Versions Compared

Old Version 3

changes.mady.by.user Tahir Kulelija

Saved on

compared with

New Version 4

changes.mady.by.user Jason Baseley

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

The gateway address can be found by navigating to the Network Configuration tab for your VDC service in MyAccount, selecting the ?uplink? network and viewing the config . The IP can be found under the Networking heading at the top of the page as below:

Edge Gateway IP identificationImage RemovedImage Added


To configure NAT and Firewall rules, you'll need to log the vCloud portal (Click 'Login into Cloud Director' from the manage dropdown) then access Networking - Edge Gateways from the top menu.

2. NAT Rules

We are adding 2 x DNAT rules to the uplink network, click on the Services - NAT page and click the ?Add NAT Rule? button'New'. You will be configuring the following rules:

DNAT #1 (TCP)

  • Rule Name: RDP - Inbound
  • Interface Type: DNAT (Destination NAT)
  • Protocol: TCP
  • Original External IP: anyOriginal 119.252.X.X
  • External Port: 3389
    • Translated
  • (Target port for external connections)
  • Internal IP: 192.168.2.100
  • Translated Application (Internal Port): 3389

rdp-dnat-tcpImage Removed

DNAT #2 (UDP ? Optional)

...

Image Added

3. IP Set

In order to configure the firewall rule with IP of our uplink network, we'll need to create an IP set or Static group. Navigate to Security - IP Sets and click 'New'. We'll be naming this IP Set 'RDP Server' and setting the IP as 192.168.2.100

...

optional-rdp-dnat-udpImage Removed

Image Added

3. Firewall Rule

Add a Firewall Rule to the uplink network, click on the Firewall page navigate to Services - Firewall and click the ?Add Firewall Rule? Edit Rules button. The rule we are about to configure will allow incoming TCP and UDP traffic on port 3389 from the internet into your VDC network. The NAT rules configured in the previous step will then direct this traffic to the desired VM.

Firewall rules are applied to traffic according to the listing order on the page. Once traffic has matched a rule, the packet will be processed and no further rules will be examined, thus the order of rules is important, and in general your most specific rules should apply first, with the most general rules last.

Click 'New on Top' to start editing the new Firewall rule.

Rule

  • PolicyName: AllowRDP - InboundDescription: RDP
  • Applications: Blank (Use this to specify when port the connection is expected to come from.)
  • Source IP: Any
  • Source Port: Any (Or you can create an IP Set for where you want connections to come from)
  • Destination IP: 119.252.74.161
  • Destination Port: 3389
  • Protocols: TCP, UDPRDP Server
  • IP Protocol: IPv4

4. Complete

You should now be able to RDP to the external IP of the VDC and get to your Windows VM. To access multiple VM?sVMs, some options include:

  • Create a ?jumpbox? Jumpbox in your virtual environment which is used to RDP into and then RDP to other machines from there; OR
  • Enable RDP of different ports on each of your VMs in your private network and NAT those through the firewall;