VMware NSX

Premise that I have never used air vCloud but used for years AWS.

Before start to evaluate air VCloud for a test I need an answer to this question:

SCENARIO: distribute tens of vm vm where each is isolated from the others, it shares the same gateway, and all reside on the same LAN.

I read this document vchs_networking_guide.pdf and I don't find any solution for this problem.

It's possible on air vCloud this architecture?

Hi,

You should use NSX instead of VCNS. NSX comes with DFW functionality and provide FW per virtual NIC !

You should be able to isolate your VM, even in a single subnet as you need.

Take a look at the NSX Network virtualization design guide (check this link out : VMware® NSX for vSphere Network Virtualization Design Guide ver 3.0)

Thank  for your comment!!

I can use NSX inside IaaS vmware air vCloud?

In the DEDICATED CLOUD or in  the VIRTUAL PRIVATE CLOUD ?

Hi,

Actually i only work with vCloud Director and do not know vCloud Air.

However, in my opinion with NSX Distributed FW functionality, only VM NIC matter. You can use DFW without any Cloud solution !

Whatever product you will use (vCloud, vRA or any other) you will need to :

• Prepare (install NSX vibs on) all hosts that will execute VM to isolate
• Think about using Security group to make your administration easier
• Of course, try to automate all that

‌NSX distributed firewall capabilities are available in vCliud Air Dedicated with Advanced Networking services add-on. 

You should find other information by browsing vCloud Architecture Toolkit for vCAT-SP