Installing the VMware vShield Edge Appliance

Follow

Summary

This Knowledge base article provides the procedure to install the VMware vShield Edge Appliance.


More Information

Data Centers require firewall protection to prevent unauthorized intrusion and access to user components. To prevent intrusion, your Data Center incorporates VMware vShield Edge Appliance to protect your network and data.

Procedure

  1. Login to your Partner Portal at https://portal.vpdc.us/User/Login
  2. Click Accounts and then click your account under Account Name .
  3. At the bottom of your account page, click on the drop-down at the right and select vCloud Suite as shown in the image below.

    Partner Portal

  4. Under the pCloud Instance ID column, click on the pCloud Instance where you want to deploy/install an vShield Egde Appliance.
  5. Use the VPN Access Information to connect to your pCloud.
    1. Open the SSL VPN Portal address in Web Browser.
    2. Enter credentials with username: cloudadminvpn and password will your SSLVPN Password mentioned under the VPN Access Information section.
    3. Download and Install the VMware SSL VPN Client Plus software.
    4. Run the VMware SSL VPN Client Plus login using the same credentials used in previously in step 2 above.
  6. Once you are connected via SSL, login using the  vShield Manager URL.
  7. Select View: Host and Clusters
  8. Under Datacenters, select your Datacenter, for example pCloud-0000XX.
  9. In the working area, select the Network Virtualization " tab and click Edges .
  10. Click the green + icon to Add Edge
    1. Name and Description
      1. Name : Customer1-Edge
      2. Tenant : Customer1-Edge
    2. CLI Credentials
      1. User Name : admin
      2. Password : *****
      3. Check : Enable SSH access
    3. Edge Appliances
      1. Select the Appliance Size : Compact
      2. Check: Enable auto rule generation
      3. Rule Priority : High
      4. Under the Edge Appliance section, click + to add and specify the placement of the Edge Appliance as follows:

        Add Edge Appliance dialog

        Note: Make sure that your customer/tenant Resource Pool, Datastore and VM Folder are already created in vCenter.
      5. Next, we will configure WAN1 and a LAN1 interfaces for our Edge Appliance. Click the + sign to first add the WAN1 interface.
      1. Name: WAN1
      2. Type: Uplink
      3. Connected To: click Select, under the Distributed Portgroup, select your vDPWXXXAlias portgroup.

        Note: Make sure that after selecting the Connectivity Status changes to Connected.
      4. Under Configured Subnets , add the WAN1 interface IP Address and Subnet Mask . For Example, if you have been assigned a WAN IP space of 74.123.87.160/29, then your Primary IP will be the second usable WAN IP of the block, for example 74.123.87.162, because the first usable WAN IP is assigned to the Datacenter Main Firewall acting as a Gateway IP of your Edge Appliance. To find out about your assigned WAN IP Space, Login to your Partner Portal at https://portal.vpdc.us/User/Login . Click Account and open your Account Name . At the bottom of the account page, click IP Space .

        Add Subnet dialog
      5. Click Save and then click Add .

        Important: Beside adding the Primary IP, it is highly recommended to add the remaining WAN IP addresses of the assigned WAN block, which in our case will be 74.123.87.163, 74.123.87.164, 74.123.87.165 and 74.123.87.166

        Configure Subnets dialog

        Note: You can always add WAN IP addresses to your WAN1 interface under Configure -> Interfaces , while managing your Edge Appliance.
      6. You have finished configuring the WAN1 interface of the Edge Appliance.
  11. Now, we will add the LAN1 interface of the Edge Appliance.
    1. Click the + sign to first add the LAN1 interface
      1. Name: LAN1
      2. Type: Internal
      3. Connected To: click Select, under the Virtual Wire, select "Customer1-vWire" VirtualWire.

        Note: Make sure that after selecting the Connectivity Status changes to Connected.
      4. Under Configured Subnets, add LAN1 interface IP Address and Subnet Mask . For Example, you decide to use LAN IP Space as 172.16.51.0/24

        Add Subnet dialog

      5. Click Save and then click Add .
    2. You have finished configuring the LAN1 interface of the Edge Appliance.
  12. Specify the Default Gateway, which will be the first usable WAN IP address of your assigned WAN Block. For Example, if you have been assigned a WAN IP space of 74.123.87.160/29, then the first usable WAN IP address will be 74.123.87.161.
    1. Check : Configure Default Gateway
    2. vNIC: Select WAN1
    3. Gateway IP: 74.123.87.161
    4. MTU: 1500 Click Next.
  13. Firewall and HA: leave the default settings and click Next .
  14. View and note down the Summary and click Finish .


Applies To

VMware vShield Edge Appliance


Related Information

None

KBID-2895

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.