For secure access to the UI and API of vRealize Suite Lifecycle Manager, you place the virtual appliance in the shared cross-region application virtual network.

Networking Design of the vRealize Suite Lifecycle Manager Deployment

For secure access and isolation, you deploy the vRealize Suite Lifecycle Manager virtual appliance in the existing application virtual network Mgmt-xRegion01-VXLAN.

Figure 1. Networking Design of the vRealize Suite Lifecycle Manager Deployment for Consolidated SDDC


The virtual appliance of vRealize Lifecycle Manager is connected to the application virtual network that supports secure access to the application UI and API, and can be used for failover if you scale this design out of a dual-region SDDC

This networking design has the following features:

  • vRealize Suite Lifecycle Manager has routed access to the vSphere management network through the NSX Universal Distributed Logical Router.

  • Routing to the vSphere management network, logical networks, and external networks is dynamic, and is based on the Border Gateway Protocol (BGP).

For more information about the networking configuration of the application virtual network, see Virtualization Network Design for Consolidated SDDC and NSX Design for Consolidated SDDC.

Table 1. Design Decisions on the Application Virtual Network for vRealize Suite Lifecycle Manager

Decision ID

Design Decision

Design Justification

Design Implication

CSDDC-OPS-LCM-002

Place the vRealize Suite Lifecycle Manager virtual appliance on the cross-region application virtual network.

  • Provides a consistent deployment model for management applications.

  • Supports growth to a dual-region design.

You must use an implementation in NSX for vSphere to support this networking configuration.

IP Subnets for vRealize Suite Lifecycle Manager

You can allocate the following example subnets for the cross-region VXLAN and use it for vRealize Suite Lifecycle Manager deployment.

Table 2. IP Subnets in the Application Virtual Network for vRealize Lifecycle Manager

Node

IP Subnet

vRealize Suite Lifecycle Manager in Region A

192.168.11.0/24

DNS Names for vRealize Suite Lifecycle Manager

The host name of the vRealize Suite Lifecycle Manager virtual appliance follows a specific domain name resolution:

  • The IP addresses of the vRealize Suite Lifecycle Manager virtual appliance is associated with a fully qualified name whose suffix is set to the root domain rainpole.local.

Table 3. Domain Name Service Records for vRealize Suite Lifecycle Manager

DNS Name

Region

vrs01lcm01.rainpole.local

Region A

Table 4. Design Decision on the DNS Configuration of vRealize Suite Lifecycle Manager

Decision ID

Design Decision

Design Justification

Design Implication

CSDDC-OPS-LCM-003

Configure forward and reverse DNS records for the vRealize Suite Lifecycle Manager virtual appliance.

vRealize Suite Lifecycle Manager is accessible by using fully qualified domain name instead of by using IP addresses only.

You must provide DNS records for the vRealize Suite Lifecycle Manager virtual appliance.