1.5
Table Of Contents
- vCloud Director Administrator's Guide
- Contents
- vCloud Director Administrator's Guide
- Getting Started with vCloud Director
- Adding Resources to vCloud Director
- Adding vSphere Resources
- Adding Cloud Resources
- Provider Virtual Datacenters
- Create a Provider Virtual Datacenter
- External Networks
- Add an External Network
- Network Pools
- Add a Network Pool That Is Backed by VLAN IDs
- Add a Network Pool That Is Backed by Cloud Isolated Networks
- Add a Network Pool That Is Backed by vSphere Port Groups
- Set the MTU for a Network Pool Backed by Cloud Isolated Networks
- Creating and Provisioning Organizations
- Creating a Published Catalog
- Managing Cloud Resources
- Managing Provider vDCs
- Enable or Disable a Provider vDC
- Delete a Provider vDC
- Modify a Provider vDC Name and Description
- Enable or Disable a Provider vDC Host
- Prepare or Unprepare a Provider vDC Host
- Upgrade an ESX/ESXi Host Agent for a Provider vDC Host
- Repair a Provider vDC ESX/ESXi Host
- Enable or Disable a Provider vDC Datastore
- Add Storage Capacity to a Provider vDC
- Add a Resource Pool to a Provider vDC
- Configure Low Disk Space Warnings for a Provider vDC Datastore
- Send an Email Notification to Provider vDC Users
- Managing Organization vDCs
- Managing External Networks
- Managing Organization Networks
- Creating Organization Networks
- Configuring Network Services
- Configure DHCP for an Organization Network
- Enable the Firewall for an Organization Network
- Add a Firewall Rule for an Organization Network
- Reorder Firewall Rules for an Organization Network
- Enable IP Masquerading for an Organization Network
- Add External IP Addresses to an Organization Network
- Configure Port Forwarding for an Organization Network
- Configure IP Translation for an Organization Network
- Reorder NAT Mapping Rules for an Organization Network
- Enable Site-to-Site VPN for an Organization Network
- Create a VPN Tunnel Within an Organization
- Create a VPN Tunnel Between Organizations
- Create a VPN Tunnel to a Remote Network
- Enable Static Routing for an Organization Network
- Add Static Routes Between vApp Networks Routed to the Same Organization Network
- Add Static Routes Between vApp Networks Routed to Different Organization Networks
- Reset an Organization Network
- View vApps and vApp Templates That Use an Organization Network
- Delete an Organization Network
- View IP Use for an Organization Network
- Add IP Addresses to an Organization Network IP Pool
- Modify an Organization Network Name and Description
- Modify an Organization Network DNS Settings
- View Syslog Server Settings for an Organization Network
- Apply Syslog Server Settings to an Organization Network
- Managing Network Pools
- Managing Cloud Cells
- Managing Provider vDCs
- Managing vSphere Resources
- Managing Organizations
- Enable or Disable an Organization
- Delete an Organization
- Modify an Organization Name
- Modify an Organization Full Name and Description
- Modify Organization LDAP Options
- Modify Organization Catalog Publishing Policy
- Modify Organization Email Preferences
- Modify Organization Lease, Quota, and Limit Settings
- Add a Catalog to an Organization
- Managing Organization Resources
- Managing Organization Users and Groups
- Managing Organization vApps and Virtual Machines
- Managing System Administrators and Roles
- Add a System Administrator
- Import a System Administrator
- Enable or Disable a System Administrator
- Delete a System Administrator
- Edit System Administrator Profile and Contact Information
- Send an Email Notification to Users
- Delete a System Administrator Who Lost Access to the System
- Import an LDAP Group
- Delete an LDAP Group
- Change an LDAP Group Description
- Roles and Rights
- Create a Role
- Copy a Role
- Edit a Role
- Delete a Role
- Managing System Settings
- Modify General System Settings
- General System Settings
- Configure SMTP Settings
- Configure System Notification Settings
- Configuring Blocking Tasks and Notifications
- Configuring the System LDAP Settings
- Customize the vCloud Director Client UI
- Configure the Public Web URL
- Configure the Public Console Proxy Address
- Configure the Public REST API Base URL
- Configure the Account Lockout Policy
- Monitoring vCloud Director
- Roles and Rights
- Index
3 Click the NAT Mapping tab.
4
Click and drag the rules to establish the order in which the rules are applied.
5 Click OK.
Enable Site-to-Site VPN for an Organization Network
You can enable site-to-site VPN for an organization network and then create a secure tunnel to another network.
vCloud Director supports site-to-site VPN between organization networks in the same organization,
organization networks in different organizations (including organization networks in different instances of
vCloud Director), and remote networks.
Both system administrators and organization administrators can enable site-to-site VPN.
Prerequisites
n
An external NAT-routed organization network.
n
vShield Manager 5.0.
Procedure
1 Click the Manage & Monitor tab and click Organization Networks in the left pane.
2 Right-click the organization network name and select Configure Services.
3 Click the Site-to-Site VPN tab and select Enable site-to-site VPN.
4 (Optional) Type a public IP address.
If the external network to which the organization network is routed is behind a NAT device, you must
provide a publicly accessible IP address that faces the Internet.
5 Click OK.
What to do next
Create a VPN tunnel to another network.
Create a VPN Tunnel Within an Organization
You can create a VPN tunnel between two organizations networks in the same organization.
Both system administrators and organization administrators can create VPN tunnels.
If there is a firewall between the tunnel endpoints, you must configure it to allow the following IP protocols
and UDP ports:
n
IP Protocol ID 50 (ESP)
n
IP Protocol ID 51 (AH)
n
UDP Port 500 (IKE)
n
UDP Port 4500
Prerequisites
n
At least two external NAT-routed organization networks with non-overlapping IP subnets and site-to-site
VPN enabled on both networks.
n
vShield Manager 5.0.
Procedure
1 Click the Manage & Monitor tab and click Organization Networks in the left pane.
vCloud Director Administrator's Guide
58 VMware, Inc.