在 VMM 构造中设置 SDN 软件负载平衡器Set up an SDN software load balancer in the VMM fabric

重要

此版本的 Virtual Machine Manager (VMM) 已停止提供支持,建议升级到 VMM 2019This version of Virtual Machine Manager (VMM) has reached the end of support, we recommend you to upgrade to VMM 2019.

本文介绍如何在 System Center - Virtual Machine Manager (VMM) 构造中部署软件定义的网络 (SDN) 软件负载均衡器 (SLB)。This article describes how to deploy a Software Defined Networking (SDN) software load balancer (SLB) in the System Center - Virtual Machine Manager (VMM) fabric.

SLB 可在虚拟网络资源中均匀分布租户和租户客户之间的网络流量,从而使多台服务器可以托管相同的工作负荷以提供高可用性和可伸缩性。The SLB enables even distribution of tenant and tenant customer network traffic among virtual network resources, so that multiple servers can host the same workload to provide high availability and scalability. 了解详情Learn more.

可使用 VMM 部署网络控制器和软件负载均衡器。You can use VMM to deploy a network controller and a software load balancer. 设置 SLB 后,可在 SDN 基础结构中利用多路复用和 NAT 功能。After you set up the SLB, you can leverage the multiplexing and NAT capabilities in your SDN infrastructure.

备注

  • 从 VMM 2019 UR1 开始,“一个连接的网络”类型已更改为“连接的网络”From VMM 2019 UR1, One Connected network type is changed to Connected Network
  • VMM 2019 UR2 及更高版本支持 IPv6。VMM 2019 UR2 and later supports IPv6.

准备工作Before you start

确保以下信息:Ensure the following:

  • 规划:阅读如何规划软件定义的网络,并参看文档中的规划拓扑。Planning: Read about planning a software defined network, and review the planning topology in this document. 该图展示了一个 4 节点设置示例。The diagram shows a sample 4-node setup. 该设置高度可用,具有 3 个网络控制器节点 (VM)和 3 个 SLB/MUX 节点。The setup is highly available with Three network controller nodes (VM), and Three SLB/MUX nodes. 该图展示了 2 个租户和 1 个分解为 2 个虚拟子网的虚拟网络,两个子网用于模拟 Web 层和数据库层。It shows Two tenants with One virtual network broken into Two virtual subnets to simulate a web tier and a database tier. 基础结构和租户虚拟机均可在所有物理主机之间重新分布。Both the infrastructure and tenant virtual machines can be redistributed across any physical host.
  • 网络控制器:VMM 构造中应已部署 SDN 网络控制器,以便在设置负载平衡前运行计算和网络基础结构。Network controller: You should have an SDN network controller deployed in the VMM fabric, so that you have the compute and network infrastructure running before you set up the load balancing.
  • SSL 证书:若要导入 SLB 服务模板,将需要准备一个 SSL 证书。SSL certificate: To import the SLB service template you'll need to prepare an SSL certificate. 在网络控制器部署过程中使证书可用。You made the certificate available during network controller deployment. 若要使用在 SLB 的网络控制器部署中准备的 SSL 证书,请右键单击此证书并以 .CER 格式导出(无需密码)。To use the certificate you prepared in network controller deployment for SLB, right-click the certificate and export it without a password in .CER format. 将其放置在库中设置网络控制器时创建的 NCCertificate.CR 文件夹中。Place it in the library, in the NCCertificate.CR folder you created when you set up the network controller.
  • 服务模板:VMM 使用服务模板实现 SLB 部署自动化。Service template: VMM uses a service template to automate SLB deployment. 服务模板支持第 1 代和第 2 代 VM 上的多节点部署。Service templates support multi-node deployment on generation 1 and generation 2 VMs.
  • SLB VM:所有 SLB 虚拟机都必须运行安装了最新修补程序的 Windows Server 2016。SLB VMs: All the SLB virtual machines must be running Windows Server 2016 with the latest patches installed.
  • HNV 网络:确保在 NC 验证期间创建了提供程序 HNV 网络。HNV Network: Ensure that you created the Provider HNV network as part of NC validation. 了解详细信息Learn more.

