1.5
Table Of Contents
- vCloud API Programming Guide
- Contents
- vCloud API Programming Guide
- About the VMware vCloud API
- Hello vCloud: A Simplified RESTful Workflow
- Exploring a Cloud
- Provisioning an Organization with vApps, Templates, and Media
- Deploying and Operating vApps
- Summary of vCloud API vApp and Virtual Machine Operations Requests
- Create a vApp From a Template
- Compose a vApp From Existing Virtual Machines
- Recompose a vApp to Add or Remove Virtual Machines
- Operate a vApp
- Configuring vApps and Virtual Machines
- Retrieve the Configuration Links for a vApp
- Retrieve the Configuration Links for a Virtual Machine
- Retrieve or Update a Modifiable Section
- Update a vApp Network Configuration
- Update the NetworkConnectionSection of a Virtual Machine
- Retrieve or Modify the CPU Configuration of a Virtual Machine
- Retrieve or Modify the GuestCustomizationSection of a Virtual Machine
- Retrieve or Modify ProductSection Elements
- Retrieve or Modify Groups of Related Sections in a Virtual Machine
- Retrieve or Modify the Hard Disk Configuration of a Virtual Machine
- Creating, Provisioning, and Managing Organizations
- Summary of Administrative Requests
- Administrator Credentials and Privileges
- Organization Administration
- Network Administration
- vDC Administration
- Catalog Administration
- User and Group Administration
- Working With Roles and Rights
- Controlling Access to vApps and Catalogs
- Using vCloud API Extensions to Provision and Manage a Cloud
- Working With Object Metadata
- Using the Query Service
- Configuring and Using Blocking Tasks and Notifications
- XML Representations in the vCloud API
- Index
Table 6-2. Types of Organization Networks and Their Requirements
Organization Network
Type Description Requirements
External organization
network - direct connection
Accessible by multiple organizations. Virtual machines
belonging to different organizations can connect to and
see traffic on this network.
This network provides direct layer 2 connectivity to
machines outside of the organization. Machines outside
of this organization can connect to machines within the
organization directly.
External network
External organization
network - NAT-routed
connection
Accessible only by this organization. Only virtual
machines within this organization can connect to this
network.
This network also provides controlled access to an
external network. System administrators and
organization administrators can configure network
address translation (NAT) and firewall settings to make
specific virtual machines accessible from the external
network.
External network and network
pool
Internal organization
network
Accessible only by this organization. Only virtual
machines within this organization can connect to and
see traffic on this network.
This network provides an organization with an isolated,
private network that multiple vApps can connect to.
This network provides no connectivity to machines
outside this organization. Machines outside of this
organization have no connectivity to machines within
the organization.
Network pool
Organization networks require the support of one or both of the following objects, which must be created by
a system administrator:
n
External networks, which are backed by vSphere portgroup, VLAN, or DVswitch objects.
n
Network Pools, which are backed by vSphere DVswitch objects.
After creating the necessary external networks and network pools, a system administrator can create
organization networks based on either or both types of objects. The configuration of an organization network
is specified in an OrgNetwork element, and includes the following information:
n
A name for the network, specified in the name attribute of the OrgNetwork element.
n
A Configuration element that specifies network configuration details.
n
For routed and directly connected networks, the ParentNetwork element contains a reference to the
external network that the organization network connects to. The FenceMode element controls how the
two networks connect. Specify a FenceMode of bridged for a direct connection to the parent network,
or natRouted to specify a routed connection controlled by network Features such as a NatService or
FirewallService. If you want the organization network to be isolated, with no external connection,
omit the ParentNetwork element and specify the FenceMode as isolated.
n
The Features element defines features of the network. See “Network Services,” on page 121.
n
Additional modifiable elements like IpScope and RetainNetInfoAcrossDeployments, and read-only
elements such as SyslogServerSettings and RouterInfo. See the schema reference for more
information about the type and scope of these elements..
n
Routed or isolated organization networks must include a NetworkPool element.
vCloud API Programming Guide
120 VMware, Inc.