Page tree

Contents

In your hybrid cloud environment, you can deploy BloxOne DDI as a service on an on-prem host, so you can take advantage of the DNS, DHCP, and IPAM services BloxOne DDI offers. You can also purchase the BloxOne Threat Defense license and deploy the DNS forwarding proxy on the same on-prem host, so you can forward recursive DNS queries through the DNS forwarding proxy to BloxOne Threat Defense Cloud in which you can configure security policies. For information about configuring DNS forwarding proxy and BloxOne DDI DNS services, see Configuring DNS Forwarding Proxy and BloxOne DDI DNS. For information about BloxOne Threat Defense Cloud, see BloxOne Threat Defense Cloud.

You can deploy on-prem hosts on BloxOne appliances you purchase from Infoblox, in bare-metal Docker containers, or on virtual machines using the Docker or OVA package that Infoblox provides. For information about on-prem hosts, see Managing On-Prem Hosts.

Depending on your network infrastructure, you can configure MTU (Maximum Transmission Unit) for your on-prem hosts. MTU is the largest size packet, specified in octets (eight-bit bytes), that can be sent in a single layer network transaction. MTU configuration is supported for both IPv4 and IPv6 networks, and the default is set to 1500. You can overwrite the default to adjust the MTU to a smaller or larger unit based on your network requirements. You can also enable or disable path MTU discovery. The default is enabled. Note that you can configure MTU only for OVA deployments when you first deploy an OVA on-prem host. For information, see ESXi OVA Deployment Using vCenter and vCenter OVA Deployment to ESXi Using ovftool. After deployment, you can adjust the MTU value through the Cloud Service Portal or Device UI. However, you can enable or disable path MTU discovery only through the Device UI. For more information, see Viewing and Modifying On-Prem Host Configuration and Troubleshooting On-Prem Hosts.

Before you start your BloxOne DDI deployment, review the following topics to ensure that your environment supports the deployment:

You can deploy BloxOne DDI using one of the following methods.

BloxOne B1-105 Appliance

After you have provisioned the B1-105 appliance, follow the instructions in Deploying the BloxOne B1-105 Appliance to complete the deployment.

The BloxOne B1-105 network service appliance provides a reliable and secure platform for the BloxOne DDI application, a cloud-managed network service solution that provides scalable DNS, DHCP, and IP Address Management. When you purchase a B1-105 appliance, its serial number is automatically associated with your user account and uploaded to the Cloud Services Portal as an on-prem host.

Note

Physical on-prem hosts are automatically created when they are shipped by Infoblox with the correct serial number. You should not manually create physical hosts through the Cloud Services Portal.

Bare-Metal Docker Container

You can download the Docker container through a download from the Cloud Services Portal. Before installing the Infoblox Docker container package, complete the following initial configuration:

  1. Create an on-prem host through the Cloud Services Portal, as described in Creating On-Prem Host.
  2. After you save the configuration for the newly created on-prem host, use the join token to connect the host to the Cloud Services Portal. For information about join tokens, see Managing Join Tokens for On-Prem Hosts.

  3. In the Cloud Services Portal, click Administration -> Downloads to download either the Docker container package.
  4. To deploy BloxOne DDI using the Infoblox Docker container, following the instructions in Bare-Metal Docker Deployment.

    Note

    Infoblox recommends that you use Docker version 19.03.5 to avoid an issue in which the Docker container might re-deploy continuously, resulting in multiple deployments of the on-prem host. In addition, Kubernetes is not supported.

Virtual Appliances

You can download the OVA image through a download from the Cloud Services Portal. Virtual on-prem hosts are automatically created when you use a join token to connect them to BloxOne DDI. For information about join tokens, see Managing Join Tokens. Before installing the Infoblox OVA package, complete the following initial configuration:

  1. Create an on-prem host through the Cloud Services Portal, as described in Creating On-Prem Host.
  2. After you save the configuration for the newly created on-prem host, use the join token to connect the host to the Cloud Services Portal. For information about join tokens, see Managing Join Tokens for On-Prem Hosts.

  3. In the Cloud Services Portal, click Administration -> Downloads to download the OVA package.
  4. To deploy BloxOne DDI using the Infoblox OVA package, follow the instructions in one of the following:

Note

If you need to change the IP address of the on-prem host after the configuration, you must restart the system for the change to take effect.

Microsoft Azure Deployment


You can deploy an on-prem host in Microsoft Azure to deliver BloxOne services, such as BloxOne DDI or BloxOne Threat Defense, to the instances in your Azure-based deployments. To know more about the prerequisites, known limitations, supported Azure VM flavors, and the process to deploy on-prem hosts in Azure, see Microsoft Azure Deployment.

  • No labels

This page has no comments.