Note:

• This tutorial requires access to Oracle Cloud. To sign up for a free account, see Get started with Oracle Cloud Infrastructure Free Tier.
• It uses example values for Oracle Cloud Infrastructure credentials, tenancy, and compartments. When completing your lab, substitute these values with ones specific to your cloud environment.

Enable DNS resolution for On-Premises Domain from Oracle Cloud VMWare Solution NSX-T Overlay Segment

 

Overview

Oracle Cloud VMware Solution (Oracle Cloud VMWare Solution) allows you to create and manage VMware enabled software-defined data centers (SDDCs) in Oracle Cloud Infrastructure. Oracle Cloud VMWare Solution provides NSX-T as the default Software Defined Networking tool.

NSX-T enables the customer to configure wide range of networking options such as Switching, Routing, Distributed Firewall and many more.

This is the third tutorial in the three part series which describes enabling name resolution for different domains i.e. public URL’s / On-Premises Domains / Oracle Cloud VMWare Solution Management VM’s.

This tutorial describes how to enable name resolution for On-Premises Domain from Oracle Cloud VMWare Solution NSX-T backed Overlay segment.

Objective

Oracle Cloud VMWare Solution NSX-T Manager allows name resolution from Overlay Segment to multiple targets such as Internet, Oracle Cloud VMWare Solution Management VM’s, On-Premises network and others.

NSX-T broadly classifies the domains as default DNS zone and FQDN zones. The integration will be useful for scenarios wherein the customer has different DNS domains/servers. It will help administrators to redirect traffic to specific name servers for name resolution without having to point all queries to common DNS servers.

Post following this article, NSX-T administrators will be able to resolve On-Premises Domain (via name) from NSX-T backed overlay segments.

Prerequisites

• Establish connectivity from On-Premises via IPSEC VPN or a FastConnect, advertising On-Premises CIDR.

• Complete the first tutorial in this series: Tutorial 1: Enable DNS resolution for public URLs from Oracle Cloud VMware Solution NSX-T Overlay Segment.

Task 1: Configure On-Premises DNS Zone

We need to update OCVS NSX-T to forward DNS queries from overlay segment to OnPrem Domain DNS server.

1. Log in to the Oracle Cloud VMWare Solution NSX-T portal, Networking tab, DNS, DNZ Zones, Add DNS Zone followed by Add FQDN Zone.

2. Enter the On-Premises details and save the configuration.

   

3. Navigate to the DNS Service tab, edit the existing DNS service, Add the On-Premises DNS Zone in the FQDN Zones section and save the configuration.

Task 2: Run the Oracle Cloud VMWare Solution wizard with the Overlay Segment details

OCVS portal comes with default tabs to enable specific communications. One of them is advertizing NSX-T overlay segment to On-Premises environment.

1. Log in to the OCI tenancy, click on the Navigation menu, Hybrid, VMware Solution, click on the SDDC.

2. Click on the configuration button “Configure Connectivity to Your On-Premises Network”.

3. Enter “SDDC workload CIDR” as NSX-T Overlay Segment CIDR.

4. Enter “On-Premises CIDR” as On-Premises Network. Click Next and Apply.

Task 3: Run the Oracle Cloud VMWare Solution wizard with the DNS Service IP details

The Oracle Cloud VMWare Solution SDDC NSX-T DNS Service IP i.e. 192.168.253.253, will serve as the header for the traffic originating from the overlay segments. The On-Premises environment must be aware of the incoming IP address 192.168.253.253 and transmit the response back to the Oracle Cloud VMWare Solution SDDC via the existing IPSEC tunnel.

In order to advertise DNS Service IP to the On-Premises network using IPSEC VPN over BGP, we will execute the Oracle Cloud VMWare Solution wizard again. This will enable the advertisement of the NSX-T DNS Service IP to the On-Premises router. However, if a static VPN is being used instead, manual route advertisement will be required.

1. Log in to the OCI tenancy, click on the Navigation menu, Hybrid, VMware Solution, click on the SDDC.

2. Click on the configuration button “Configure Connectivity to Your On-Premises Network”.

3. Enter “DNS Service IP CIDR” as NSX-T Overlay Segment CIDR.

4. Enter “On-Premises CIDR” as On-Premises Network. Click Next and Apply.

This should resolve On-Premises Fully Qualified Domain Names from Oracle Cloud VMWare Solution NSX-T Overlay Segment.

Related Links

• To resolve Oracle Cloud VMware Solution Management VM’s via name from VM backed by overlay segment, see Tutorial 2: Enable DNS resolution for Oracle Cloud VMware Solution Management VMs and ESXi Host from NSX-T Overlay Segment.

Acknowledgments

• Author - Vaibhav Tiwari (Cloud VMware Solutions Specialist)

More Learning Resources

Explore other labs on docs.oracle.com/learn or access more free learning content on the Oracle Learning YouTube channel. Additionally, visit education.oracle.com/learning-explorer to become an Oracle Learning Explorer.

For product documentation, visit Oracle Help Center.

---

Title and Copyright Information

Enable DNS resolution for On-Premises Domain from Oracle Cloud VMWare Solution NSX-T Overlay Segment

F83332-01

July 2023

Copyright © 2023, Oracle and/or its affiliates.