An organization administrator can add static routes between two vApp networks that are routed to different organization vDC networks. Static routes allow traffic between the networks.

You cannot add static routes between overlapping networks or fenced vApps. After you add a static route to an organization vDC network, configure the network firewall rules to allow traffic on the static route. For vApps with static routes, select the Always use assigned IP addresses until this vApp or associated networks are deleted check box.

Static routes function only when the vApps included in the routes are running. If a vApp includes static routes and you perform the following operations, the static routes cannot function and you must remove them manually.

Change the parent network of the vApp

Delete a vApp

Delete a vApp network

Verify that vCloud Director has the following configurations:

vShield Manager 5.1.

Two organization vDC networks routed to the same external network.

Static routing is enabled on both organization vDC networks.

A vApp network is routed to each organization vDC network.

The vApp networks are in vApps that were started at least once.

1

Click the Manage & Monitor tab and click Organization vDCs in the left pane.

2

Double-click the organization vDC name to open the organization vDC.

3

Click the Org vDC Networks tab, right-click the organization vDC network name, and select Configure Services.

4

On the Static Routing tab, click Add.

5

Type a name, network address, and next hop IP address.

The network address is for the vApp network to which to add a static route. The next hop IP address is the external IP address of the router for the organization vDC network to which that vApp network is routed.

6

Select To external network and click OK.

7

Click Add.

8

Type a name, network address, and next hop IP address.

The network address is for the vApp network that is routed to this organization vDC network. The next hop IP address is the external IP address of the router for that vApp network.

9

Select Within this network and click OK.

10

Repeat steps Step 4 through Step 9 to add static routes to the second organization vDC network.

vApp Network 1 is routed to Org vDC Network 1. vApp Network 2 is routed to Org vDC Network 2. You can create static routes on the organization vDC networks to allow traffic between the vApp networks. You can use information about the vApp networks and organization vDC networks to create the static routes.

Network Information

Network Name

Network Specification

Router External IP Address

vApp Network 1

192.168.1.0/24

192.168.0.100

vApp Network 2

192.168.11.0/24

192.168.10.100

Org vDC Network 1

192.168.0.0/24

10.112.205.101

Org vDC Network 2

192.168.10.0/24

10.112.205.100

On Org vDC Network 1, create a static route to vApp Network 2 and another static route to vApp Network 1. On Org vDC Network 2, create a static route to vApp Network 1 and another static route to vApp Network 2.

Static Routing Settings for Org vDC Network 1

Static Route to Network

Route Name

Network

Next Hop IP Address

Route

vApp Network 2

tovapp2

192.168.11.0/24

10.112.205.100

To external network

vApp Network 1

tovapp1

192.168.1.0/24

192.168.0.100

Within this network

Static Routing Settings for Org vDC Network 2

Static Route to Network

Route Name

Network

Next Hop IP Address

Route

vApp Network 1

tovapp1

192.168.1.0/24

10.112.205.101

To external network

vApp Network 2

tovapp2

192.168.11.0/24

192.168.10.100

Within this network

Create firewall rules to allow traffic on the static routes. See Add a Firewall Rule for an Organization vDC Network.