Home > Blogs > VMware vCloud Blog > Tag Archives: How-To

Tag Archives: How-To

Backup and Restore of vCloud Director Consumer Workloads

Posted on by

By: Massimo Re Ferre’, vCloud Architect

This is a repost from Massimo’s personal blog, IT 2.0 – Next Generation IT Infrastructures.

Backup and restore (of consumer workloads) in a vCloud Director environment is a hot topic. When you deal with Pets (Vs. Cattle) it is important that you take care of your little lovely friends workloads. Part of the effort of taking care of them includes backing them up regularly and, more importantly,  restoring them when needed.

This industry has achieved a high level of maturity in terms of best practices (and tooling) for backing up and restoring workloads running on vSphere virtual infrastructures. As we introduced an additional layer on top of vSphere (vCD) we broke, so to speak, some of the tools and many of the best practices. Even more challenging, we introduced concepts that didn’t exist before in a virtualization scenario (cloud providers and cloud consumers).

People tend to always give a crisp yes / no when faced with the question “can you backup/restore workloads running in vCloud Director”? I think the matter is more complex than that. It really boils down to what you want to do (more on this later).

I was tasked (I actually volunteered) to double click on this. Admittedly I started this effort with a short minded view that was (on the line of) “let’s find out which backup and restore tools integrate with vCloud Director”. As I started to lay out the content it became very clear that I was trying to find out the micro-details without having clear the potential macro-architectures and big picture. I started to lay out the context and I thought that making it public would help gathering more feedbacks and getting valuable inputs on how to proceed. What you will see next is (more or less) part of the content I am working on. It goes without saying that this are the informal rants of a single cloud architect. This is not a VMware paper (as is) and you shouldn’t refer it as such when pointing to this blog post.

Introduction to the vCloud Director Storage Layout

The figure below shows a high level view of the vCloud Director storage architecture.

There are a lot of considerations missing in the picture above in terms of how the storage stack is constructed in vCloud Director 5.1 (for example Storage Profiles, Provider vDCs, vSphere clusters, etc.) but there is enough information to describe the backup and restore process (and associated challenges).

First of all one can depict the multi-tenancy nature of vCloud Director where a single datastore/LUN (and host, for that matter) can be securely shared among different tenants (aka organizations).

vCloud Director presents a certain amount of (abstracted) storage to the tenant as a property of the organization vDC (aka Org vDC) the tenant has been assigned to. The tenant can consume that storage by creating VM disks as a property of a VM. The tenant does not care where that abstracted pool of storage resources are coming from.

Another important thing to notice in this simplified diagram is the fact that different actors can access the same resources at different levels. For example:

  • A tenant can access and can manipulate resources in its organization vDC whereas a cloud administrator can manipulate all resources across all tenants

  • A tenant can access a file on the VM file system by means of a Guest OS operation whereas a cloud administrator can access the same file mounting the VMDK at the ESXi host level

  • A tenant can perform limited manipulation on VMDK files via the vCloud APIs (e.g. independent disks, new in vCD 5.1) whereas the cloud administrator can fully manipulate them using traditional vSphere mechanisms

Infrastructure Visibility

This parameter, later used to characterize backup and recovery solutions, describes the level of access a given individual may have in a vCloud Director stack.

vCD uses a role-based model to assign proper rights to users. In the context of this document we will divide the cloud world in two macro roles: providers and consumers.

In vCD language, they are the cloud administrator and the organization administrator.

Note: We will consider roles like vApp user and vApp author being a subset of the organization administrator role and, as such, with a slightly limited visibility compared to the latter. We will just consider the organization administrator as the cloud consumer.

We introduce here two key concepts in cloud operations. These may be relevant in general for cloud but they are indeed very relevant for vCD cloud deployments.

These concepts are above-water visibility and below-water visibility. The water line alluded here is the line that separates cloud tenants from cloud administrators.

It is important for cloud administrator and cloud consumers to pay attention to this parameter (visibility) because that determines whether a given backup solution they are (respectively) building or consuming is available out of the box without customizations and on any vCloud Director deployment available.

“Above-water” Visibility

With above-water visibility (or consumer space) we refer to all of those operations that can be performed by a vCD tenant (specifically by an organization administrator) with an out of the box vCD. The emphasis here is on vanilla and out of the box.

These are all standard operations that any vCD tenant can perform regardless of the vCloud Director implementation (private or public that is).

This is a list of operations that, for example, an organization administrator can do above-water:

  • Creating a “backup server” inside the tenant to backup locally the files (inside the OS) of the production VMs

  • Manually copying vApps either in the same PvDC or in different PvDCs

  • Programmatically copying vApps either in the same PvDC or in different PvDCs

  • Leveraging independent disks to attach / detach VMDK files to stateless VMs

  • Leveraging independent disks (through attach / detach) to create Guest OS mirrors of production VMs.

