Moving a service physically from one region to another represents a networking challenge, especially if applications have hard-coded IP addresses. Network address space and IP address assignment considerations require that you either use the same IP address or a different IP address at the recovery region. In many situations, you assign new IP addresses because VLANs do not typically stretch between regions. 

While protecting the management applications, you can simplify the IP address assignment. This design leverages a load balancer to separate a public network segment and a private network segment. The private network can remain unchanged. You only reassign the external load balancer interface.

On the public network segment, each management application is accessible under one or more virtual IP (VIP) addresses.

On the isolated application virtual network segment, the virtual machines of each management application are isolated.

After a failover, the recovered application is available under a different IPv4 address (VIP).  The use of the new IP address requires changes to the DNS records. You can change the DNS records manually or by using a script in the Site Recovery Manager recovery plan.

Logical Network Design for Cross-Region Deployment with Management Application Network Containers

The IPv4 subnets (orange networks) are routed within the vSphere management network of each region. Nodes on these network segments are reachable from within the SDDC. IPv4 subnets, such as the subnet for the vRealize Automation primary components, overlap across a region. Make sure that only the active IPv4 subnet is propagated in the region and beyond. The public facing Ext-Mgmt network of both regions (grey networks) is reachable by SDDC users and provides connection to external resources, such as Active Directory or DNS. See Virtualization Network Design.

NSX Edge devices provide the load balancing functionality, each device fronting a network that contains the protected components of all management applications. In each region, you use the same configuration for the management applications and their Site Recovery Manager shadow. Active Directory and DNS services must be running in both the protected and recovery regions.