Create IP sets for all management applications in the management clusters. You use the IP sets later to create security groups for use with the distributed firewall rules.

About this task

You perform this procedure multiple times to configure all of the necessary IP sets. You allocate one IP set per group of applications. For applications that are load balanced include their VIP in the IP Set.

Table 1. IP Sets for the Management Clusters Components in the SDDC

Name

IP Addresses

Site Recovery Manager

Site-Recovery-Manger_IP's

Platform Services Controller Instances

Platform-Service-Controller_IP's

vCenter Server Instances

vCenter-Server_IP's

vSphere Replication

vSphere-Replication_IP's

vRealize Automation Appliances

vRealize-Automation-Appliances_IP's

vRealize Automation Windows

vRealize-Automation-Windows _IP's

vRealize Automation Proxy Agents

vRealize-Automation-Proxy-Agents-IP's

vRealize Orchestrator

vRealize-Orchestrtor_IP's

vRealize Business Server

vRealize-Business_IP

vRealize Business Data Collector

vRealize-Business-Data-Collector_IP's

vSphere Data Protection

vSphere-Data-Protection_IP's

vRealize Operations Manager

vRealize-Operations-Manager_IP's

vRealize Operations Manager Remote Collectors

vRealize-Operations-Manager-Remote-Collectors_IP's

vRealize Log Insight

vRealize-Log-Insight_IP's

Update Manager Download Service

UMDS_IP's

SDDC

Management-VLAN_Subnets, Management-VXLAN_Subnets

Administrators

vDS-Mgmt-Ext-Management_Subnet

Procedure

  1. Log in to vCenter Server by using the vSphere Web Client.
    1. Open a Web browser and go to https://mgmt01vc01.sfo01.rainpole.local/vsphere-client.
    2. Log in using the following credentials.

      Setting

      Value

      User name

      administrator@vsphere.local

      Password

      vsphere_admin_password

  2. Create an IP set for Site Recovery Manger.
    1. In the Navigator, click Networking & Security.
    2. Click NSX Managers and select the 172.16.11.65 instance.
    3. Click Manage, click Grouping Objects, and click IP Sets.
    4. Click the Add icon.
    5. In the New  IP Set dialog box, configure the values for the IP set that you are adding, and click OK.

      For all IP sets that you configure, select the Mark this object for Universal Synchronization check box.

      Setting

      Value

      Name

      Site Recovery Manager

      IP Addresses

      172.16.11.124,172.17.11.124

      Mark this object for Universal Synchronization

      Selected





  3. Repeat this procedure to create IP sets for all of the remaining components.