Many of these approaches are usually typical of “design for fail” cloud models and don’t usually fly very well with customers with an Enterprise mind set.

Also, a missing out of the box object storage service in vCD limits the above-water backup and recovery use cases. An alternative workaround would be to setup a proxy inside the tenant that can backup to a third party public object storage service.

For example an object storage can be configured as a target in some traditional backup and restore tools or some third party public object storage services provide appliances (aka storage gateways) that can act as a proxy between a private set of servers and the public object storage service.

All of the above is considered above-water since this is something the tenant can implement without any interaction with the cloud provider and, more importantly, without any particular vCloud Director customization or extension.

This applies to any vCloud Director based cloud instance.

“Below-water” Visibility

Describing below water visibility (or provider space) is fairly easy because it is, essentially, full visibility into the cloud stack. This is only available to the cloud administrator and, assuming the vCloud Director administrator is also the administrator of the infrastructure underpinning it (which is often the case), this includes visibility into a variety of tools and layers including, obviously, vCenter Servers.

The cloud administrator is the owner of the entire stack and can perform any operation at any level in the stack. This is obviously true within the boundaries of what it is supported by the integration of the various products in the vCloud Suite.

There are for example tasks that, while the cloud administrator can perform at a lower level, are not supported as they may break the layers above. Some of these tasks, for example, include (source: vCAT 3.0.2):

  • Editing virtual machine properties

  • Renaming virtual machine

  • Disabling DRS

  • Deleting or renaming resource pools

  • Changing networking properties

  • Renaming datastores

  • Changing or renaming folders.

In the context of backup and recovery of consumer workloads, operating at this level of the stack requires careful planning by the cloud administrator.

This is a list of operations that, for example, a cloud administrator can theoretically do below-water:

  • Backing up / restoring files inside tenants via VMware VADP

  • Backing up / restoring VMDKs inside tenants via VMware VADP

  • Backing up / restoring VMs inside tenants via VMware VADP

  • Backing up / restoring vCloud vApps inside tenants via VMware VADP

  • Other objects manipulation aimed at saving the state of those objects using vCenter administration level of access.

Some of the operations above, particularly the restore of vCloud objects, require particular attention and best practices.

 Most vCloud implementations will vary below-water. This is true for many other operations but it is certainly true for backup and recovery operations. While there is a set of basic core functionalities a cloud admin can perform using VMware tools at this layer, most implementations will be complemented by peculiar backup and restore software products and, perhaps, particular configurations of the same backup and restore software products.

So while we consider the above-water zone to be consistent and standard across all vCloud Director deployments, we anticipate the below-water zone to be specific and peculiar for every deployment.

Backup and Restore levels

This is the second parameter that we will use later to characterize and segment backup and recovery solutions.

This is straightforward and describes the “what” in the backup and restore equation. What objects do tenants need to backup (and be able to restore)?

These objects and levels are discussed below in this section. The following picture summarizes them graphically.

File Level

This is the most atomic thing in the cloud consumer space that the tenant may want and can backup (and restore). It can’t get more granular than that. There isn’t a lot to say about it. A file inside a Guest OS file system is just a file.

Disk Level

This refers to the VMDK file associated to a given VM. It’s fair to see the VMDK as the drive of the VM. Note that by backing up the VMDK you are essentially backing up the entire state on disk of that Guest OS. In Microsoft Windows parlance, it’s like backing up the entire c:\ drive.
The relationship between the VMDK and the files discussed above is 1:many.

VM level

This object includes the VMDK content as well the metadata describing the virtual machine. A VM is really the collection of the content of the (virtual) disk as well as surrounding data that describes the characteristic of the VM (number of vCPUs, amount of memory, number of vNICs, etc.). This information is saved in the vmx file (which sits next to the VMDK file, in the same folder).
The relationship between the VM and the VMDK can be 1:many (limits apply, albeit it is often 1:1).

vApp level

This object describes the service (or the workload). A vApp is usually referred to as a collection of VMs but there are more to it than that. A vApp includes information such as vApp Networks (and associated network and security levels), VMs start and stop order, etc.
vCD vApp metadata and vCD VMs metadata are also part of the properties of the vApps.
The relationship between the vApp and the VM can be 1:many (limits apply)

Managed Service Vs. Self Service

This is the last parameter that we will use to characterize a backup and restore solution for vCloud Director consumer workloads.

At first this may sound like a duplicate of the above-water and below-water segmentation but it is not.

The infrastructure visibility parameter speaks more to the implementation of the cloud environment and the out of the box capabilities.

This segmentation speaks more to the operational aspect of performing backup and recovery of consumer workloads.

