IP address for outbound traffic.
Both system administrators and organization administrators can enable IP masquerade.
Prerequisites
An external NAT-routed organization network.
Procedure
1 Click the Manage & Monitor tab and click Organization Networks in the left pane.
2 Right-click the organization network name and select Configure Services.
3 Click the NAT - External IP Mapping tab and select Enable IP Masquerade.
Add External IP Addresses to an Organization Network
Before you can configure external IP mapping for an organization network, you must add one or more external
IP addresses.
Only a system administrator can add external IP addresses to an organization network.
Prerequisites
An external NAT-routed organization network.
Cloud Director Administrator's Guide
56 VMware, Inc.