Understanding vGW Series Prerequisites and Resource Requirements

This topic covers how to prepare to install the vGW Series product. It covers prerequisites and identifies the resources required to import the vGW Series into the VMware environment, install the product, and run it. This topic includes the following sections:

Understanding Overall Resource and Access Requirements

Ensure that the following resources are available:

Note: Localized (non-English) versions of browsers, such as the Japanese version of IE7, are not fully supported. However, most character sets including Japanese should display properly.

Understanding Virtual Appliance System Requirements

You can configure a network attached storage (NAS) device or a local data store to use for both the vGW Security Design VM and the vGW Security VM virtual appliances. However, we recommend the following:

Warning: vGW Series does not support use of IDE disks in VMs.

Understanding VMware vSwitch Requirements

VMware lets you create abstracted network devices called virtual switches (vSwitches). A vSwitch routes traffic internally between virtual machines, and it links to external networks. A vSwitch works somewhat like a physical Ethernet switch. It detects which virtual machines are logically connected to its virtual ports to forward traffic to the correct virtual machines.

A vSwitch can be connected to physical switches using physical Ethernet adapters, also referred to as uplink adapters, to join virtual networks with physical networks. This process is similar to connecting physical switches to create a larger network. Even though a vSwitch works like a physical switch, it does not have the advanced functionality of a physical switch.

For the vGW Series:

The vGW Series interoperates with the following types of switches:

Understanding VMware Port Groups Requirements

In the VMware virtualized environment, port groups are used to aggregate multiple ports under a common configuration. They serve as an anchor point for virtual machines that connect to labeled networks. Each port group is identified by a network label. If port groups are configured, they are often mapped to VLANs, although this is not required.

An administrator assigns to a port group a virtual network interface card (NIC) that connects a VM with a vSwitch.

There are two types of port groups:

We recommend that you create a port group designated for communication between the vGW Security Design VM and the management interfaces on each of the vGW Security VMs. For example, you might call this port group Juniper Networks vGW Management. You can associate this port group with a VLAN, but it must not filter TCP 443 or TCP 8443. There must be IP address space available for the vGW Security Design VM interface and for each of the vGW Security VMs.

Note: You can use the preexisting VMware Management port group for this purpose.

Understanding Virtualized NIC Requirements

Consider the following details when configuring vNICs:

Related Documentation