While it would be easy to mapping the above-water concept with self-service and mapping the below-water concept to managed services the reality may be more complex.

For example a given cloud service provider may offer managed services using above-water capabilities.

Or, even more interesting, a cloud consumer could experience a self-service experience using below-water capabilities (by means of third party portals or API extensions that the cloud administrator can expose to the tenant and that are not available out of the box with a vanilla vCloud Director setup).

Cloud Provider Managed Service

This is the scenario where the cloud administrator owns the operational aspects of backing up (regularly) and restoring (on a need basis) consumer workloads on behalf of the cloud consumer.

This is true regardless of:

  • Whether the cloud administrator uses an above-water (less likely) or a below-water (more-likely) strategy

  • What level of backup and restore is required (file, disk, VM or vApp)

In this scenario the cloud administrator usually have a set of policies in place to backup the consumer workloads (depending on the agreed SLAs) and the cloud administrator personnel perform the restore. Depending on the contract in place this could happen without consumer interaction or the consumer, by opening a ticket with the cloud service provider, could trigger the restore.
In this scenario the self-service aspect of cloud is not leveraged and exploited.

Cloud Consumer Self Service

In this scenario the tenant is fully in control of the backup and restore operations.

This is true regardless of:

  • Whether the cloud consumer uses an above-water or a below-water strategy

  • What level of backup and restore is required (file, disk, VM or vApp)

There is typically no interaction between the cloud administrator and the tenant and every backup and restore operational aspect is available to the cloud consumer.

Note the nature of backup operations may vary depending on the implementation details.

For example in an above-water backup and restore strategy the tenants are responsible for building and consuming their own solution.

However, when a tenant is consuming, in self-service, a below-water solution implemented by the cloud service provider, backup operations may be driven by:

  • Pre-defined policies (e.g. all vApps placed in a given virtual datacenter will have a pre-defined backup policy)

  • Self-service policies (e.g. the tenant can interactively assign vApps to particular policies interacting with the cloud via third party service portals or API extensions)

Backup and Restore: Solutions Characterization

Why is this important? Ideally every backup and restore solution we will discuss in the context of this document can be characterized by this triplet we have defined:

  • Where? (above-water or below-water)

  • What? (files, disks, VMs or vApps)

  • Who? (tenant self-service or provider managed services)

The triplet above isn’t useful to describe the inner technical details of any backup and restore product. However it is very useful to describe the outer characteristics of any backup and restore solution.

Ideally, before talking about the actual implementation, cloud architects should be able to characterize a solution by the where / what / who parameters.

This is true for architects building clouds (e.g. “our vCloud Director based backup and restore strategy will allow tenants to restore VMs and vApps by opening a ticket with us. We will then leverage some of our below-water features not exposed to the tenants”).

Similarly, architects consuming clouds should be able to query potential cloud service providers about their backup and restore services using this framework (e.g. “we are looking for a vCloud Director based service that would allow us to restore files, disks and VMs in self-service leveraging below-water features”).

Note that, for the most part, the infrastructure visibility aspect (below-water, above-water) isn’t usually something a consumer may want to call out as a “requirement”. Ideally the consumer would always want something to be “above-water” because that means the solution could be implemented on any vCD based cloud should they choose another cloud provider. However, the reason for which a tenant may specifically ask for a below-water functionality is because they have enough know-how of the vCloud stack to require a particular and more efficient solution than what a tenant may be able to achieve above-water.

In summary, we have been introducing the concept of above-water and below-water.

We have then introduced the list of objects that could be a target for backup and restore operations.

Last but not least we have introduced the notion of self-service and managed services.

The following picture represents a self-service solution.

The following picture represents a managed services solution.

That’s all (I can disclose). This is the framework I have been working on lately. As often happens to me, I can’t tackle a very simple problem without having to put it into the bigger picture to contextualize it. Sorry about that.

While I do understand that many people are interested in “does backup product xyz talk to the vCloud APIs”, I fear a simple yes or no doesn’t cut it and doesn’t put those people in a position to build a proper backup and restore solution for their vCloud Director based cloud.

Now, the next challenge is how to lay out (in a meaningful way) the research and unstructured work I have been doing to double click on actual solutions. What I have in mind right now (subject to change) is to describe in greater details a certain number of solutions and architectures (4? 6? 10?) that could be considered most common and best practices and characterize each of them with the where / what / who framework I discussed above.

This would let VMware customers and partners come up with their own additional solutions / combinations that they could characterize with the same framework. Just a thought at the moment.

Any comment or feedback that you may have, I am all ears.

Massimo.

Massimo currently works as at VMware as a Staff Systems Engineer, vCloud Architect. He works with Service Providers and Outsourcers to help them shape their Public Cloud services roadmap based on VMware cloud technologies. Massimo also blogs about Next Generation IT Infrastructures on his personal blog, IT 2.0.

