In my vSphere infrastructure I have two ESXi 6 host clustered, a total 21 virtual machines all on the same vm port group VLAN12. So now what I am trying to do it configure lets say virtual machines 01,02, and 03 to only communicate with one another and not the other virtual machines. I also have to consider that these VMs are using the domain controller for authentication, etc so that also seems to complicate things. From my understanding I would need something like NSX and it's security policy features the accomplish this. Unfortunately that is not an option. Any advice would be greatly appreciated
Thanks!
You can use Private VLAN to accomplish that, see additional information about how private VLAN works: https://www.vladan.fr/private-vlans-vmware-vsphere/
Hi Richardson,
Unfortunately we are only licensed for Enterprise not Enterprise Plus. I think I may have to spin up a new test lab with a couple of R710's I have sitting in the back.
Depending on your network switches, you could always setup a separate VLAN and subnet. Allow it to communicate with the subnet where AD is located for authentication, but use ACLs to restrict access.