The edge gateways in a vCloud Director environment support L2 VPN. L2 VPN allows extension of your organization virtual data center by allowing virtual machines to maintain network connectivity while retaining the same IP address across geographical boundaries. If the edge gateway for your organization virtual data center has been converted to an advanced edge gateway, you can use the L2 screen in the tenant portal to configure the L2 VPN service on that edge gateway.

The NSX software provides the L2 VPN capabilities of an edge gateway. L2 VPN allows you to configure a tunnel between two sites. Virtual machines remain on the same subnet despite being moved between these sites, which enables you to extend your organization virtual data center by stretching its network using L2 VPN. An edge gateway at one site can provide all services to virtual machines on the other site.

To create the L2 VPN tunnel, you configure an L2 VPN server and L2 VPN client. As described in the NSX Administration Guide, the L2 VPN server is the destination edge gateway and the L2 VPN client is the source edge gateway. After configuring the L2 VPN settings on each edge gateway, you must then enable the L2 VPN service on both the server and the client.

Note:

A routed organization virtual data center network created as a subinterface must exist on the edge gateways. See the vCloud Director Administrator's Guide for the steps on creating an external routed organization virtual data center network.

Prerequisites

To use the vCloud Director tenant portal to work with edge gateway services, the edge gateway must be converted to an advanced edge gateway. You can do this on the edge gateway in the vCloud Director Web console or from the tenant portal. For details on performing this step from the tenant portal, see Convert an Edge Gateway to an Advanced Edge Gateway.