VMware Cloud Community
svc
Contributor
Contributor
‎09-20-2018 11:12 PM

Different Permissions for Usage of certain VLANs

Ahoi anybody!

We have vCenter Server 6.7 and four ESXi 6.5 hosts.

We would like to let users change the VLAN the network adapter of a virtual machine is connected to. This is the easy one we have accomplished already.

How can we manage that users or virtual machines are only allowed to switch between certain VLANs?

This means: User A is allowed to switch between VLAN1, VLAN2 and VLAN4

User B is allowed to switch between VLAN1

User C is allowed to use VLAN1 and VLAN5

or

Virtual machine A is allowed to switch between VLAN1, VLAN2 and VLAN4

Virtual machine B is allowed to switch between VLAN1

Virtual machine C is allowed to use VLAN1 and VLAN5

Any hint or help would appreciated!

Thanx in advance

Martin

Tags (2)
Reply
0 Kudos
3 Replies
MikeStoica
Expert
Expert
‎09-21-2018 12:57 AM

As far as I know, you can't limit a user to change only between some specific VLANs.

Reply
0 Kudos
SupreetK
Commander
Commander
‎09-21-2018 01:30 AM

I think you can achieve this by using 'Network Folder'. Create one network folder for each vLAN and assign the permissions accordingly on the folders. You might have to play around a bit here Smiley Happy - Create a Folder

Cheers,

Supreet

Reply
0 Kudos
LokeshHK
VMware Employee
VMware Employee
‎09-21-2018 03:01 AM

I think you can achieve this at VM level.

Create dvswitch.

Create a port group under it.

Assign VLAN trunk range to port group( as shown in screen shot)

pastedImage_0.png

Repeat the steps for different VLAN's as per your requirement.

Then assign these port groups to VM.

Hope this is what you are looking for.

Regards

Lokesh

Reply
0 Kudos