An organization VDC network with a routed connection provides controlled access to machines and networks outside of the organization VDC. System administrators and organization administrators can configure network address translation (NAT) and firewall settings on the network's Edge Gateway to make specific virtual machines in the VDC accessible from an external network.

This operation requires the rights included in the predefined Organization Administrator role or an equivalent set of rights.

The organization VDC must include an Edge Gateway. See Add an Edge Gateway.


On the Administration tab, click Virtual Datacenters in the left pane.


Double-click an organization VDC name to open the organization VDC.


Click the Org VDC Networks tab and click Add Network.


Select Create a routed network by connecting to an existing edge gateway.


Select an Edge Gateway.

If the organization VDC includes more than one Edge Gateway, you must choose one for this network to connect to. To be able to support another routed network, the Edge Gateway must show a value of at least 1 in the Available Networks column.


Select Create as a subinterface to force the new network to be created as a subinterface to an existing network on the Edge Gateway.

A routed organization VDC network created as a subinterface is required when using the vCloud Director Tenant Portal to create an L2 VPN for the organization. For more information about subinterfaces, see the NSX Administration Guide.


On the Configure Network page, type a Gateway address and Network mask for the new network.


(Optional) Configure DNS settings for the network.

If you want DNS services to be available to VMs that connect to this network, you can configure those settings now. You can update these settings later if you need to by editing the properties of this network.



Use gateway DNS

This option, which configures the network to use the same DNS settings as the Edge Gateway, is available only if the gateway has the Use default gateway for DNS relay property enabled.

Primary DNS, Secondary DNS, DNS suffix

If you do not select Use gateway DNS, you can provide your own DNS configuration values


(Optional) Configure static IP addresses for this network.

If you want this network to reserve one or more addresses for assignment to VMs that require a static IP address, enter the address or range of addresses and click Add. Repeat this step to add multiple static IP pools.


Click Next.


Type a name and optional description for the network.


(Optional) Select Share this network with other VDCs in the organization to make the organization VDC network available in other VDCs in the organization.


(Optional) Create or update metadata for this object.

See Create or Update Object Metadata.


Click OK to save your changes.


Click Next.


Review the network settings.

Click Finish to accept the settings and create the network, or click Back to modify the settings.