5.1
Table Of Contents
- vShield Administration Guide
- Contents
- vShield Administration Guide
- Overview of vShield
- vShield Manager User Interface Basics
- Management System Settings
- Edit DNS Servers
- Edit the vShield Manager Date and Time
- Edit Lookup Service Details
- Edit vCenter Server
- Specify Syslog Server
- Download Technical Support Logs for vShield
- Add an SSL Certificate to Identify the vShield Manager Web Service
- Add a Cisco Switch to vShield Manager
- Working with Services and Service Groups
- Grouping Objects
- User Management
- Updating System Software
- Backing Up vShield Manager Data
- System Events and Audit Logs
- VXLAN Virtual Wires Management
- Preparing your Network for VXLAN Virtual Wires
- Create a VXLAN Virtual Wire
- Connect Virtual Machines to a VXLAN Virtual Wire
- Test VXLAN Virtual Wire Connectivity
- Viewing Flow Monitoring Data for a VXLAN Virtual Wire
- Working with Firewall Rules for VXLAN Virtual Wires
- Prevent Spoofing on a VXLAN Virtual Wire
- Editing Network Scopes
- Edit a VXLAN Virtual Wire
- Sample Scenario for Creating VXLAN Virtual Wires
- vShield Edge Management
- View the Status of a vShield Edge
- Configure vShield Edge Settings
- Managing Appliances
- Working with Interfaces
- Working with Certificates
- Managing the vShield Edge Firewall
- Managing NAT Rules
- Working with Static Routes
- Managing DHCP Service
- Managing VPN Services
- IPSec VPN Overview
- Configuring IPSec VPN Service
- Edit IPSec VPN Service
- Delete IPSec Service
- Enable IPSec Service
- Disable IPSec Service
- vShield Edge VPN Configuration Examples
- SSL VPN-Plus Overview
- Configure Network Access SSL VPN-Plus
- Configure Web Access SSL VPN-Plus
- Working with IP Pools
- Working with Private Networks
- Working with Installation Packages
- Working with Users
- Edit Client Configuration
- Working with Login and Logoff Scripts
- SSL VPN-Plus Logs
- Edit General Settings
- Edit Web Portal Design
- IPSec VPN Overview
- Managing Load Balancer Service
- About High Availability
- Configure DNS Servers
- Configure Remote Syslog Servers
- Change CLI Credentials
- Upgrade vShield Edge to Large or X-Large
- Download Tech Support Logs for vShield Edge
- Synchronize vShield Edge with vShield Manager
- Redeploy vShield Edge
- Service Insertion Management
- vShield App Management
- Sending vShield App System Events to a Syslog Server
- Viewing the Current System Status of a vShield App
- Restart a vShield App
- Forcing a vShield App to Synchronize with the vShield Manager
- Viewing Traffic Statistics by vShield App Interface
- Download Technical Support Logs for vShield App
- Configuring Fail Safe Mode for vShield App Firewall
- Excluding Virtual Machines from vShield App Protection
- vShield App Flow Monitoring
- vShield App Firewall Management
- vShield Endpoint Events and Alarms
- vShield Data Security Management
- vShield Data Security User Roles
- Defining a Data Security Policy
- Editing a Data Security Policy
- Running a Data Security Scan
- Viewing and Downloading Reports
- Creating Regular Expressions
- Available Regulations
- Arizona SB-1338
- ABA Routing Numbers
- Australia Bank Account Numbers
- Australia Business and Company Numbers
- Australia Medicare Card Numbers
- Australia Tax File Numbers
- California AB-1298
- California SB-1386
- Canada Social Insurance Numbers
- Canada Drivers License Numbers
- Colorado HB-1119
- Connecticut SB-650
- Credit Card Numbers
- Custom Account Numbers
- EU Debit Card Numbers
- FERPA (Family Educational Rights and Privacy Act)
- Florida HB-481
- France IBAN Numbers
- France National Identification Numbers Policy
- Georgia SB-230 Policy
- Germany BIC Numbers Policy
- Germany Driving License Numbers Policy
- Germany IBAN Numbers Policy
- Germany National Identification Numbers Policy
- Germany VAT Numbers Policy
- Hawaii SB-2290 Policy
- HIPAA (Healthcare Insurance Portability and Accountability Act) Policy
- Idaho SB-1374 Policy
- Illinois SB-1633
- Indiana HB-1101 Policy
- Italy Driving License Numbers Policy
- Italy IBAN Numbers Policy.
