Skip to main content

Private Networking (Public Cloud)

Customers using public cloud infrastructure can create a Frame account using Frame-managed networking, Private Networking so users must access the Frame workload VMs using the private IP addresses of the Frame workload VMs. Since the Frame workload VMs have no public IP addresses, the customer must provide a network path between the end user and the private Frame workload VMs. For egress to the Internet, these workload VMs communicate directly to the Internet through a NAT gateway in the public cloud infrastructure.

note

Customers who choose to create a Frame account in their own managed network where all users access the Frame workload VMs within their private network must follow the networking requirements defined below.

If users must access network resources on-premises or in a private network, a private network connection (e.g., VPN, direct connection, SD-WAN, VPC/VNET peering) with the appropriate routing must be implemented.

FRP7 Networking

FRP7 is a tcp-based protocol for all communication between the end user and the Frame workload VMs.

Public IaaS - Private Networking (FRP7)

Public IaaS - Private Networking (FRP7)

The following table describes the required protocols and ports for Frame accounts using Private Networking and FRP7 with the commercial Frame control plane.

Source to DestinationSource IP addressDestination FQDN(s)Protocol/port
Workload VMs to Frame PlatformPublic IP addressgateway-external-api-prod.frame.nutanix.com
img.console.nutanix.com
img.frame.nutanix.com
prod-kds-5683567dcbd60804cb34.s3.us-east-1.amazonaws.com
assets.console.nutanix.com
downloads.console.nutanix.com
logging.console.nutanix.com
download.visualstudio.microsoft.com
tcp/443 (HTTPS)
Workload VMs to Frame PlatformPublic IP addresscch.console.nutanix.comtcp/443 (HTTPS, WSS)
End user to Frame PlatformPublic IP addressconsole.nutanix.com
img.frame.nutanix.com
img.console.nutanix.com
cpanel-backend.console.nutanix.com
terminal-prod.frame.nutanix.com
logging.console.nutanix.com
login.console.nutanix.com (for Frame IdP, if used)
tcp/443 (HTTPS)
End user to Workload VMPublic IP address*.nutanixframe.com or *.nutanix-frame.com resolving to a private IP addresstcp/443 (HTTPS, WSS)

FRP8 Networking

FRP8 is a udp-based protocol for all communication between the end user and the Frame workload VMs.

Public IaaS - Private Networking (FRP8)

Public IaaS - Private Networking (FRP8)

The following table describes the required protocols and ports for Frame accounts using Private Networking and FRP8 with the commercial Frame control plane.

Source to DestinationSource IP addressDestination FQDN(s)Protocol/port
Workload VMs to Frame PlatformPublic IP addressgateway-external-api-prod.frame.nutanix.com
img.console.nutanix.com
img.frame.nutanix.com
prod-kds-5683567dcbd60804cb34.s3.us-east-1.amazonaws.com
assets.console.nutanix.com
downloads.console.nutanix.com
logging.console.nutanix.com
download.visualstudio.microsoft.com
tcp/443 (HTTPS)
Workload VMs to Frame PlatformPublic IP addresscch.console.nutanix.com
messaging.console.nutanix.com
tcp/443 (HTTPS, WSS)
End user to Frame PlatformPublic IP addressconsole.nutanix.com
img.frame.nutanix.com
img.console.nutanix.com
cpanel-backend.console.nutanix.com
terminal-prod.frame.nutanix.com
logging.console.nutanix.com
login.console.nutanix.com (for Frame IdP, if used)
tcp/443 (HTTPS)
End user to Frame PlatformPublic IP addressmessaging.console.nutanix.comtcp/443 (HTTPS, WSS)
End user to Workload VMPrivate IP address*.nutanixframe.com or *.nutanix-frame.com resolving to a private IP addressudp/4503-4509, tcp/4503-4509 (optional)