Примечание
Для доступа к этой странице требуется авторизация. Вы можете попробовать войти или изменить каталоги.
Для доступа к этой странице требуется авторизация. Вы можете попробовать изменить каталоги.
After you deploy your Azure VMware Solution private cloud, connect it to your on-premises environment. ExpressRoute Global Reach подключает локальную среду к частному облаку решения Azure VMware. The ExpressRoute Global Reach connection is established between the private cloud ExpressRoute circuit and an existing ExpressRoute connection to your on-premises environments.
Примечание.
You can connect through VPN, but that's out of scope for this quick start guide.
В этой статье вы узнаете:
- Create an ExpressRoute auth key in the on-premises ExpressRoute circuit
- Peer the private cloud with your on-premises ExpressRoute circuit
- Verify on-premises network connectivity
Once you completed this section, follow the next steps provided at the end of this tutorial.
Предпосылки
Review the documentation on how to enable connectivity in different Azure subscriptions.
A separate, functioning ExpressRoute circuit for connecting on-premises environments to Azure, which is circuit 1 for peering.
Ensure that all gateways, including the ExpressRoute provider's service, support 4-byte Autonomous System Number (ASN). Решение Azure VMware использует 4-байтовые общедоступные номера ASN для объявления маршрутов.
Примечание.
If advertising a default route to Azure (0.0.0.0/0), ensure a more specific route containing your on-premises networks is advertised in addition to the default route to enable management access to Azure VMware Solution. A single 0.0.0.0/0 route will be discarded by Azure VMware Solution's management network to ensure successful operation of the service.
Create an ExpressRoute auth key in the on-premises ExpressRoute circuit
Владелец канала создает разрешение, в результате чего создается ключ авторизации, с помощью которого пользователь канала сможет подключить шлюзы виртуальной сети к каналу ExpressRoute. Разрешение действительно только для одного подключения.
Примечание.
Каждое соединение требует отдельной авторизации.
From ExpressRoute circuits in the left navigation, under Settings, select Authorizations.
Enter the name for the authorization key and select Save.
Once created, the new key appears in the list of authorization keys for the circuit.
Copy the authorization key and the ExpressRoute ID to use them in the next step to complete the peering.
Peer private cloud to on-premises
Now that you created an authorization key for the private cloud ExpressRoute circuit, you can peer it with your on-premises ExpressRoute circuit. The peering is done from the on-premises ExpressRoute circuit in the Azure portal. You use the resource ID (ExpressRoute circuit ID) and authorization key of your private cloud ExpressRoute circuit to finish the peering.
From the private cloud, under Manage, select Connectivity>ExpressRoute Global Reach>Add.
Enter the ExpressRoute ID and the authorization key created in the previous section.
Выберите Создать. The new connection shows in the on-premises cloud connections list.
Подсказка
You can delete or disconnect a connection from the list by selecting More.
Verify on-premises network connectivity
In your on-premises edge router, you should now see where the ExpressRoute connects the NSX-T Data Center network segments and the Azure VMware Solution management segments.
Это важно
Everyone has a different environment, and some will need to allow these routes to propagate back into the on-premises network.
Дальнейшие действия
Continue to the next tutorial to install VMware HCX add-on in your Azure VMware Solution private cloud.