- Italy National Identification Numbers Policy
- Kansas SB-196 Policy
- Louisiana SB-205 Policy
- Maine LD-1671 Policy
- Massachusetts CMR-201
- Minnesota HF-2121
- Montana HB-732
- Netherlands Driving Licence Numbers
- Nevada SB-347
- New Hampshire HB-1660
- New Jersey A-4001
- New York AB-4254
- New Zealand Inland Revenue Department Numbers
- New Zealand Ministry of Health Numbers
- Ohio HB-104
- Oklahoma HB-2357
- Patient Identification Numbers
- Payment Card Industry Data Security Standard (PCI-DSS)
- Texas SB-122
- UK BIC Numbers
- UK Driving Licence Numbers
- UK IBAN Numbers
- UK National Health Service Numbers
- UK National Insurance Numbers (NINO)
- UK Passport Numbers
- US Drivers License Numbers
- US Social Security Numbers
- Utah SB-69
- Vermont SB-284
- Washington SB-6043
- Available Content Blades
- ABA Routing Number Content Blade
- Admittance and Discharge Dates Content Blade
- Alabama Drivers License Content Blade
- Alaska Drivers License Content Blade
- Alberta Drivers Licence Content Blade
- Alaska Drivers License Content Blade
- Alberta Drivers Licence Content Blade
- American Express Content Blade
- Arizona Drivers License Content Blade
- Arkansas Drivers License Content Blade
- Australia Bank Account Number Content Blade
- Australia Business Number Content Blade
- Australia Company Number Content Blade
- Australia Medicare Card Number Content Blade
- Australia Tax File Number Content Blade
- California Drivers License Number Content Blade
- Canada Drivers License Number Content Blade
- Canada Social Insurance Number Content Blade
- Colorado Drivers License Number Content Blade
- Connecticut Drivers License Number Content Blade
- Credit Card Number Content Blade
- Credit Card Track Data Content Blade
- Custom Account Number Content Blade
- Delaware Drivers License Number Content Blade
- EU Debit Card Number Content Blade
- Florida Drivers License Number Content Blade
- France Driving License Number Content Blade
- France BIC Number Content Blade
- France IBAN Number Content Blade
- France National Identification Number Content Blade
- France VAT Number Content Blade
- Georgia Drivers License Number Content Blade
- Germany BIC Number Content Blade
- Germany Driving License Number Content Blade
- Germany IBAN Number Content Blade
- Germany National Identification Numbers Content Blade
- Germany Passport Number Content Blade
- Germany VAT Number Content Blade
- Group Insurance Numbers Content Blade
- Hawaii Drivers License Number Content Blade
- Italy National Identification Numbers Content Blade
- Health Plan Beneficiary Numbers
- Idaho Drivers License Number Content Blade
- Illinois Drivers License Number Content Blade
- Indiana Drivers License Number Content Blade
- Iowa Drivers License Number Content Blade
- Index of Procedures Content Blade
- Italy Driving License Number Content Blade
- Italy IBAN Number Content Blade
- ITIN Unformatted Content Blade
- Kansas Drivers License Number Content Blade
- Kentucky Drivers License Number Content Blade
- Louisiana Drivers License Number Content Blade
- Maine Drivers License Number Content Blade
- Manitoba Drivers Licence Content Blade
- Maryland Drivers License Number Content Blade
- Massachusetts Drivers License Number Content Blade
- Michigan Drivers License Number Content Blade
- Minnesota Drivers License Number Content Blade
- Mississippi Drivers License Number Content Blade
- Missouri Drivers License Number Content Blade
- Montana Drivers License Number Content Blade
- NDC Formulas Dictionary Content Blade
- Nebraska Drivers License Number Content Blade
- Netherlands Driving Licence Number Content Blade
- Netherlands IBAN Number Content Blade
- Netherlands National Identification Numbers Content Blade
- Netherlands Passport Number Content Blade
- Nevada Drivers License Number Content Blade
- New Brunswick Drivers Licence Content Blade
- New Hampshire Drivers License Number Content Blade
- New Jersey Drivers License Number Content Blade
- New Mexico Drivers License Number Content Blade
- New York Drivers License Number Content Blade
- New Zealand Health Practitioner Index Number Content Blade
- New Zealand Inland Revenue Department Number
- New Zealand National Health Index Number Content Blade
- Newfoundland and Labrador Drivers Licence Content Blade
- North Carolina Drivers License Number Content Blade
- North Dakota Drivers License Number Content Blade
- Nova Scotia Drivers Licence Content Blade
- Ohio Drivers License Number Content Blade
- Oklahoma License Number Content Blade
