Public Networking (Public Cloud)
Customers using public cloud infrastructure can create a Frame account using Frame-managed networking, Public Networking so users on the Internet can directly access the Frame workload VMs using the public IP addresses of the Frame workload VMs. For egress to the Internet, these workload VMs communicate directly to the Internet for publicly-accessible resources.
If users must access network resources on-premises or in a private network, a private network connection (e.g., VPN, direct connection, SD-WAN, VPC/VNET peering) with the appropriate routing must be implemented.
To ensure proper network communication to the Frame Platform there are two Backends available depending on which one should be used for the connection for services and VMs please refer to the corresponding networking requirements:
USE (located in the United states- Location AWS us-east-1Virginia)
DEU ( located in European Union - Location AWS eu-central-1 Frankfurt)
FRP8 Networking
FRP8 is a udp-based protocol for all communication between the end user and the Frame workload VMs.
Dizzion is in the process of migrating from *.nutanix.com to *.difr.com domain. For the
time being, the additional difr.com domains will need to be whitelisted in addition to the
existing nutanix.com domains. At a later time, once Dizzion has confirmed there is no
dependencies on the nutanix.com domains, we will send out a communication notifying
customers that all nutanix.com domains can be safely removed from your whitelist
configurations.
IMPORTANT: For IMG Domains, Customers can whitelist new IMG difr domains but
should NOT change SAML 2 configurations to use new difr.com domains. SAML 2
configurations should continue to use img.console.nutanix.com and
img.frame.nutanix.com until further direction from Dizzion.
USE: Public IaaS - Public Networking (FRP8)
The following table lists the required protocols and ports for Frame accounts using Public Networking and FRP8.
|
Source to Destination
|
Source IP address | Destination FQDN(s) | Protocol/port |
|---|---|---|---|
| Workload VMs to Frame Platform | Public IP address |
|
tcp/443 (HTTPS) |
| Workload VMs to Frame Platform | Public IP address |
|
tcp/443 (HTTPS, WSS) |
| Workload VMs to Frame Platform | Public IP address |
|
udp/3478 |
| End user to Frame Platform | Public IP address |
|
tcp/443 (HTTPS) |
| End user to Frame Platform | Public IP address |
|
tcp/443 (HTTPS, WSS) |
| End user to Workload VM | Public IP address |
|
udp/4503-4509, tcp/4503-4509 (optional) |
DEU: Public IaaS - Public Networking (FRP8
The following table lists the required protocols and ports for Frame accounts using Public Networking and FRP8, specifically for organizations electing to use Dizzion's EU control plane.
DEU: Public Networking (Public Cloud)
| Source to Destination | Source IP address | Destination FQDN(s) | Protocol/port |
|---|---|---|---|
| Workload VMs to Frame Platform | Public IP address |
|
tcp/443 (HTTPS) |
| Workload VMs to Frame Platform | Public IP address |
|
tcp/443 (HTTPS, WSS) |
| Workload VMs to Frame Platform | Public IP address |
|
udp/3478 |
| End user to Frame Platform | Public IP address |
|
tcp/443 (HTTPS) |
| End user to Frame Platform | Public IP address |
|
tcp/443 (HTTPS, WSS) |
| End user to Workload VM | Public IP address |
|
udp/4503-4509, tcp/4503-4509 (optional) |
FRP7 Networking End of Life
Warning
FRP7 reached end-of-life (EOL) effective June 30, 2024. Refer to the EOL Announcement of December 18, 2023 for further details.