部署步骤Deployment steps

  1. 准备 SSL 证书:将证书放入 VMM 库。Prepare the SSL certificate: Put the certificate in the VMM library.
  2. 下载服务模板:下载 SLB/MUX 部署时所需的服务模板。Download the service template: Download the service template that you need to deploy the SLB/MUX.
  3. 创建传输逻辑网络:需创建逻辑网络:Create the transit logical networks: You need to create logical networks:
    • 用于镜像传输(前端)物理网络的逻辑网络。A logical network to mirror the transit (Frontend) physical network.
    • 专用虚拟 IP (VIP) 和公共 VIP 网络用于将 VIP 分配给 SLB 服务。Private virtual IP (VIP) and public VIP networks, to assign VIPs to the SLB service.
  4. 创建专用和公共 VIP 逻辑网络:专用虚拟 IP (VIP) 和公共 VIP 网络用于将 VIP 分配给 SLB 服务。Create private and public VIP logical networks: Private virtual IP (VIP) and public VIP networks, to assign VIPs to the SLB service.
  5. 导入服务模板:导入和自定义 SLB 服务模板。Import the service template: Import and customize the SLB service template.
  6. 部署 SLB:将 SLB 部署为 VMM 服务,并配置服务属性。Deploy SLB: Deploy SLB as a VMM service, and configure the service properties.
  7. 验证部署:在 SLB/MUX 实例和 BGP 路由器之间配置 BGP 对等互连,将公共 IP 地址分配给租户 VM 或服务,并从网络外部访问 VM 或服务。Validate the deployment: Configure BGP peering between the SLB/MUX instance and a BGP router, assign a public IP address to a tenant VM or service, and access the VM or service from outside the network.

准备证书Prepare the certificate

请确保 NC 部署期间创建的 SSL 证书已复制到 NCCertificate.CR 文件夹。Ensure that the SSL certificate that you created during the NC deployment is copied to NCCertificate.CR folder.

下载服务模板Download the service template

  1. Microsoft SDN GitHub 存储库下载 SDN 文件夹,并通过“VMM”**** >“模板”**** > “SLB”**** 将模板复制到 VMM 服务器上的本地路径。Download the SDN folder from the Microsoft SDN GitHub repository and copy the templates from VMM >Templates > SLB to a local path on the VMM server.
  2. 将内容提取到本地计算机的文件夹。Extract the contents to a folder on a local computer. 稍后将它们导入到库中。You'll import them to the library later.

下载内容包含两个模板:The download contains Two templates:

  • SLB 生产第 1 代 VM.xml 模板适用于在第 1 代虚拟机上部署 SLB 服务。The SLB Production Generation 1 VM.xml template is for deploying the SLB Service on generation 1 virtual machines.
  • SLB 生产第 2 代 VM.xml 适用于在第 2 代虚拟机上部署 SLB 服务。The SLB Production Generation 2 VM.xml is for deploying the SLB Service on Generation 2 virtual machines.

这两个模板的默认虚拟机计数都是 3 个,可在服务模板设计器中更改此计数。Both the templates have a default count of three virtual machines which can be changed in the service template designer.

我们建议对 SLB 部署使用简化的 SDN 拓扑(2 个物理网络)。We recommend to use simplified SDN topology (2 physical network) for SLB deployments. 使用简化的 SDN 拓扑模板时,跳过“创建传输逻辑网络”。Skip creating transit logical network when simplified SDN topology template is used.

创建传输逻辑网络Create the transit logical network

  1. 打开“创建逻辑网络向导”****,然后键入名称和可选描述。Open the Create logical network Wizard, and type a Name and optional description.
  2. 在“设置”中,选择“一个连接的网络”。In Settings, select One Connected Network. 选中“创建同名的 VM 网络”框以允许虚拟机直接访问此逻辑网络,并选择“由网络控制器托管”。Select Create a VM network with the same name box to allow virtual machines to access this logical network directly, and Managed by the network controller.
  • 对于 VMM 2019 UR1 及更高版本,在“设置”中,选择“连接的网络”,然后单击“由网络控制器托管”。For VMM 2019 UR1 and later, in Settings, select Connected Network, and select Managed by the Network Controller.
  1. 在“网络站点”**** 中,为子网添加网络站点信息。In Network Site, add the network site information for your subnet.
  2. 查看“摘要”**** 信息,然后完成逻辑网络向导。Review the Summary information and complete the logical network wizard.

