VMware Cloud Community
eclarkcci
Contributor
Contributor
‎10-20-2020 10:32 AM

Not sure it's possible to update via alternate link in vCenter/Esxi

Id like to update vCenter and ESXI without having a gateway on my Management Network as denoted in vCenter. Instead I would like to update using the second nic connected to vCenter which does have a gateway and allows only vCenter updates though.

My lab is air gapped. I dont want to expose management services to the public internet. I will only use this other NIC1 as the update NIC, using vCenter as a ?proxy? tot he ESXI hosts.

If I need to I can put a VMK on the ESXI hosts to reach the public as well, but would rather not put Management services on that VMK. This would allow my system to be connected from the Public Network, defeating the idea of Air Gapped - I will only use this second connection while updating vCenter and ESXi hosts.

NIC0 - Management Network - No Gateway

NIC1 - DHCP with access to Internet (no management services assigned)

Is this possible? Am I missing something?

Maybe I should just make a soft proxy vm or something.

Thanks,

Eric

2 Replies
sjesse
Leadership
Leadership
‎10-20-2020 10:47 AM

Pretty sure thats not possible, at the very least till the lastest versions(7.0 and higher I think) when they added multi nic support. You should download the iso instead and mount it to the appliance and upgrade vcenter that way, and you can download patches from vmware and upload them to update manager / lifecylce manager.

eclarkcci
Contributor
Contributor
‎10-20-2020 10:52 AM

Thank you! You saved me a bunch of time! Smiley Happy Smiley Happy

Much appreciated,

Eric

0 Kudos