Note:

• This tutorial requires access to Oracle Cloud. To sign up for a free account, see Get started with Oracle Cloud Infrastructure Free Tier.
• It uses example values for Oracle Cloud Infrastructure credentials, tenancy, and compartments. When completing your lab, substitute these values with ones specific to your cloud environment.

Enable DNS resolution for Oracle Cloud VMware Solution Management VMs and ESXi Host from NSX-T Overlay Segment

Overview

Oracle Cloud VMware Solution allows you to create and manage VMware enabled software-defined data centers (SDDCs) in Oracle Cloud Infrastructure (OCI). Oracle Cloud VMware Solution provides NSX-T as default Software Defined Networking tool.

NSX-T enables the customer to configure wide range of networking options such as Switching, Routing, Distributed Firewall and many more.

This is the second tutorial in the three part series which describes enabling name resolution for different domains i.e. public URL’s / On-Premises Domains / Oracle Cloud VMware Solution Management VM’s.

This tutorial describes how to enable name resolution for Oracle Cloud VMware Solution Management VM’s from NSX-T backed Overlay segment.

Objective

Oracle Cloud VMware Solution NSX-T Manager allows name resolution from Overlay Segment to multiple targets such as Internet, Oracle Cloud VMware Solution Management VM’s, On-Premises network and others.

NSX-T broadly classifies the domains as default DNS zone and FQDN zones. The integration will be useful for scenario’s wherein the customer have different DNS domains/servers. It will help administrators to redirect traffic for name servers to individual servers without having to point all queries to specific name servers.

Post following this tutorial, NSX-T administrators will be able to resolve Oracle Cloud VMware Solution Management VM’s (via name) from NSX-T backed overlay segments.

Prerequisites

• Complete the first tutorial in this series: Tutorial 1: Enable DNS resolution for public URLs from Oracle Cloud VMware Solution NSX-T Overlay Segment.

• Log in to OCI portal, click the Navigation menu, Hybrid, VMware Solution and click on the Oracle Cloud VMware Solution SDDC.

• Scroll down and click on the SDDC networks link and take a note of the Provisioning subnet under the Subnet tab.

  

• Click on the Navigation Menu, Hybrid, VMware Solution and click on the Oracle Cloud VMware Solution SDDC.

• Scroll down and click on the SDDC networks link, under the vLAN’s tab, click on NSX Edge Uplink 1 link. Note the nsx-edge-up1-vip which is 10.55.0.130 in this tutorial setup.

  

Task 1: Enable OCI VCN DNS Listener

OCVS SDDC provisioning creates OCI DNS private zone for the OCVS Management VM’s.

OCI VCN DNS can accept incoming DNS requests for name resolution for private DNS domains. This DNS endpoint is referred to as Listener. Refer to VCN DNS documentation for details.

1. Navigate to the OCI VCN portal and click on the DNS resolver link

   

2. Click Endpoints, and then click Create endpoint.

   • Enter the name as Listener.
   • Choose the provisioning subnet that we recorded from the above step.
   • Choose Endpoint type as Listening.
   • Listening IP address (leave it blank).
   • Click Create endpoint.

   

This will create a Listener Endpoint

Task 2: Enable communication on the provisioning subnet

We will enable communication to OCVS ESXi hosts from NSX-T overlay segments and vice-versa.

Click on Navigation menu, Hybrid, VMware Solution followed by SDDC. Scroll down and click on SDDC networks. Under the Subnet tab, provisioning subnet is listed.

1. Navigate to the Oracle Cloud VMware Solution Provisioning Subnet and enable communication on the Route Table.

We will add NSX-T overlay CIDR and NSX-T DNS service IP resolving to nsx-edge-up1-vip (captured above)

1. Allow traffic via the Security List.

   

Task 3: Enable communication on the vSphere vLAN

We will now enable communication to OCVS Management VM’s from overlay segment.

1. Log in to the OCI portal, click on the Navigation menu, Hybrid, VMware Solution and click on the Oracle Cloud VMware Solution SDDC.

2. Scroll down and click on SDDC networks. Click on the vLAN associated with vSphere.

3. Enable the traffic on the associated Route Table.

   

4. Allow the traffic on the associated Network Security List (NSG).

   

Task 4: Create Oracle Cloud VMware Solution Management Domain and associate with DNS Service

In Tutorial 1: Enable DNS resolution for public URLs from Oracle Cloud VMware Solution NSX-T Overlay Segment, we already created default DNS and associated it with NSX-T DNS Service. We now need to create Oracle Cloud VMware Solution management domain and associate with the same DNS service.

1. On the DNS Zones tab, click Add DNS Zone, and then click Add FQDN Zone.

2. Point to OCI VCN Listener IP that was generated on the first step.

   

3. Navigate to the DNS Services tab, edit the existing DNS Service, and add the Oracle Cloud VMware Solution Management DNS zone by clicking on FQDN zones box.

   

4. Save the configuration.

Similarly we need to create DNS Service to resolve OCVS ESXi Host names

This should allow the communication from VM’s residing on the NSX-T Overlay Segment to resolve Oracle Cloud VMware Solution Management VM’s via name.

Related Links

• To resolve On-Premises VM’s via name from VM backed by overlay segment, see Tutorial 3: Enable DNS resolution for On-Premises Domain from Oracle Cloud VMWare Solution NSX-T Overlay Segment.

Acknowledgments

• Author - Vaibhav Tiwari (Cloud VMware Solutions Specialist)

More Learning Resources

Explore other labs on docs.oracle.com/learn or access more free learning content on the Oracle Learning YouTube channel. Additionally, visit education.oracle.com/learning-explorer to become an Oracle Learning Explorer.

For product documentation, visit Oracle Help Center.

---

Title and Copyright Information

Enable DNS resolution for Oracle Cloud VMware Solution Management VMs and ESXi Host from NSX-T Overlay Segment

F83268-01

July 2023

Copyright © 2023, Oracle and/or its affiliates.