An IP set is a group of IP addresses that you can create at an organization virtual data center level. You can use an IP set as the source or destination in a firewall rule or in a DHCP relay configuration.

You create an IP set by using the Grouping Objects page of the vCloud Director tenant portal. The Grouping Objects page is available on both the Services and Edge Gateway screens.

Procedure

  1. Open the Grouping Objects page.
    Option Action
    Open through Edge Gateway Services
    1. Navigate to Networking > Edges.
    2. Select the edge gateway to edit, and click Configure Services.
    3. Click Grouping Objects.
    Open through Security Services
    1. Navigate to Networking > Security.
    2. Select the security service to edit, and click Configure Services.
    3. Click Grouping Objects.
  2. Click the IP Sets tab.
    The IP sets that are already defined are displayed on the screen.
  3. To add an IP set, click the Create (Create button) button.
  4. Enter a name, optionally, a description for the IP set, and the IP addresses to be included in the set.
  5. (Optional) If you are specifying the IP set using the Grouping Objects page on the Services screen, use the Inheritance toggle to enable inheritance and allow visibility at the underlying scopes.
    Inheritance is enabled by default.
  6. To save this IP set, click Keep.

Results

The new IP set is available for selection as the source or destination in firewall rules or in DHCP relay configurations.