为传输逻辑网络创建 IP 地址池Create an IP address pool for the transit logical network

此 IP 地址池中的 DIP 被分配到 SLB/MUX 虚拟机和 BGP 对等节点虚拟机(如果已部署)。This is the IP address pool where DIPs are assigned to the SLB/MUX virtual machines and BGP Peer virtual machine (if deployed).

此 IP 地址池中的 DIP 被分配到 SLB/MUX 虚拟机和 BGP 对等节点虚拟机(如果已部署)。This is the IP address pool where DIPs are assigned to the SLB/MUX virtual machines and BGP Peer virtual machine (if deployed). 从 VMM 2019 UR1 开始,可以使用“创建逻辑网络”向导来创建 IP 地址池。From VMM 2019 UR1, you can create IP address pool using Create Logical Network wizard.

注意Note:

  • 请确保使用与传输网络 IP 地址空间对应的 IP 地址范围。Ensure you use the IP address range that corresponds to your transit network IP address space. 不要包含即将创建的 IP 池中子网的第一个 IP 地址。Don't include the first IP address of your subnet in the IP pool you are about to create. 例如,如果可用子网为 .1 到 .254,则范围应从 .2 开始。For example, if your available subnet is from .1 to .254, start your range at .2.
  • 创建传输逻辑网络后,请确保将此逻辑网络与网络控制器部署过程中创建的管理交换机上行端口配置文件相关联。After you create the Transit logical network, ensure you associate this logical network with the Management switch uplink port profile you created during the network controller deployment.

创建 IP 地址池Create the IP address pool:

  1. 右键单击逻辑网络 >“创建 IP 池”。Right-click the logical network > Create IP Pool.

  2. 为 IP 池提供名称和可选描述,并确保所选逻辑网络正确。Provide a Name and optional description for the IP Pool and ensure that the correct logical network is selected.

  3. 在“网络站点”**** 中,选择此 IP 地址池要服务的子网。In Network Site, select the subnet that this IP address pool will service. 如果 HNV 提供程序网络中存在多个子网,需要为每个子网创建静态 IP 地址池。If you have more than one subnet as part of your HNV provider network, you need to create a static IP address pool for each subnet. 如果只有一个站点(如示例拓扑),单击“下一步”**** 即可。If you have only one site (for example, like the sample topology) then you can just click Next.

  4. 在“IP 地址范围”中,配置起始和结束 IP 地址。In IP Address range configure the starting and ending IP address. 请勿使用可用子网的前三个 IP 地址。Don't use the first three IP addresses of your available subnet. 例如,如果可用子网为 .1 到 .254,地址应从 .4 或 .4 之后开始。For example, if your available subnet is from .1 to .254, start your range at .4 or greater.

  5. 接下来配置默认网关地址。Next, configure the default gateway address. 单击“默认网关”**** 框旁的“插入”****,键入地址并使用默认指标。Click Insert next to the Default gateways box, type the address and use the default metric. (可选)配置 DNS 和 WINS。Optionally configure DNS and WINS.

  6. 查看摘要信息,然后单击“完成”,完成该向导。Review the summary information and click Finish to complete the wizard.

    注意:确保逻辑网络与管理交换机上行端口配置文件关联。Note: Ensure you associate the logical network with the management switch uplink port profile.

创建私有和公共 VIP 逻辑网络Create private and public VIP logical networks

需要专用 VIP 地址池将 VIP 和公共 VIP 分配给 SLB 管理器服务。You need a private VIP address pool to assign a VIP, and a public VIP, to the SLB Manager service. 请注意,这两个网络的创建过程相似,但存在部分差异。Note that the procedure for creating both is similar but there are some differences.

