NSX-T 2.0 Lab Build: Deploying NSX Manager
Posts in this series
- NSX-T 2.0 Lab Build: Deploying NSX Manager
- NSX-T 2.0 Lab Build: Deploying Controller Cluster
- NSX-T 2.0 Lab Build: ESXi Host Preparation
- NSX-T 2.0 Lab Build: Adding a vCenter Compute Manager and Preparing Hosts
- NSX-T 2.0 Lab Build: Edge Installation
- NSX-T 2.0 Lab Build: Transport Zones and Transport Nodes
- NST-T 2.0 Lab Build: Logical Router Configuration
- NSX-T 2.0 Lab Build: Upgrading to NSX-T 2.1
Disclaimer! I am learning NSX-T, part of my learning is to deploy in my lab – if I contradict the official docs then go with the docs!
This NSX-T lab environment is built as a nested lab on my physical hosts. There are four physical ESXi hosts, onto which I will deploy three ESXi VMs, a vCenter Server Appliance, NSX Manager, an NSX Controller cluster, and two NSX Edge Nodes.
I will follow the deployment plan from the NSX-T 2.0 documentation:
- Install NSX Manager.
- Install NSX Controllers.
- Join NSX Controllers with the management plane.
- Initialize the control cluster to create a master controller.
- Join NSX Controllers into a control cluster.
- Join hypervisor hosts with the management plane.
- Install NSX Edges.
- Join NSX Edges with the management plane.
- Create transport zones and transport nodes.
When this post series is complete, the network topology should be something like this, with two hostswitches configured. The ESXi Hosts will have a Tunnel Endpoint IP address, as will the Edge. The Edge will also have an interface configured for a VLAN uplink.
In this post I will walk through deploying and configuring the NSX Manager.
Book Review: VMware vSphere 6.5 Host Resources Deep Dive
The Host Resources Deep Dive book by Frank Denneman and Niels Hagoort has been one of the most widely anticipated books in the VMware community – previous deep dive books by Frank (co-authored with Duncan Epping), tantalising blog posts and captivating presentations have whet the appetite for the last year or so. Having sat through some of these presentations at VMUGs and VMworld I can tell you the depth and understanding that the authors bring to the table is immense.
I have not rushed to write a review of this book for two reasons, firstly I wanted to do it justice, and that meant that I needed to read it properly. The second reason is that this is a big book with well over 560 pages of content, and that requires some time!
Alexa, turn on my workload cluster
Like many other geeks out there, I received an Amazon Echo device this Christmas, and whether it’s a fad or not, I’ve spent a few happy hours setting up my Hue lights and some other automation. The room in the house with the most automation is my office – the novelty may wear off, but walking in each morning and saying “Alexa, turn on my office” and having everything wake up for me is really cool.
I already have a vRealize Orchestrator workflow to shutdown my workload cluster. What I want to do is trigger that by a voice command from Alexa. (more…)
Building a vRealize Automation NSX Lab on Ravello
If you’re unfamiliar with Ravello’s offering (where have you been?!) then it’s basically a custom hypervisor (HVX) running on either AWS or Google Cloud that allows you to run nested environments on those platforms. I did say it’s awesome.
As an avid home-lab enthusiast Ravello initially felt weird, but having used it for a while I can definitely see the potential to augment, and in some cases completely replace the home lab. I spent some time going through Nigel Poulton’s AWS course on Pluralsight to get a better understanding of the AWS platform and I think that helped, but it’s definitely not required to get started on Ravello.
One more thing to add before I start the setup – even if I didn’t have 1000 hours free, the pricing model means that you could run your lab on Ravello for a fraction of the cost of a higher spec home lab. It’s definitely an option to consider unless you’re running your lab 24/7.
vSphere 6 HA SSO (PSC) with NetScaler VPX Load Balancer for vRealize Automation
Posts in this series
- vSphere 6 HA SSO (PSC) with NetScaler VPX Load Balancer for vRealize Automation
- Deploying vRealize Automation 6.2 Appliance Cluster with Postgres Replication
- Deploying fully distributed vRealize Automation IaaS components - Part 1: Pre-requisites
- Deploying fully distributed vRealize Automation IaaS components - Part 2: Database, Web and Manager services
- Deploying fully distributed vRealize Automation instance - Configuring NetScaler Monitors
Providing a highly available single sign on for vRealize Automation is a fundamental part of ensuring the availability of the platform. Traditionally, (vCAC) vRA uses the Identity Appliance and relies on vSphere HA to provide the availability of the SSO platform, but in a fully distributed HA environment that’s not really good enough. It’s also possible to use the vSphere 5.5 SSO install in a HA configuration – however, many companies are making the move to the latest version of vSphere and don’t necessarily want to maintain a 5.5 HA SSO instance.
