6.2
Table Of Contents
- IaaS Integration for Multi-Machine Services
- Contents
- IaaS Integration for Multi-Machine Services
- Introduction to Multi-Machine Services
- Configuring Network and Security Integration
- Configuring vRealize Orchestrator Endpoints
- Create a vSphere Endpoint for Networking and Security Virtualization
- Run the Enable Security Policy Support for Overlapping Subnets Workflow in vRealize Orchestrator
- Creating a Network Profile
- Configuring a Reservation for Network and Security Virtualization
- Optional Configurations for Multi-Machine Services
- Creating Multi-Machine Blueprints
- Specifying Scripts for Multi-Machine Service Provisioning
- Specifying Custom Properties for Multi-Machine Services
- Blueprint Action Settings for Multi-Machine Services
- Create a Multi-Machine Blueprint
- Specify Blueprint Information for a Multi-Machine Blueprint
- Specify Build Information for a Multi-Machine Blueprint
- Specify Network Information for a Multi-Machine Blueprint
- Specify Scripting Information for a Multi-Machine Blueprint
- Add Multi-Machine Blueprint Custom Properties
- Specify Actions for Multi-Machine Blueprints
- Publish a Blueprint
- Configuring Multi-Machine Blueprints for Network and Security Virtualization
- Managing Multi-Machine Services
Adding Network Profiles to a Multi-Machine Blueprint
A tenant administrator or business group manager can create NAT, routed, and private network profiles
for a multi-machine blueprint, and assign those profiles to virtual network adapters in the same multi-
machine blueprint.
Tenant administrators and business group managers can create NAT and routed network profiles in multi-
machine blueprints, based on network profile templates and external network profiles that fabric
administrators create. Tenant administrators and business group managers can also create private
network profiles in multi-machine blueprints, but private network profiles do not use external network
profiles and do not require a template.
These network profiles determine network connectivity within application tiers and also between the
application and external networks. Depending on the network profile, the application can connect to
existing logical network objects such as routers and switches, or these objects might be dynamically
created to connect the applications.
Add a Private Network Profile to a Multi-Machine Blueprint
A tenant administrator or business group manager can add a private network profile to a multi-machine
blueprint, and assign the network profile to virtual network adapters in the multi-machine blueprint.
You use a private network profile when the application or network needs to be provisioned in isolation
from other applications and networks.
In this case, tiers or networks within the application can communicate with each other with routable
connections, but these tiers are not connected to external networks. Users can connect to the application
through console access only.
The most common use for a private network profile is for a multi-tier application where the application and
database tiers only need to communicate with each other, but do not need direct access from external
networks. Usually, the Web tier in this application is the routed or NAT type, to allow for external network
access.
Another use for this profile type is for performance testing, where a traffic-generating process can be
deployed in one of the application tiers to simulate user activity on the application. This use does not
require external network access.
When you create a private network profile for a multi-machine component, you can create it with or
without a template. You can change or reuse the template name because the network profile applies only
to the current multi-machine blueprint, and because the IP address space is isolated behind a logical
router gateway. IP addresses do not conflict by reusing private network profiles.
For descriptions of the values required when creating a private network profile, see Create a Private
Network Profile.
Prerequisites
n
Log in to the vRealize Automation console as a tenant administrator or business group manager.
IaaS Integration for Multi-Machine Services
VMware, Inc. 43