- Ontario Drivers Licence Content Blade
- Oregon License Number Content Blade
- Patient Identification Numbers Content Blade
- Pennsylvania License Number Content Blade
- Prince Edward Island Drivers Licence Content Blade
- Protected Health Information Terms Content Blade
- Quebec Drivers Licence Content Blade
- Rhode Island License Number Content Blade
- Saskatchewan Drivers Licence Content Blade
- SIN Formatted Content Blade
- SIN Unformatted Content Blade
- SSN Formatted Content Blade
- SSN Unformatted Content Blade
- South Carolina License Number Content Blade
- South Dakota License Number Content Blade
- Spain National Identification Number Content Blade
- Spain Passport Number Content Blade
- Spain Social Security Number Content Blade
- Sweden IBAN Number Content Blade
- Sweden Passport Number Content Blade
- Tennessee License Number Content Blade
- UK BIC Number Content Blade
- UK Driving License Number Content Blade
- UK IBAN Number Content Blade
- UK National Health Service Number Content Blade
- UK NINO Formal Content Blade
- UK Passport Number Content Blade
- Utah License Number Content Blade
- Virginia License Number Content Blade
- Visa Card Number Content Blade
- Washington License Number Content Blade
- Wisconsin License Number Content Blade
- Wyoming License Number Content Blade
- Supported File Formats
- Troubleshooting
- Index
Delete a Virtual Server
You can delete a virtual server.
Procedure
1 In the vSphere Client, select Inventory > Hosts & Clusters.
2 Select a datacenter resource from the inventory panel.
3 Click the Network Virtualization tab.
4 Click the Edges link.
5 Double-click a vShield Edge instance.
6 Click the Load Balancer tab.
7 Click Virtual Servers tab.
8 Select the virtual server to delete.
9
Click the Delete (
) icon.
About High Availability
High Availability (HA) ensures that a vShield Edge appliance is always available on your virtualized network.
You can enable HA either when installing vShield Edge or on an installed vShield Edge instance.
Stateful High Availability
The primary vShield Edge appliance is in the active state and the secondary appliance is in the standby state.
All vShield Edge services run on the active appliance. The primary appliance maintains a heartbeat with the
standby appliance and sends service updates through an internal interface.
If a heartbeat is not received from the primary appliance within the specified time (default value is 6 seconds),
the primary appliance is declared dead. The standby appliance moves to the active state, takes over the interface
configuration of the primary appliance, and starts the vShield Edge services that were running on the primary
appliance. When the switch over takes place, a system event is displayed in the System Events tab of Settings
& Reports. Load Balancer and VPN services need to re-establish TCP connection with vShield Edge, so service
is disrupted for a short while. Virtual wire connections and firewall sessions are synched between the primary
and standby appliances, so there is no service disruption during switch over.
If the vShield Edge appliance fails and a bad state is reported, HA force syncs the failed appliance in order to
revive it. When revived, it takes on the configuration of the now-active appliance and stays in a standby state.
If the vShield Edge appliance is dead, you must delete the appliance and add a new one.
vShield Edge replicates the configuration of the primary appliance for the standby appliance or you can
manually add two appliances. VMware recommends that you create the primary and secondary appliances
on separate resource pools and datastores. If you create the primary and secondary appliances on the same
datastore, the datastore must be shared across all hosts in the cluster for the HA appliance pair to be deployed
on different ESX hosts. If the datastore is a local storage, both virtual machines are deployed on the same host.
vShield Edge ensures that the two HA vShield Edge virtual machines are not on the same ESX host even after
you use DRS and vMotion (unless you manually vMotion them to the same host). Two virtual machines are
deployed on vCenter in the same resource pool and datastore as the appliance you configured. Local link IPs
are assigned to HA virtual machines in the vShield Edge HA so that they can communicate with each other.
You can specify management IP addresses to override the local links.
If syslog servers are configured, logs on the active appliance are sent to the syslog servers.
vShield Administration Guide
140 VMware, Inc.