The network services listed in this section are required in the host data center for your Cloud Foundation on VxRail deployment. These services must be enabled in the data center planned for the Cloud Foundation on VxRail deployment, and configured with the settings required for your specific deployment.
- Domain Name Service (DNS) ‒ You must enter forward and reverse DNS entries for every VxRail node. In addition, the virtual components used for the management of the VxRail clusters and the Cloud Foundation domains also require forward and reverse DNS entries.
- Network Time Protocol (NTP)
- Dynamic Host Configuration Protocol (DHCP) ‒ IP addresses are assigned to each host in the VxRail cluster to serve as the endpoints for NSX inbound/outbound traffic at the edge. The IP addresses can either be assigned manually or dynamically using DHCP. A DHCP server must be deployed in the host data center and be pre-populated with the IP addresses to be assigned to the host endpoints.
The following network services are optional, but recommended:
- Simple Message Transfer Protocol (SMTP)
- Certificate Authority (CA) – The Certificate Authority must be able to ingest a Certificate Signing Request from the SDDC components, and issue a signed certificate. Cloud Foundation on VxRail supports Microsoft Windows Enterprise Certificate Authority and Open SSL. The domain controller must be configured with the Certificate Authority Service and the Certificate Authority Web Enrollment roles.
- SFTP Server – The SFTP server supports backups of NSX Data Center instances and SDDC Manager.
The following network services may be required, depending on the use cases targeted for Cloud Foundation on VxRail VI workload domains:
- Active Directory - Cloud Foundation on VxRail uses Active Directory service accounts for application-to-application communications.