Updated on: 11 March 2021

Current Release: VMware Cloud on AWS GovCloud (US) (SDDC Version 1.12v5) | 11 March 2021

VMware Cloud on AWS GovCloud is a highly secure environment that enables US Government customers to adopt cloud services while maintaining compliance with prevailing public sector and department of defense standards.  The VMware Cloud on AWS GovCloud roadmap follows the VMware Cloud on AWS Commercial roadmap while enabling a subset of features that are able to meet the strict security requirements of this region.

What's in the Release Notes

What's New 11 March 2021 (SDDC Version 1.12v5)

SDDC Version 1.12v5 released

  • Network Performance
    • This release provides improvements for i3en.metal network performance for north-south communication (approximately twice the performance compared to i3.metal) to the SDDC, as well as east-west communication within the SDDC. You can notice higher network throughput for your workloads driving TCP traffic and for UDP traffic across i3en edge nodes.
  • Increased Scale Attributes for NSX Distributed Firewall (DFW)
    • VMware Cloud on AWS supports higher scale attributes for NSX Distributed Firewall (DFW) for SDDCs running version 1.12 and higher. VMware Cloud on AWS SDDC now supports up to 40,000 DFW rules across all sections. Also, the number of security groups supported is now increased to 12,000 and the number of VMs per security group in the SDDC is increased to 1,800. The complete list of configuration maximums for Networking and Security can be found here.
  • Firewall
    • Advanced search and filtering capability in the UI - Users can search firewall rules using a number of criteria including rule ID, rule name, Group membership, source/ destination IP address, protocol, service, action and rule status.
    • Rule ID is now directly available in the UI.
  • Distributed Firewall
    • Time-based Scheduling of DFW Rules - Users can now schedule enforcement of specific rules for specific time intervals. This option can be accessed through the clock symbol in the UI.
    • Advanced search and filtering capability in the UI - Users can search firewall rules using a number of criteria including rule ID, rule name, Group membership, source/ destination IP address, protocol, service, action and rule status.
    • Rule ID is now directly available in the UI.
  • VPN
    • MSS Clamping is now supported for Policy-based/ Route-based VPN. This option allows the user to set the maximum segment size IPSec traffic to avoid fragmentation. VPN UI is streamlined to group together all required fields above the Advanced Parameters fold.
  • DHCP
    • Users can create custom DHCP profiles for DHCP Relay/ Server. DHCP server can be configured at Gateway (all segments) or Local (individual segment) level as well as Relay mode. Users can view DHCP Relay/ Server configuration stats under Tier-1 Gateways (CGW) tab in the UI.
  • Network Segments
    • Segment level metrics - Fine grained network stats are available at the individual segment level. Counters for packets transmitted/ received/ dropped are available via the UI. Users can view all related Groups where individual segment is referenced.
    • Segment Profiles - Users can view the segment profiles that apply to individual segments during segment creation. Users can set bindings for DHCP addresses.
    • Segments UI enhancement - Users can view all related Groups where the individual segment is referenced.

What's New 08 January 2021

VMware Site Recovery now Available

  • VMware Site Recovery is now available on VMware Cloud on AWS GovCloud (US) region. VMware Site Recovery for VMware Cloud on AWS GovCloud (US) enables US Public Sector agencies to protect and migrate their workloads to FedRAMP compliant AWS GovCloud region in the US. For more information, see VMware Site Recovery for VMware Cloud on AWS GovCloud.

What's New 02 September 2020 (SDDC Version 1.10v5) 

SDDC Version 1.10v5 released

  • Flexible vCenter Permissions during upgrades
    • Flexible vCenter permissions model for role-based access. Existing SDDCs that do not currently support flexible vCenter permissions will now get the feature as part of the next upgrade. This capability enables cloud administrators to create custom roles and assign more granular permissions to users and groups. These permissions can be assigned to users and groups globally or for specific vCenter objects.
  • Networking
    • Enhancements to DNS UI. Users can now enter the DNS server IP addresses in the DNS service section. Previously, users had to configure the server in the DNS zones section. Users can now insert a description to the DNS service, add tags and view stats on the DNS service section.
    • Resolved Issues:
      • This release resolves an issue with IP address range expansion, which caused the server to become overloaded, which in turn caused the API and UI to be unreachable.
  • i3en.metal instance type is now available

    • ​​​i3en.metal instances are now available for new SDDC and cluster deployments on VMware Cloud on AWS. These instances come with Intel Xeon Cascade Lake processors @2.5GHz, 96 vCPUs with hyper-threading enabled, 768 GiB memory & 45.84 TiB (50TB) raw storage capacity, with additional 6.55 TiB cache storage capacity. Additionally i3en instances include in-transit hardware encryption of east-west traffic for improved security.  I3en.metal hosts are FedRAMP High compliant and must be selected when deploying new SDDC’s that require FedRAMP High compliance.

 

check-circle-line exclamation-circle-line close-line
Scroll to top icon