A tenant administrator or business group manager can add a NAT network profile to a multi-machine blueprint, and assign the network profile to the component network adapters in the multi-machine blueprint.
About this task
You use a NAT network profile when the application or network needs to mask the IP addresses of the application workloads. Users can only connect to the external IP address of the NAT rule, which then translates the connection request and routes it to the application workload.
The most common use for a NAT network profile is for a multi-tier application where the application and database tiers need to be masked or secured from direct access. The application and database tiers have private network profiles and the Web tier has a NAT network profile.
Another use for this profile type is to support multiple, overlapping IP address spaces. If a large number of development and testing workloads need deployment but IP address space is limited, a combination of NAT profiles to support external access and private profiles to secure, masked internal IP addresses is suitable.
Because the network profiles you add to a multi-machine blueprint apply only to that blueprint, you can reuse the template names or change them.
When you add a NAT network profile to a multi-machine blueprint, you can change some information like the name, description, gateway, DNS, and static IP ranges. You can view but not change the remaining information from the template. For descriptions of the values required when creating a NAT network profile, see Create a NAT Network Profile.
Log in to the vRealize Automation console as a tenant administrator or business group manager.
A fabric administrator created at least one NAT network profile template. See Create a NAT Network Profile.
Create a multi-machine blueprint that contains at least one virtual component blueprint. See Create a Multi-Machine Blueprint.
- Select .
- Locate a multi-machine blueprint with at least one virtual component blueprint.
- Click Edit in the drop-down menu.
- Click the Network tab.
- Select a transport zone from the Transport zone drop-down menu.
- Select .
- Select a NAT network profile template from the Copy from existing network profile drop-down menu.
vRealize Automation inserts values from the template.
- (Optional) Click the Network Profile Information tab and change the name, description, subnet mask, gateway, DNS, and DHCP settings, one-to-many NAT only, as required.
- Click the IP Ranges tab and add, delete, or edit the defined ranges as required.
You can also upload IP addresses with a CSV file.
- Click OK.
The new network profile appears in the Network Profiles table on the Network tab.
What to do next
The new profile appears as a network profile choice when you create a network adapter. See Configure Network Adapters for Component Machines.