创建私有 VIPCreate a private VIP:

  1. 启动“创建逻辑网络向导”****。Start the Create logical network Wizard. 为此网络键入名称和可选描述。Type a Name and optional description for this network.
  1. 在“设置”**** 中,选择“一个连接的网络”****。In Settings, select One Connected Network. 选择“创建同名的 VM 网络,允许虚拟机直接访问此逻辑网络”****。Select Create a VM network with the same name to allow virtual machines to access this logical network directly. 选择“由网络控制器托管”。Select Managed by the network controller.
  1. 在“设置”**** 中,选择“一个连接的网络”****。In Settings, select One Connected Network. 选择“创建同名的 VM 网络,允许虚拟机直接访问此逻辑网络”****。Select Create a VM network with the same name to allow virtual machines to access this logical network directly. 选择“由网络控制器托管”。Select Managed by the network controller. 对于 UR1 及更高版本,在“设置”中,选择“连接的网络”,然后选择“由网络控制器托管”。For UR1 and later, in Settings, select connected Network and select Managed by the network controller. 专用 VIPPrivate VIP
  1. 在“网络站点”**** 中,为专用 VIP 逻辑网络添加网络站点信息。In Network Site, add the network site information for your private VIP logical network.
  2. 查看“摘要”信息,然后完成该向导。Review the Summary information and complete the wizard.

创建公共 VIPCreate a public VIP:

  1. 启动“创建逻辑网络向导”****。Start the Create logical network Wizard. 为此网络键入名称和可选描述。Type a Name and optional description for this network.
  1. 在“设置”中,选择“一个连接的网络”。In Settings, select One Connected Network. 选择“创建同名的 VM 网络,允许虚拟机直接访问此逻辑网络”****。Select Create a VM network with the same name to allow virtual machines to access this logical network directly. 选择“由网络控制器托管”**** 和“公共 IP 地址网络”****。Select Managed by the network controller and Public IP Address Network.
  1. 在“设置”**** 中,选择“一个连接的网络”****。In Settings, select One Connected Network. 选择“创建同名的 VM 网络,允许虚拟机直接访问此逻辑网络”****。Select Create a VM network with the same name to allow virtual machines to access this logical network directly. 选择“由网络控制器托管”。Select Managed by the network controller.

    对于 UR1 及更高版本,在“设置”中,依次选择“连接的网络”、“由网络控制器托管”和“公共 IP 地址网络”。For UR1 and later, in Settings, select connected Network and select both Managed by the network controller and Public IP address network.

    公共 VIP

  1. 在“网络站点”**** 中,为公共 VIP 逻辑网络添加网络站点信息。In Network Site, add the network site information for your public VIP logical network.
  2. 查看“摘要”信息,然后完成该向导。Review the Summary information and complete the wizard.

创建专用和公共 VIP 网络的 IP 地址池Create IP address pools for the private and public VIP networks

  1. 右键单击专用 VIP 逻辑网络 >“创建 IP 池”。Right-click the private VIP logical network > Create IP Pool.
  2. 为 IP 池提供名称和可选描述,并确保所选逻辑网络正确。Provide a Name and optional description for the IP Pool and ensure that the correct logical network is selected.
  3. 接受默认网络站点,然后单击“下一步”。Accept the default network site, and click Next.
  1. 在“IP 地址范围”中,配置起始和结束 IP 地址。In IP Address range configure the starting and ending IP address.

    备注

    请勿使用可用子网的第一个 IP 地址。Don't use the first IP address of your available subnet. 例如,如果可用子网为 .1 到 .254,地址应从 .2 或 .2 之后开始。For example, if your available subnet is from .1 to .254, start your range at .2 or greater.

  1. 在“IP 地址范围”中,配置起始和结束 IP 地址。In IP Address range configure the starting and ending IP address. 如果使用 IPv6 地址空间,请指定 IPv6 地址池。Specify IPv6 address pool if you are using IPv6 address space.

    备注

    请勿使用可用子网的第一个 IP 地址。Don't use the first IP address of your available subnet. 例如,如果可用子网为 .1 到 .254,地址应从 .2 或 .2 之后开始。For example, if your available subnet is from .1 to .254, start your range at .2 or greater. 若要指定 VIP 范围,请不要使用 IPv6 地址的缩短形式;使用 2001:db8:0:200:0:0:0:7 格式,而不要使用 2001:db8:0:200::7。To specify the VIP range, don’t use the shortened form of IPv6 address; Use 2001:db8:0:200:0:0:0:7 format instead of 2001:db8:0:200::7.

    单个 VIP 范围内允许的最大地址数为 1024。The maximum number of addresses allowed in a single VIP range is 1024.

