Read through the following checklist before activating Tanzu.

  • You must be logged into the VMC console as a user with a VMC service role of Administrator.
  • To qualify for Tanzu Kubernetes Grid activation, your SDDC must meet the following criteria:
    • Your SDDC must be running version 1.16 or later.
    • Your SDDC must have at least one conventional cluster with at least four hosts and no deployed customer workloads.
  • Ensure that the range of IP addresses that you choose for each CIDR block does not overlap the workload network address range of other Tanzu clusters in your SDDC, the SDDC Management or Compute networks, or your on-premises networks. For a complete list of IPv4 addresses reserved by VMware Cloud on Dell EMC, see Reserved Network Addresses. These CIDR blocks cannot be changed after you activate Tanzu Kubernetes Grid.
  • Your CIDR blocks must be in one of the "private address space" blocks defined by RFC 1918 (10.0.0.0/8, 172.16.0.0/12, or 192.168.0.0/16). CIDR blocks of size 16, 20, 23, or 26 are supported.
  • You must be ready with the following CIDR ranges.
    Service CIDR An abstract way to expose an application running on a set of Pods as a network service. Addresses allocated to Tanzu supervisor services. Cannot overlap with the Namespace Network CIDR, Ingress CIDR, or Egress CIDR.

    This CIDR should have a span of at least /23 to provide adequate capacity for your Tanzu Kubernetes Grid workloads. Consider a span of /16 or /12.
    Namespace Network CIDR (Pod CIDR) Addresses allocated to namespace segments. Cannot overlap with the SDDC Management or Compute subnets.

    This CIDR should have a span of at least /23 to provide adequate capacity for your Tanzu Kubernetes Grid workloads. Consider a span of /16 or /12.
    Ingress CIDR Inbound traffic through load-balancers to containers. Cannot overlap with the SDDC Management or Compute subnets.

    The system creates a NAT address from this pool for each Tanzu Kubernetes Grid namespace, so a span of /24 or /26 should be adequate.
    Egress CIDR SNATted outbound traffic from containers and guest clusters cannot overlap with the SDDC Management or Compute subnets.

    The system allocates an SNAT IP address from this pool for each Tanzu Kubernetes Grid namespace, so a span of /24 or /26 should be adequate.