Note:
- This tutorial requires access to Oracle Cloud. To sign up for a free account, see Get started with Oracle Cloud Infrastructure Free Tier.
- It uses example values for Oracle Cloud Infrastructure credentials, tenancy, and compartments. When completing your lab, substitute these values with ones specific to your cloud environment.
Enable DNS resolution for public URLs from Oracle Cloud VMware Solution NSX-T Overlay Segment
Overview
Oracle Cloud VMware Solution allows you to create and manage VMware enabled software-defined data centers (SDDCs) in Oracle Cloud Infrastructure (OCI). Oracle Cloud VMware Solution provides NSX-T as the default Software Defined Networking tool.
NSX-T enables the customer to configure a wide range of networking options such as Switching, Routing, Distributed Firewall and many more.
This is the first tutorial in a three part series which describes enabling name resolution for different domains i.e. public URL’s / On-Premises Domains / Oracle Cloud VMware Solution Management VM’s.
This tutorial describes how to enable name resolution for public URL’s from Oracle Cloud VMware Solution NSX-T backed Overlay segment.
Objective
Oracle Cloud VMware Solution NSX-T Manager allows name resolution from Overlay Segment to multiple targets such as Internet, Oracle Cloud VMware Solution Management VM’s, On-Premises network and others.
NSX-T broadly classifies the domains as default DNS zone and FQDN zones. The integration will be useful for scenario’s wherein the customer has different DNS domains/servers. It will help administrators to redirect traffic to specific name servers for name resolution without having to point all queries to common DNS servers.
Post following this tutorial, NSX-T administrators will be able to resolve public URL’s (via name) from NSX-T backed overlay segments.
Oracle Cloud VMware Solution SDDC provisioning creates default DHCP profile which can be used as DHCP Server for NSX-T Overlay segments. We have used the default DHCP profile in our setup. For more details, see Add a DHCP Profile.
NSX-T allows administrators to create multiple DNS zones. They acts as DNS forwarder which can be leveraged by VM’s connected to Overlay Segments. DNS Service IP is the unique IP address which is assigned to Oracle Cloud VMware Solution VM’s assigned to Overlay Segments. For more information, see Add a DNS Zone.
Task 1: Create overlay segment enabling DHCP and DNS
We will attach the VM to NSX-T backed overlay segment. Refer to Create NSX-T Segment documentation.
-
Create a NSX-T backed overlay segment.
-
DHCP and DNS service IP have been mentioned during the creation.
Note: DNS Service IP from range 169.254.x.x might have concerns for Windows workloads to resolve public URL’s via name__
Task 2: Configure DNS with service IP and default domain
NSX-T DNS can forward the queries to respective domains for resolution. We’ve setup a default domain and will forward all the DNS queries to Google DNS 8.8.8.8.
-
Add a default DNS zone.
-
Create DNS Service with the IP we mentioned on the overlay segment (DNS). Choose the default and the FQDN zones.
Task 3: Set up a route table for NAT Gateway and add specific routes
OCVS NSX-T segments forward the traffic to OCI VLAN Edge uplink 1 which has a default route 0.0.0.0/0 pointing to NAT GW for outbound internet connectivity.
NAT GW needs to know the return path and reach NSX-T overlay segments.
-
For this tutorial, we have used the nsx-edge-up1-vip private IP from the VLAN-sddc-01-NSX Edge Uplink 1 i.e. 10.55.0.130.
-
Create a new route table and add the required routes.
-
Associate the route table with the NAT Gateway.
Task 4: Run the Oracle Cloud VMware Solution wizard to enable Internet connectivity
The Oracle Cloud VMware Solution portal offers multiple tabs which can automate connectivity route/NSG requirements.
-
Click Configure Connectivity to the Internet Through NAT Gateway.
-
Keep the default options and click Apply configuration.
If we place an Oracle Cloud VMware Solution VM on the above segment, it should pick an IP from the DHCP. We should see DNS as service IP and it should be able to ping public URL’s.
Related Links
-
To resolve Oracle Cloud VMware Solution Management VM’s via name from VM backed by overlay segment, see Tutorial 2: Enable DNS resolution for Oracle Cloud VMware Solution Management VMs & ESXi Host from NSX-T Overlay Segment.
-
To resolve On-Premises VM’s via name from VM backed by overlay segment, see Tutorial 3: Enable DNS resolution for On-Premises Domain from Oracle Cloud VMWare Solution NSX-T Overlay Segment.
Acknowledgments
- Author - Vaibhav Tiwari (Cloud VMware Solutions Specialist)
More Learning Resources
Explore other labs on docs.oracle.com/learn or access more free learning content on the Oracle Learning YouTube channel. Additionally, visit education.oracle.com/learning-explorer to become an Oracle Learning Explorer.
For product documentation, visit Oracle Help Center.
Enable DNS resolution for public URLs from Oracle Cloud VMware Solution NSX-T Overlay Segment
F83189-01
July 2023
Copyright © 2023, Oracle and/or its affiliates.