Re: Isolate vm inside the same subnet

maxmonte73 · ‎01-07-2016

Premise that I have never used air vCloud but used for years AWS.

Before start to evaluate air VCloud for a test I need an answer to this question:

SCENARIO: distribute tens of vm vm where each is isolated from the others, it shares the same gateway, and all reside on the same LAN.

I read this document vchs_networking_guide.pdf and I don't find any solution for this problem.

It's possible on air vCloud this architecture?

aqwelea · ‎01-07-2016

Hi,

You should use NSX instead of VCNS. NSX comes with DFW functionality and provide FW per virtual NIC !

You should be able to isolate your VM, even in a single subnet as you need.

Take a look at the NSX Network virtualization design guide (check this link out : VMware® NSX for vSphere Network Virtualization Design Guide ver 3.0)

maxmonte73 · ‎01-07-2016

Thank for your comment!!

I can use NSX inside IaaS vmware air vCloud?

In the DEDICATED CLOUD or in the VIRTUAL PRIVATE CLOUD ?

aqwelea · ‎01-08-2016

Hi,

Actually i only work with vCloud Director and do not know vCloud Air.

However, in my opinion with NSX Distributed FW functionality, only VM NIC matter. You can use DFW without any Cloud solution !

Whatever product you will use (vCloud, vRA or any other) you will need to :

larsonm · ‎01-08-2016

‌NSX distributed firewall capabilities are available in vCliud Air Dedicated with Advanced Networking services add-on.

aqwelea · ‎01-08-2016

You should find other information by browsing vCloud Architecture Toolkit for vCAT-SP

Isolate vm inside the same subnet