How To Configure the Network Settings of the vShield Manager

Configure the Network Settings of the vShield Manager

You must use the command line interface (CLI) of the vShield Manager to configure an IP address, identify the default gateway, and set DNS settings.You can specify up to two DNS servers that the vShield Manager can use for IP address and host name resolution. DNS is required if any ESX host in your vCenter Server environment was added by using the

hostname (instead of IP address).

To configure the vShield Manager network settings by using the vShield Manager CLI

1 Right‐click the vShield Manager virtual machine and click Open Console to open the command line interface (CLI) of the vShield Manager. The booting process might take a few minutes.

2 After the manager login prompt appears, log in to the CLI by using the user name admin and the passworddefault.

3 Enter Enabled mode by using the password default.

manager> enable

Password: manager#

4 Run the setup command to open the CLI setup wizard. The CLI setup wizard guides you through IP address assignment for the vShield Manager’s management interface and identification of the default network gateway. The IP address of the management interface must be reachable by all installed vShield App, vShield Edge, and vShield Endpoint instances, and by a Web browser for system management.

manager# setup

Use CTRL-D to abort configuration dialog at any prompt.

Default settings are in square brackets '[]'.

IP Address (A.B.C.D):

Subnet Mask (A.B.C.D):

Default gateway (A.B.C.D):

Primary DNS IP (A.B.C.D):

Secondary DNS IP (A.B.C.D):

NOTE Do not place the management interface of the vShield Manager in same port group as the Service Console and VMkernel. VMware, Inc. 19 ,Chapter 3.

Installing the vShield Manager and vShield Zones Old configuration will be lost, and system needs to be rebooted

Do you want to save new configuration (y/[n]): y

Please log out and log back in again.

manager> exit

manager login:

5 Log in to the CLI.

6 Ping the default gateway to verify network connectivity.

manager> ping A.B.C.D

7 From your PC, ping the vShield Manager IP address to validate that the IP address is reachable.

Sometimes vCD cells lose connectivity to vShield Manager. Instead of rebooting the vShield Manager virtual machine, the web service of vShield Manager can simply be restarted. To accomplish this, you can open the console of your vShield Manager virtual machine, log in, and enter enable mode. From there, enter configure mode and issue the command "no web-manager" and then "web-manager".

manager# configure terminal
manager(config)# no web-manager
manager(config)# web-manager

This will restart the web and hopefully clear any web service connectivity issues.