  1. 在“为负载平衡器 VIP 保留的 IP 地址”框中,键入子网中的 IP 地址范围。In IP addresses reserved for load balancer VIPs, type the IP address range in the subnet. 它应与指定的起始和结束地址匹配。It should match the start and end addresses you specified.
  2. 由于此池用于为 VIP 分配 IP 地址(仅通过网络控制器),因此不需要提供网关、DNS 或 WINS 信息。You don't need to provide gateway, DNS or WINS information because this pool is used to allocate IP addresses for VIPs through the network controller only. 单击“下一步”,跳过这些屏幕。Click Next to skip these screens. 键入地址,并使用默认指标。type the address and use the default metric. (可选)配置 DNS 和 WINS。Optionally configure DNS and WINS.
  3. 查看摘要信息,然后单击“完成”,完成该向导。Review the summary information and click Finish to complete the wizard.
  4. 对公共 VIP 逻辑网络重复此过程,此时键入公共网络的 IP地址范围。Repeat the procedure for the public VIP logical network, this time type the IP address range for the public network.

导入服务模板Import the service template

将服务模板导入到 VMM 库。Import the service template into the VMM library. 将在此示例中导入第 2 代模板。For this example, we'll import the generation 2 template.

  1. 单击“库” > “导入模板”。Click Library > Import Template.

  2. 浏览到服务模板文件夹,选择 SLB Production Generation 2 VM.xml 文件。Browse to your service template folder, select the SLB Production Generation 2 VM.xml file.

  3. 导入服务模板时请更新环境参数。Update the parameters for your environment as you import the service template. 请注意,在网络控制器部署过程中已导入库资源。Note that the library resources were imported during network controller deployment.

    • WinServer.vhdx:选择先前在网络控制器部署期间准备和导入的虚拟硬盘映像。WinServer.vhdx: Select the virtual hard drive image that you prepared and imported earlier, during the network controller deployment.
    • NCCertificate.CR:此库资源包含用于设置网络控制器的脚本。NCCertificate.CR: This library resource contains scripts used to set up the network controller. 映射到 VMM 库中的 NCCertificate.cr 库资源。Map to the NCCertificate.cr library resource in the VMM library.
    • EdgeDeployment.CR:映射到 VMM 库中的 EdgeDeployment.cr 库资源。EdgeDeployment.CR: Map to the EdgeDeployment.cr library resource in the VMM library.
  4. 请记住,应将之前创建的 .CER 证书复制到 NCCertificate.CR 文件夹中。Remember that you should have copied the .CER certificate that you previously created to the NCCertificate.CR folder.

  5. 在“摘要”**** 页上查看详细信息,然后单击“导入”****。On the Summary page, review the details and click Import.

    注意:可自定义服务模板。Note: You can customize the service template. 了解详细信息Learn more.

部署 SLB 服务Deploy the SLB service

现在,部署 SLB/MUX 服务实例。Now deploy an SLB/MUX service instance.

  1. 选择 SLB Production Generation 2 VM.xml 服务模板 >“配置部署”。Select the SLB Production Generation 2 VM.xml service template > Configure Deployment. 为服务实例键入名称和可选目标。Type a Name and optional destination for the service instance. 目标必须映射到一个主机组,该组包含已配置的主机。The destination must map to a host group that contains the hosts you've configured.

  2. 在“网络设置”部分中,将“TransitNetwork”映射到传输 VM 网络,并将“ManagementNetwork”映射到管理 VM 网络。In the Network Settings section, map TransitNetwork to your transit VM network and ManagementNetwork to your management VM network.

    备注

    • 使用简化的拓扑模板时,传输网络不适用。Transit network is not applicable when you are using simplified topology templates.
    • 完成映射后,“部署服务”对话框显示。The Deploy Service dialog appears after mapping is complete. 虚拟机实例最初一般为红色。It is normal for the virtual machine instances to be initially Red. 单击“刷新预览”**** 以自动为虚拟机查找合适的主机。Click Refresh Preview to automatically find suitable hosts for the virtual machine.
  3. 在“配置部署”**** 窗口的左侧,按下表中所述配置设置:On the left of the Configure Deployment window, configure the settings as detailed in the following table:

