When the required L2 VPN settings are configured, you can enable the L2 VPN service on the edge gateway.
Note: If HA is already configured on this edge gateway, ensure that the edge gateway has more than one internal interface configured on it. If only a single interface exists and that has already been used by the HA capability, the L2 VPN configuration on the same internal interface fails.
Prerequisites
- If this edge gateway is an L2 VPN server, the destination NSX edge, verify that the required L2 VPN server settings and at least one L2 VPN peer site are configured. See the steps described in Configure the NSX Data Center for vSphere Edge Gateway as an L2 VPN Server in the VMware Cloud Director Tenant Portal.
- If this edge gateway is an L2 VPN client, the source NSX edge, verify that the L2 VPN client settings are configured. See the steps described in Configure the NSX Data Center for vSphere Edge Gateway as an L2 VPN Client in the VMware Cloud Director Tenant Portal.
- Navigate to the L2 VPN Screen Using Your VMware Cloud Director Tenant Portal.
Procedure
- On the L2 VPN tab, click the Enable toggle.
- Click Save changes.
Results
The L2 VPN service of the edge gateway becomes active.
What to do next
Create NAT or firewall rules on the Internet-facing firewall side to enable the L2 VPN server to connect to the L2 VPN client.