Use the Oracle Cloud Infrastructure Console or API to manage the Layer 2 networking resources for your SDDC.

An Oracle Cloud Infrastructure SDDC requires a management subnet and layer 2 networking resources. The layer 2 networking resources include seven VLANs and their configured external access objects.

When you provision an SDDC by using the Oracle Cloud Infrastructure Console's Create SDDC workflow, you can have the workflow create these required networking resources for you. We recommend that you select this option. If you prefer, you can create them yourself before you start the Create SDDC workflow, and then select the existing subnet and VLANs you created for this purpose. See Creating VLANs for an SDDC for a list of VLANs required for SDDCs and instructions on how to create them.

You can enable external access to an SDDC's ESXi hosts by creating a private IP object for the VLAN that can be used as a route target. Additionally, you can enable internet access to hosts in the VLAN by assigning a public IP address to the VLAN's private IP address object. When you configure external access, you have the option to indicate that it be accessible as a route target only and, as such, have no associated public IP address. See Adding External Access to a VLAN for the steps to configure external access.

To use Oracle Cloud Infrastructure, you must be granted security access in a policy  by an administrator. This access is required whether you're using the Console or the REST API with an SDK, CLI, or other tool. If you get a message that you don’t have permission or are unauthorized, verify with your administrator what type of access you have and which compartment  to work in.

For more information and examples of OCI IAM policies you can use to create, modify, and delete VMware Solution resouces, see Identity and Access Management (IAM) Policies.

VLAN Tasks