Using the OVA Bundled Method to Integrate vGW Series with the VMware Infrastructure

This topic explains how to integrate the vGW Series appliances–the vGW Security Design VM and the vGW Security VM template–with the VMware virtualized infrastructure.

For information on vGW Series Prerequisites and Resource Requirements for the VMware Environment.

This topic includes the following sections:

Requirements

For information, see vGW Series Prerequisites and Resource Requirements for the VMware Environment.

Overview

The bundled OVA template allows you to deploy both the vGW Security Design VM and the vGW Security VM appliances in a single OVA archive file. In this case, OVA creates a single vApp and inserts the two vGW Series appliances into it.

You can delete the vApp after the deployment and integration process is complete. It is used only to convey the vGW Series VMs. However, take care not to delete it before then.

In the single Combo Package file, the OVA template deploys:

Note: The OVA Combo Package installs a vApp, and VMware will not install a vApp on a cluster for which DNS is not enabled. In this case, you must use the nonbundled OVA method to deploy each component separately.

Downloading the vGW Series OVA Combo Package

Step-by-Step Procedure

To download the Juniper Networks OVA archive file that contains both the vGW Security Design VM and the vGW Security VM:

  1. Navigate to the Juniper Networks Support page.
  2. Select Software Downloads from the Support box in the left column.
  3. Select vGW (Altor) in the Security pane.
  4. Select the Software tab.
  5. Click vGW Series 5.5 Combo Package, and log in to the site to download the file.

Integrating the vGW Series with the VMware Infrastructure

Step-by-Step Procedure

To deploy the vGW Series appliances—the vGW Security Design VM and the vGW Security VM—and integrate them with the VMware infrastructure:

  1. Using the vSphere client, load the bundled OVA file. Select Deploy OVF Template from the File menu.
  2. Enter the download filename or its URL in the Deploy from file or URL box—for example, enter: c:\temp\vGW_Combo_5.5_#-#-#_#-#-#.ova—and click Next.

    You use the OVF template method to deploy the OVA file. After you specify the name of the OVA file and its location, the Appliance Wizard displays the OVA template details dialog box.

  3. Verify the contents of the OVA package, and click Next.

    Before the wizard unbundles the OVA package, verify that it contains the vGW Series appliances. The OVA template summary also specifies the disk space requirements for thick and thin provisioning. See Figure 11.

    Figure 11: OVA Template Details Page

    OVA Template Details Page
  4. Accept the vGW Series license agreement, and click Next. See Figure 12.

    Figure 12: OVA File Deployment License Agreement

    OVA File Deployment License Agreement
  5. Specify a name for the vApp that will be created and a storage location. See Figure 13.

    Figure 13: Naming the vApp

    Naming the vApp
  6. Specify the host or host/cluster on which to run the deployed template. We recommend that you use a network storage device (NAS) so that it can be migrated through VMotion for space optimization. See Figure 14.

    Figure 14: Specifying the Host and Cluster

    Specifying the Host and Cluster
  7. Select the datastore. Do not use a read-only datastore.Figure 15.

    Figure 15: Selecting the Storage

    Selecting the Storage
  8. Select the disk format. Accept the thick provisioned format default. Thick provisioning preallocates all required space for the product.
  9. Map the networks. Set the vGW management network to a destination network that is accessible to vCenter and the vGW Security Design VM. See Figure 16.

    Figure 16: Mapping the vGW Management Networks

    Mapping the vGW Management Networks
  10. Specify the size of the database to use for storing vGW Series files.

    The database stores network connection records and firewall logs.

    See Figure 17.

    Figure 17: Specifying the Database Disk Size

    Specifying the Database Disk Size

    The default disk size is 8.0 GB. In a typical environment that includes 5 to 10 ESX/ESXi hosts, a database of this size can accommodate data accumulated over several months. However, for your environment you might want to deploy a database that is larger than 8.0 GB.

    You can increase the database size later if you find that the current space is not adequate. Although there is no hard-coded limit, we recommend restricting the size to less than 75 GB.

  11. Verify that the configuration is correct, and click Finish to complete the deployment. See Figure 18.

    Figure 18: Verifying That the Configuration Is Correct

    Verifying That the Configuration Is Correct

    The Virtual Appliance Wizard downloads the files and inserts the vGW Series VMs as a single virtual appliance (vApp) into the VMware infrastructure.

    When the OVA import is completed, the vCenter includes the vApp containing both the vGW Security Design VM and the vGW Security VM template components.

  12. Expand the appliance called Juniper vGW 5.5 to display the vGW Security Design VM and the vGW Security VM. See Figure 19.

    Figure 19: Displaying the vGW Appliance Components

    Displaying the vGW Appliance Components

    Move the two vGW Series VMs out from the vAPP. Afterward you can delete the vApp if you choose to, but it is not necessary.

    Note: vGW Series uses the VMware vApp deployment feature as a vehicle to deliver multiple VMs in the same OVA file. The vApp structure is redundant after it is used for deployment, and therefore you can delete it. However, do not delete the vApp without first having moved the vGW Series VMs out from it. If you do, the newly created vGW Series VMs would be deleted when you delete the vApp.

    Step-by-Step Procedure

    After you remove the vGW Series VMs from the vApp:

    1. Convert the vGW-SVM-Template VM to a template that the vGW Security Design VM and installer can use to instantiate a vGW Security VM on each ESX/ESXi host to be secured.

      Right-click the template, select Template, and select Convert to Template.

    2. Right-click the vGW Security Design VM and power it on. Figure 20 shows the vCenter summary information for the vGW Security Design VM.

    Figure 20 shows the vCenter summary information for the vGW Security Design VM.

    Figure 20: vGW Security Design VM Summary Tab in vCenter

    vGW Security Design VM Summary Tab in vCenter

Related Documentation