1.5
Table Of Contents
- vCloud Director Administrator's Guide
- Contents
- vCloud Director Administrator's Guide
- Getting Started with vCloud Director
- Adding Resources to vCloud Director
- Adding vSphere Resources
- Adding Cloud Resources
- Provider Virtual Datacenters
- Create a Provider Virtual Datacenter
- External Networks
- Add an External Network
- Network Pools
- Add a Network Pool That Is Backed by VLAN IDs
- Add a Network Pool That Is Backed by Cloud Isolated Networks
- Add a Network Pool That Is Backed by vSphere Port Groups
- Set the MTU for a Network Pool Backed by Cloud Isolated Networks
- Creating and Provisioning Organizations
- Creating a Published Catalog
- Managing Cloud Resources
- Managing Provider vDCs
- Enable or Disable a Provider vDC
- Delete a Provider vDC
- Modify a Provider vDC Name and Description
- Enable or Disable a Provider vDC Host
- Prepare or Unprepare a Provider vDC Host
- Upgrade an ESX/ESXi Host Agent for a Provider vDC Host
- Repair a Provider vDC ESX/ESXi Host
- Enable or Disable a Provider vDC Datastore
- Add Storage Capacity to a Provider vDC
- Add a Resource Pool to a Provider vDC
- Configure Low Disk Space Warnings for a Provider vDC Datastore
- Send an Email Notification to Provider vDC Users
- Managing Organization vDCs
- Managing External Networks
- Managing Organization Networks
- Creating Organization Networks
- Configuring Network Services
- Configure DHCP for an Organization Network
- Enable the Firewall for an Organization Network
- Add a Firewall Rule for an Organization Network
- Reorder Firewall Rules for an Organization Network
- Enable IP Masquerading for an Organization Network
- Add External IP Addresses to an Organization Network
- Configure Port Forwarding for an Organization Network
- Configure IP Translation for an Organization Network
- Reorder NAT Mapping Rules for an Organization Network
- Enable Site-to-Site VPN for an Organization Network
- Create a VPN Tunnel Within an Organization
- Create a VPN Tunnel Between Organizations
- Create a VPN Tunnel to a Remote Network
- Enable Static Routing for an Organization Network
- Add Static Routes Between vApp Networks Routed to the Same Organization Network
- Add Static Routes Between vApp Networks Routed to Different Organization Networks
- Reset an Organization Network
- View vApps and vApp Templates That Use an Organization Network
- Delete an Organization Network
- View IP Use for an Organization Network
- Add IP Addresses to an Organization Network IP Pool
- Modify an Organization Network Name and Description
- Modify an Organization Network DNS Settings
- View Syslog Server Settings for an Organization Network
- Apply Syslog Server Settings to an Organization Network
- Managing Network Pools
- Managing Cloud Cells
- Managing Provider vDCs
- Managing vSphere Resources
- Managing Organizations
- Enable or Disable an Organization
- Delete an Organization
- Modify an Organization Name
- Modify an Organization Full Name and Description
- Modify Organization LDAP Options
- Modify Organization Catalog Publishing Policy
- Modify Organization Email Preferences
- Modify Organization Lease, Quota, and Limit Settings
- Add a Catalog to an Organization
- Managing Organization Resources
- Managing Organization Users and Groups
- Managing Organization vApps and Virtual Machines
- Managing System Administrators and Roles
- Add a System Administrator
- Import a System Administrator
- Enable or Disable a System Administrator
- Delete a System Administrator
- Edit System Administrator Profile and Contact Information
- Send an Email Notification to Users
- Delete a System Administrator Who Lost Access to the System
- Import an LDAP Group
- Delete an LDAP Group
- Change an LDAP Group Description
- Roles and Rights
- Create a Role
- Copy a Role
- Edit a Role
- Delete a Role
- Managing System Settings
- Modify General System Settings
- General System Settings
- Configure SMTP Settings
- Configure System Notification Settings
- Configuring Blocking Tasks and Notifications
- Configuring the System LDAP Settings
- Customize the vCloud Director Client UI
- Configure the Public Web URL
- Configure the Public Console Proxy Address
- Configure the Public REST API Base URL
- Configure the Account Lockout Policy
- Monitoring vCloud Director
- Roles and Rights
- Index
d Select an internal port.
e
Select a protocol for the type of traffic to forward.
f Click OK.
5 Click OK.
Configure IP Translation for an Organization Network
You can configure certain organization networks to provide IP tanslation.
When you add a new IP translation rule to an organization network, it appears at the bottom of the NAT
mapping rule list. For information about how to set the order in which NAT mapping rules are enforced, see
“Reorder NAT Mapping Rules for an Organization Network,” on page 57.
When you create an IP translation rule for a network, vCloud Director adds a DNAT and SNAT rule to the
vShield Edge associated with the network's port group. The DNAT rule translates an external IP address to an
internal IP address for inbound traffic. The SNAT rule translates an internal IP address to an external IP address
for outbound traffic. If the network is also using IP masquerade, the SNAT rule takes precedence.
Both system administrators and organization administrators can configure IP translation.
Prerequisites
An external NAT-routed organization network and an external IP address.
Procedure
1 Click the Manage & Monitor tab and click Organization Networks in the left pane.
2 Right-click the organization network name and select Configure Services.
3 Click the NAT Mapping tab and click Add.
4 Select IP Translation and configure the rule.
a Select an external IP address.
b Type the IP address of the destination virtual machine.
n
If the virtual machine is fenced, type its external IP address.
n
If the virtual machine is not fenced, type its IP address.
c Click OK.
5 Click OK.
Reorder NAT Mapping Rules for an Organization Network
NAT mapping rules are enforced in the order in which they appear in the NAT mapping list. An organization
administrator can change the order of the rules in the list.
When you add a new NAT mapping rule, such as IP translation or port forwarding. to an organization network,
the rule appears at the bottom of the NAT mapping rule list. To enforce the new rule before an existing rule,
reorder the rules.
Prerequisites
Verify that you have a routed organization network with two or more NAT mapping rules.
Procedure
1 Click the Manage & Monitor tab and click Organization Networks in the left pane.
2 Right-click the organization network name and select Configure Services.
Chapter 5 Managing Cloud Resources
VMware, Inc. 57