Step by Step Configuration of VMware Cloud on AWS
Deploying A Software Defined Data Centre (SDDC)
Deploying SDDC to host your data center workload provides a simple control panel, with this you can manage securely your applications running on both private and public cloud. VMWare AWS Centralizes and provides clear visibility to your data center. When you deploy A SDDC, IN VMware AWS VMware creates and manages Virtual Private Cloud.
i. Sign in to your VMware Cloud Services, using your correct VMware credentials, then click Next.
Fig 2. VMware Cloud Services Login Page
ii. The below is the console landing page screen is displayed.
Fig 3. VMware Clouds Services Landing Page
iii. Click Open in VMware Cloud on AWS tab.
Fig 4. VMware Cloud on AWS
iv. The below page is displayed, Select Create SDDC.
Fig 5. Creating an SDDC Page
v. The below page is displayed, connect to your AWS Account as a first step, Click Next.
vi. Select AWS account from the drop-down. Connect to an AWS account or existing account
vii. Open AWS Console select CloudFormation. A new page is displayed.
viii. Click Create Stack, acknowledge the message and click Create. Monitor progress from the console.
Fig 6. Connecting to AWS Account
ix. Specify your SDDC Properties as below, specify AWS Region and SDDC Name, number of hosts, then click Next:
Fig 7. SDDC Properties
x. Configure your management Network. Define the CIDR range for the management network
Enter IP address Range in CIDR Block. Click Deploy SDDC.
Note: if you have plans to connect your SDDC to an on-prem data center the IP address should be different to avoid IP conflict. Maximum host SDDC can have is dependent on the size of the CIDR block you specify.
Fig 8. Configure Network
xi. SDDC Deployment configuration in progress…
Fig 9. SDDC Deployment process
xii. Upon SDDC Deployment completion, the default management page is displayed.
Fig 10. SDDC Default management page
xiii. When you click to view details, the below page is displayed. It is the SDDC default management page:
- Summary tab enables you View CPU Memory and Storage information.
- Network tab provides a detailed diagram of your network configuration Connection
- Info: gives you access to your vSphere web client, vCentre server and vCentre Server API
- Support tab primarily for support.
Fig 11. Configuration Summary
Management Gateway Firewall Rules and DNS
Network optimization is one of the significant benefits of using VMWare Cloud on AWS. It enables operational visibility compliance of workloads and control of your datacenter.
SDDC Configuration is not complete without the Network configurations. Network configuration involves:
Fig 12. Network connection Overview
i. Configuring Management Gateway Firewall Rules
Deny default in the management gateway sets all traffic firewall rule (inbound and outbound). Configure additional rules to allow traffic as needed. For this article, we shall configure a firewall rule allowing access to vCenter over the internet.
When you click on open vCentre, you receive the prompt below to configure your gateway firewall rule.Access to your vCentre is through allowing traffic in the management gateway by creating a firewall rule. Click on Firewall Rule. Note: One can configure as many firewall rules on a need basis.
Fig 13. vCentre prompt to configure a firewall rule
You are automatically redirected to Firewall rules tab, under Network in the Management gateway console.
Configure a firewall rule to enable vCentre at this point, as below:
- Enter the Rule name, Action: Ensure Allow is selected,
- Source (this is the public IP of your management gateway that can be obtained from your network diagram, see second figure below.
- The destination set to vCentre,
- Service HTTPS (TCP 443)
- Ports: 443
Fig 14. Management Gateway Firewall rule
At this point, your firewall rule to enable vCentre access is successfully configured.
ii. Configuring management Gateway DNS
1. On the Network Tab
2. Click the arrow next to DNS to Expand
3. Click Edit settings
Fig 15. DNS Configuration
4. Enter your preferred DNS Server 1 and DNS Server 2 settings, as in our case 18.104.22.168 and 22.214.171.124, then Save.
Fig 16. DNS Configuration
This step completes the management Gateway Configuration steps.
Note: VMWare cloud on AWS provides connectivity information for your vCentre server, the authentication credentials, and the PowerCLI Connection information, can be found on the connection info tab as shown below:
Fig 17. Connection Information
Your Cloud environment is configured at this point, on the Summary tab when you click on Open vCentre, your environment setup on AWS is displayed as below.
The enterprise capabilities of the product are visible as shown, i.e., the ESXi, NSX, and Storage
Fig 18. vCentre Overview