    设置Setting 要求Requirement 说明Description
    传输网络Transit network 必选Required 传输 VM 网络。Your transit VM network.
    LocalAdminLocalAdmin 必选Required 选择环境中的运行方式帐户,该帐户在虚拟机上用作本地管理员。Select a Run As Account in your environment, which will be used as the local Administrator on the virtual machines. 用户名应为“Administrator”。The user name should be Administrator.
    管理网络Management network 必选Required 选择为主机管理创建的管理 VM 网络。Choose the management VM network that you created for host management.
    MgmtDomainAccountMgmtDomainAccount 必选Required 选择一个运行方式帐户,该帐户有权将 SLB/MUX 虚拟机添加到与网络控制器相关联的 Active Directory 域。Select a Run As Account with permissions to add the SLB/MUX virtual machines to the Active Directory domain associated with the network controller. 此帐户可以是部署网络控制器时在 MgmtDomainAccount 中使用的同一帐户。This can be the same account you used in MgmtDomainAccount while deploying the network controller.
    MgmtDomainFQDNMgmtDomainFQDN 必选Required SLB/MUX 虚拟机将加入的 Active Directory 域的 FQDN。FQDN for the Active directory domain that the SLB/MUX virtual machines will join.
    SelfSignedConfigurationSelfSignedConfiguration 必选Required 如果使用自签名证书,请指定“True”****。Specify True if the certificate you are using is self-signed.
  4. 配置这些设置后,单击“部署服务”****,开始服务部署作业。After you configure these settings, click Deploy Service to begin the service deployment job. 部署时间因硬件而异,但通常介于 30 到 60 分钟之间。Deployment times will vary depending on your hardware but are typically between 30 and 60 minutes.

  5. 如果未使用批量许可的 VHDX 或如果 VHDX 没有来自答案文件的产品密钥,则在 SLB/MUX VM 设置期间,部署将停止于“产品密钥”页。If you are not using a volume licensed VHDX, or if the VHDX doesn't have the product key from an answer file, then deployment will stop at the Product Key page, during SLB/MUX VM provisioning. 需要手动访问 VM 桌面,且必须跳过或输入产品密钥。You need to manually access the VM desktop, and either skip or enter the product key.

  6. 完成服务部署作业后,确保可通过“VM 和服务” > “服务” > “服务的 VM 网络信息””查找到服务。When the service deployment job is complete, verify that your service appears in VMs and Services > Services > VM Network Information for Services. 右键单击该服务并确保在“属性”中的状态是“已部署”。Right-click the service and verify that the state is Deployed in Properties.

部署后,确保该服务出现在“所有主机” > “服务” > “服务的 VM 网络信息”中。After deployment, verify that the service appears in All Hosts > Services > VM Network Information for Services. 右键单击 SLB MUX 服务 >“属性”,并将状态指定为“已部署”。Right-click the SLB MUX service > Properties, and verify that the state is Deployed. 如果 SLB/MUX 部署失败,请确保先删除失败的服务实例,然后再重新尝试部署 SLB。If the SLB/MUX deployment fails, ensure you delete the failed service instance, before you try to deploy the SLB, once again.

如果想要缩小或扩大已部署的软件负载均衡器服务实例,请阅读此博客If you want to scale-in or scale-out a deployed software load balancer service instance, read this blog.

备注

部署 SLB 服务后,对虚拟网络适配器禁用 DNS 注册,连接到所有 SLB MUX VM 上的过渡 VM 网络。After the SLB service is deployed, disable DNS registration on the virtual network adapter, connected to the transit VM network on all the SLB MUX VMs.

配置 SLB 角色和 SLB/MUX 属性Configure the SLB role and SLB/MUX properties

注意:继续前,请确保已创建 HNV PA 逻辑网络。Note: Before you proceed, ensure you created the HNV PA Logical Network.

部署服务后,可配置其属性。Now that the service is deployed, you can configure its properties. 你需要关联使用网络控制器部署的 SLB 服务实例,然后配置 SLB/MUX 实例与 TOR 交换机或 BGP 路由器对等节点之间的 BGP 对等互连。you'll need to associate the SLB service instance that you deployed with network controller, and then configuring BGP peering between the SLB/MUX instance and a TOR switch or a BGP router peer.