The vSphere 6 Platform Services Controller can be deployed as an appliance or installed on a Windows host – personally I am a huge fan of the appliances and I tend to use them in my designs because of the simplicity and ease of use. A pair of PSCs can be deployed as a highly available SSO solution for vRealize Automation 6.2, replacing the Identity Appliance or vSphere 5.5. SSO, using either a NetScaler or F5 load balancer to load balance connections and provide the availability.
Personally, I’d prefer to use an NSX Edge Services Gateway to load balance the PSCs, but at the time of writing the Edge does not support the “Ability to have session affinity to the same PSC node across all configured ports”. See KB2112736 for more details.
So, this guide will show you how to create a highly available pair of Platform Service Controllers, configure one as a subordinate Certificate Authority to a Microsoft Certificate Services CA, and then load balance them with a NetScaler VPX. Although I am using just two node, you can in fact use the same method to load balance up to four. (more…)
vSphere 6 Lab Upgrade – vCenter Server Appliance
I tested vSphere 6 quite intensively when it was in beta, but I didn’t ever upgrade my lab – basically because I need a stable environment to work on and I wasn’t sure that I could maintain that with the beta.
Slow or failed logon to VCSA 5.5 with vCOps in the environment
Recently I encountered this problem in a customer site whereby the logon to VCSA 5.5 would either time out, or take 3-5 minutes to actually log on.
Running a netstat on the VCSA during the attempt to logon showed there was a SYN packet sent to the vCOps appliance on port 443 that never established a connection. Another check was attempting to connect using curl https://<vCOpsIP> –k – this would time out.
Ensuring connectivity to the vCOps appliance over port 443 fixed the logon timeout issue – presumably a the connection attempt holds up the logon process (single threaded?!) which causes a timeout in the logon process.
Book Review: Learning Veeam Backup and Replication for VMware vSphere
I was recently sent a copy of Christian Mohn’s new book “Learning Veeam Backup and Replication for VMware vSphere” to review, and as ever this is my honest opinion of this book. I am not receiving anything other than the copy of the book for this review. I don’t work for a vendor, so I have no axe to grind!
The book starts of with explanations of basic backup strategies and explains principals like Grandfather-Father-Son media rotation and RPO/RTOs. From there it dives into the architecture of Veeam BR and its components. The remainder of chapter 1 covers a walk through of the installation of the product.
Chapter 2 covers the configuration of backups, and gives some background into the different types of backups within Veeam, their drawbacks, and how Veeam have addressed them. For example solving the problem of having to combine incremental backups with the last full, which Veeam solve with synthetic full backups. The chapter also covers backup proxies, and configuring backup jobs, copying to tape or remote repository, and the WAN accelerator.
The next chapter walks through performing restores with Veeam, including full VMs, VM files (like a vmx) and VMDKs, and guest OS files.
Chapter 4 covers the replication part of Veeam Backup and Replication, and after explaining the differences between backup and replication it covers the infrastructure required before stepping through the set-up of a replication job. It also covers the process for fail over and fail-back, and here is one example of where I’d like to see some comparison – e.g. with VMware’s SRM, which has a similar feature set.
The fifth and final chapter covers some of the more unique features of Veeam’s offering, and I thought it provided a good explanation of those features – here is where I think walk through of setup/config would be most valuable, but it reads more as a feature list than a learning guide.
I found the writing style easy to read and I thought it flowed quite well throughout the book – this is always impressive when the author’s first language isn’t English.
I did find that I had to keep reminding myself that the book is specifically written about a single product rather than a more agnostic approach – I felt it read more like a vendor produced document. Personally, I would have liked some comparison with other well-known backup products to ground it a little and perhaps some more real-world explanations to distinguish it from vendor install documentation.
Perhaps that’s a little unfair as the book is specifically about that one product, and there is added value in the explanations provided. The introduction specifically states that it’s aimed at “vSphere administrators looking for an introduction to Veeam Backup & Replication v7 for VMware” and it definitely does provide that.
Book review: Networking for VMware Administrators
I recently got my hands on a copy* of Chris Wahl and Steve Pantol’s Networking for VMware Administrators and was very keen to read it – especially given the reputation of the authors. I came to the book as someone who is at CCNA level (although now expired) and someone who regularly designs complex VMware networks using standard and distributed switches. I would class myself as having a fairly decent understanding of networking, though not a networking specialist.
The book starts out at from a really basic level explaining OSI, what a protocol is etc. and builds on the foundation set out as it progresses. Part I of the book gives are really good explanation of not only the basics of networking, but a lot of the “why” as well. If you’ve done CCNA level networking exams then you will know most of this stuff – but it’s always good to refresh, and maybe cover any gaps.
Part II of the book translates the foundations set out in Part I into the virtual world and takes you through the similarities and differences with between virtual and physical. It gives a good overview of the vSphere Standard Switch (VSS) and vSphere Distributed Switch (vDS) and even has a chapter on the Cisco 1000v. One of the really useful parts of the book are the lab examples and designs, which takes you though the design process and considerations to get to the solution. (more…)