VLANs and subnets in VMware Solutions

End of Marketing: As of 31 October 2025, new deployments of VMware Solutions offerings are no longer available for new customers. Existing customers can still use and expand their active VMware® workloads on IBM Cloud®. For more information, see End of Marketing for VMware on IBM Cloud.

The following table provides information about the subnets that are used in each VLAN. You can either order new VLANs or subnets for VMware Cloud Foundation for Classic - Automated instances or you can select existing VLANs. You can define your firewall rules based on the subnets and ports that the network traffic goes through.

It is not recommended to put a firewall on a secondary private VLAN that has storage and VMware vSphere vMotion® traffic.

Subnets for public, private, and secondary private VLANs
Public VLAN	Private VLAN	Secondary private VLAN
Primary subnet	Primary subnet
Portable subnets Management edge gateway public Customer edge gateway public	Portable subnets Infrastructure VMs (VMware vCenter Server®, VMware NSX® Managers, NSX edges, Microsoft® Active Directory VMs, IBM® CloudDriver automation VSI) Customer edge gateway private	Portable subnets VMware vSAN™ traffic Shared storage traffic vMotion traffic NSX TEP traffic for hosts and edges

VLANs and subnets in VMware Solutions

Related links