If you select a NAT-based network connection when you deploy your vCloud Connector server, you need to set up NAT mapping and firewall rules.

There are multiple approaches to managing this issue. Decide whether you wish to use NAT to forward only the ports necessary for vCloud Connector operation or to forward all ports and then set up a firewall rule to filter all but the required ports. See Check System Requirements for the list of required ports.

Your appliance is deployed and you are logged in to the vCloud Director Web console.

1

Click the Administration tab and select Virtual Datacenters in the left panel.

2

Double-click your virtual datacenter.

3

Click the Org VDC Networks tab.

4

Find the network you are using in the list of networks, right-click, and select Configure Services.

5

Click the NAT tab.

6

Click Add DNAT to add the rule.

The Add Destination NAT Rule dialog box appears.

7

Specify the external IP address.

8

If you wish to NAT all ports, select ANY for the first port entry.

If you wish to NAT only the required ports, create a rule for each port.

9

Enter the internal IP address from your initial setup and match the port entry for this rule.

10

Click OK.

11

If you are using a firewall rule to control traffic, click the Firewall tab and select the Enable firewall check box.

12

Click Add at the bottom of the page to create a new firewall rule.

Create a rule for each required port.

The Add Firewall Rule dialog box appears.

13

Select the Enabled check-box, if it is not already selected.

14

Give the rule a name.

15

Type the source IP address and the source port.

For incoming traffic, the source is the external network. This is the address you selected in Step 7 above.

16

Type the destination IP address and port.

The destination IP address is the internal IP address from your initial setup.

17

Select the protocol.

18

Select Allow.

19

Click OK to create the rule.