  1. 单击“构造” > “网络服务”。Click Fabric > Network Service. 右键单击“网络控制器”服务 >“属性”。Right-click the network controller service > Properties.
  2. 选择“服务”选项卡 >“负载平衡器角色” > “关联服务” > “浏览”。Select the Services tab > Load Balancer Role > Associated Service > Browse.
  3. 选择之前创建的 SLB/MUX 服务实例。Select the SLB/MUX service instance you created earlier. 创建运行方式帐户。Select a Run As Account.
  4. 对于“管理 IP 地址”,使用之前创建的专用 VIP 池中的 IP 地址。For the Management IP address, use an IP address from the private VIP pool you created earlier. 可选择性地指定要从出站 NAT 中排除的 IP 地址范围。Optionally specify the IP address ranges to be excluded from the outbound NAT. 在“SLBM VIP 池”**** 下,同时选择专用和公共 VIP 池,以发布到 NC。Under SLBM VIP Pools, select both the private and public VIP pools for publishing to NC.
  5. 单击向导中“负载均衡器角色”**** 下列出的 SLB/MUX 实例。Click the SLB/MUX instance listed under Load Balancer Role in the wizard. 键入数据中心的本地 ASN 和设备或 SLB/MUX 可与其对等互连的 BGP 对等节点详细信息。Type the local ASN for your datacenter and details for the devices or BGP peers the SLB/MUX can peer with.
  6. 单击 “确定”Click OK.

SLB 服务实例现已与 SLBM 服务关联,应该可以看到 SLB/MUX 虚拟机实例和“负载平衡器角色”下列出的所有设置。The SLB service instance is now associated with the SLBM service, and you should see the SLB/MUX virtual machine instance with all the settings listed under the Load Balancer role.

验证部署Validate the deployment

部署 SLB/MUX 之后,可通过在 SLB/MUX 实例和 BGP 路由器之间配置 BGP 对等互连,将公共 IP 地址分配给租户虚拟机或服务,以及从网络外部访问租户虚拟机或服务来验证部署。After you deploy the SLB/MUX, you can validate the deployment by configuring BGP peering between the SLB/MUX instance and a BGP router, assigning a public IP address to a tenant virtual machine or Service, and accessing the tenant virtual machine or service from outside the network.

使用以下过程进行验证Use the following procedure to validate:

  1. 在向导中输入外部路由器的详细信息。Enter your external router details in the wizard. 例如:For example:

    IP 地址

  2. 单击“确定”**** 完成 SLB/MUX 服务实例配置。Click OK to complete the SLB/MUX service instance configuration.

  3. 查看“作业”窗口,验证是否已成功完成以下作业:“使用所需配置更新构造角色”,以及“将服务实例与构造角色关联”。Check the Jobs window to verify that the Update Fabric Role with required configuration, and Associate service instance with fabric role jobs have completed successfully.

  4. 若要完成该 BGP 对等互连操作,需要配置 BGP,使其与路由器上的 SLB/MUX 实例对等。To complete the BGP peering operation, you need to configure BGP to peer with your SLB/MUX instance on the router. 如果使用硬件路由器,则需要参考供应商文档关于如何为该设备设置 BGP 对等互连的说明。If you use a hardware router, you need to consult your vendor’s documentation regarding how to setup BGP peering for that device.

    还需了解之前已部署的 SLB/MUX 实例的 IP 地址。You also need to know the IP address of the SLB/MUX instance that you deployed earlier. 若要执行此操作,可以登录到 SLB MUX 虚拟机,并从命令提示符下运行 ipconfig /all,也可以从 VMM 控制台获取 IP 地址。To do this, you can either log on to the SLB MUX virtual machine and run ipconfig /all from the command prompt, or you can get the IP address from the VMM console.

    备注:输入来自传输网络的 IP。Note: Enter an IP from the transit network.

  5. 如果在对等互连完成后创建一个新的 VIP 池,需要使用 VMM 控制台播发所有 VIP 地址池。If you create a new VIP pool after peering is complete, you need to advertise all the VIP address pools using the VMM console.

验证后,可以开始使用 SLB 进行负载均衡。After you validate, you can start using the SLB for load balancing. 请参阅负载均衡网络流量配置 NAT 规则了解相关信息。For related information, see load balance network traffic and configure NAT rules.

从 SDN 构造中删除软件负载均衡器Remove the software load balancer from the SDN fabric

使用这些步骤从 SDN 构造中删除 SLB。Use these steps to remove the SLB from the SDN fabric.

后续步骤Next steps

创建 RAS 网关Create a RAS gateway