VCP-IaaS Study Notes: Section 4.3

This is Section 4.3 in the VCP-IaaS blueprint Guide 1.2. The rest of the (completed) sections can be found here

Identify vApp Network types

  • The virtual machines in a vApp can connect to vApp networks (isolated or routed) and organization network (direct or fenced).
  • Isolated:
    • A vApp network can be isolated by selecting None in the Connection drop-down menu. An isolated vApp network is totally contained within the vApp.
  • Routed:
    • You can also route a vApp network to an organization network to provide connectivity to virtual machines outside of the vApp. For routed vApp networks, you can configure network services, such as a firewall and static routing.
  • Direct:
    • Connected directly to a Organization network.
  • Fenced:
    • Takes a direct network and turns it into a Routed network. VMs still have Organization IPs but a vShield Edge device is place in between the VMs and the Organization network.
  • Nice blog-post by Jake Robinson at geekafterfive.com about vApp networks is a recommended read.

Explain the purpose and use cases for vApp networks

  • A network visible within a vApp. It can be connected to other vApp networks within an organization and use a direct or routed connection, or it can be an internal network visible only to virtual machines within the vApp.
  • A vApp network is contained within a vApp and allows virtual machines in the vApp to communicate with each other. You can connect a vApp network to an organization network to allow the vApp to communicate with other vApps in the organization and outside of the organization, if the organization network is connected to an external network.

Explain the relationship between vApp networks and vShield Edge devices

  • Isolated
    • Will create a vShield Edge device to handle DHCP services.
  • Routed:
    • Will use a vShield Edge device to handel routing.
  • Direct-Fenced:
    • Will use a vShield Edge device to “fence” IPs from other VM’s

Create/Modify/Delete a direct vApp network

  • Create
    • Add an organization network to a vApp to make the network available to virtual machines in the vApp.
      • Click My Cloud.
      • In the left pane, click vApps, right-click, and select Open.
      • On the Networking tab, select the Show networking details check box.
      • Click the Add Network button.
      • Select Organization Network and click Next.
      • Select an organization network and click Finish.
        • vCloud Director adds the organization network and displays it in the network list.
        • (Optional) Select the Fence vApp check box.
          • This changes the connection from Direct to Fenced for all organization networks in the vApp. Fencing allows identical virtual machines in different vApps to be powered on without conflict by isolating the MAC and IP addresses of the virtual machines.
          • Click Apply.
  • Modify
    • Reset your vApp Network
      • If the network services, such as DHCP settings, firewall settings, and so on, that are associated with a vApp network are not working as expected, an organization administrator can reset the network. Network services are not available during the reset.
        • Click My Cloud.
        • In the left pane, click vApps.
        • Select a vApp, right-click, and select Open.
        • On the Networking tab, select the Show networking details check box.
        • Select a vApp network, right-click, and select Reset Network.
        • Click Yes.
        • Modify Network Properties
          • Select Administration.
          • Select Cloud Resources > Networks.
          • Select a network, right-click, and select Properties.
            • You can modify the name, description, and portions of the network specification.
            • Modify the relevant properties and click OK.
            • Click Apply.
            • Configure IP Address Persistance
              • By default, when you stop a running vApp or power off a virtual machine, vCloud Director releases any IP and MAC addresses the virtual machines were using. You can configure a vApp to retain the network addresses of its virtual machines until the vApp, VM, or network is deleted. Static routing relies on the IP addresses of the virtual machines and virtual routers in a vApp. For vApps that use static routing, enable IP persistence to make sure that static routes to and from the vApp remain valid.
                • Click My Cloud.
                • In the left pane, selectvApps.
                • Select a vApp, right-click, and select Open.
                • On the Networking tab, select the Always use assigned IP addresses…check box and click Apply.
  • Delete
    • Prerequisites
      • The vApp is stopped and no virtual machines in the vApp are connected to the network.
    • Procedure
      • Click My Cloud.
      • In the left pane, selectvApps.
      • Select a vApp, right-click, and select Open.
      • On the Networking tab, select the Show networking details check box.
      • Right-click a network in the list and select Delete.
      • Click Apply.

Create/Modify/Delete a NAT-routed vApp network

  • Create
    • Click My Cloud.
    • In the left pane, click vApps, right-click, and select Open.
    • On the Networking tab, select the Show networking details check box.
    • Click the Add Network button.
    • Select vApp Network and click Next.
    • Type the network specifications and click Next.
    • Type a network name and optional description and click Next.
    • Review your vApp network settings and click Finish.
      • vCloud Director creates an isolated vApp network and displays it in the network list.
    • (Optional) Select an organization network in the Connection drop-down menu.
      • This routes the vApp network to the organization network.
  • Modify
    • Same as direct vApp network.
  • Delete
    • Same as direct vApp network.

Create/Modify/Delete an internal vApp network

  • Create
    • Click My Cloud.
    • In the left pane, click vApps, right-click, and select Open.
    • On the Networking tab, select the Show networking details check box.
    • Click the Add Network button.
    • Select vApp Network and click Next.
    • Type the network specifications and click Next.
    • Type a network name and optional description and click Next.
    • Review your vApp network settings and click Finish.
      • vCloud Director creates an isolated vApp network and displays it in the network list.
  • Modify
    • Same as direct vApp network.
  • Delete
    • Same as direct vApp network.

Troubleshoot vApp networks using the visual mapping tool

  • You can access and display the networks in a vApp.
    • Procedure
      • Click My Cloud.
      • In the left pane, click vApps.
      • Select a vApp, right-click, and select Open.
      • Click on the Networking tab.
      • Select the Show networking details to display details about each network.
  • A vApp diagram provides a graphical viewof the virtual machines and networks in a vApp.
    • Procedure
      • Click My Cloud.
      • On the vApps page, select a vApp, right-click, and select Open.
      • Click the vApp Diagram tab.
      • The vApp diagram is displayed.

Leave a Reply

Your email address will not be published. Required fields are marked *