Getting Started With vCloud – Intro to vCloud Connector and Other Resources

Posted on by

By: Matt Sarrel

I’ve been playing around with vCloud Connector 2.0 for a few weeks and I’d like to pass along some of the lessons I’ve learned and provide some tips for getting started.

First, I should explain what vCloud Connector is – vCloud Connector  is a virtual appliance that allows you to move workloads and virtual machines between clouds. These clouds could be private, public, or hybrid (a combination of the two). Private clouds need to run vSphere and vCenter Server, and public clouds need to run vCloud Director.

There are two components to vCloud Connector: vCloud Connector Server and vCloud Connector Node.  The server provides management features and you’ll probably want to host it with your management and maintenance server workloads. A node is a connection point for each cloud that is managed by the server. A typical configuration involves a single vCloud Connector Server and multiple vCloud Connector Nodes (one per cloud, organization, or vSphere instance). Think of this as the server is the gateway that controls the nodes as they prepare and shift workloads between clouds.

After servers and nodes are installed, you can log into each server individually, or you can get a free account on vcloud.vmware.com and manage all of your vCloud Connector servers through a single web based interface. You will need network access to each server as the portal redirects logins directly to the server. All communication between your machine, the servers, and the nodes is SSL encrypted. You may also choose to not use the portal and instead connect to the servers using vSphere Client 4.0, 4.1, or 5.0.

There is a lot of information about getting started available on vcloud.vmware.com. However, one of the best ways you can get hands-on testing and experience with vCloud  is by signing up for the VMware vCloud Service Evaluation. The vCloud Service Evaluation is an inexpensive option allowing users to get their feet wet in the public cloud arena (pricing starts at 4 cents an hour). This gives you the chance to experiment with connecting your internal vSphere environment to a public vCloud Director environment and moving workloads between them.

A great place to get started learning about all of this vCloud stuff is through the Learning & Support section on vCloud.VMware.com, as well as the New Users Guide to Using vCloud by VMware document.  This document provides detailed instructions on how to get started with the vCloud Service Evaluation.  Another must read document is the vCloud Connector User’s Guide which provides more detailed information on implementing and working with vCloud Connector.

Two additional valuable resources are the vCloud Community and the vCloud Playlist on VMwareTV.  I’ve found the vCloud playlist on YouTube to be particularly helpful as there are plenty of videos available for users to learn more about using vCloud, ranging from architecture overviews to detailed installation walk-throughs.

Speaking of detailed installation walk-throughs, my next post will show you how to install and configure vCloud Connector 2.0.

For future updates, be sure to follow @vCloud and @VMwareSP on Twitter!

Matthew D. Sarrel (or Matt Sarrel) is executive director of Sarrel Group, a technology product testing, editorial services, and technical marketing consulting practice based in New York City and San Francisco.  He currently writes for Enterprise Networking Planet, eWeek, PCmag.com, and GigaOM, blogs at TopTechDog, and publishes the Insights & Opportunities newsletter.  You can follow him on Twitter: @msarrel.

How to Configure DHCP Server Using vCloud Networking and Security Edge Device (vShield)

Posted on by

By: David Hill, Senior Cloud Consultant for the VMware Global Centre of Excellence in Cloud Infrastructure

This is a repost from Dave’s personal blog, Virtual-Blog.com

This is a follow on post from my previous article titled How to Deploy a vCloud Networking and Security Edge Device. This post will show you the steps required to configure the Edge device to act as a DHCP server.

  • Login to the vCloud Networking and Security Manager (vShield Manager)
  • Select the DHCP tab
  • Click Plus in the DHCP Pools section
  • Enter the DHCP Pool configuration

Click Add

  • Click Enable to activate DHCP
  • After enabling, click Publish Changes for all configuration options to be sent to the Edge Device

For future updates, be sure to follow @vCloud on Twitter.

David Hill is currently a Senior Cloud Consultant for the VMware Global Centre of Excellence in Cloud Infrastructure. David has been a self-employed IT Consultant and Architect for around 15 years, working on projects for large consultancies and financial institutions. Dave blogs at his personal blog, Virtual-Blog.com, where he hopes to provide readers with an informative reference site when designing/deploying or troubleshooting virtualisation and cloud technologies.

vCloud Director 5.1 VXLAN Configuration

Posted on by

By: Rawlinson Rivera, Senior Technical Marketing Manager at VMware

This is a repost from Rawlinson’s personal blog, Punching Clouds

The new vCloud Director 5.1 delivers many new features and enhancements, one in particular is the introduction and support of Virtual Extensible LAN (VXLAN). VXLAN is a technology that enables the expansion of isolated vCloud architectures across layer 2 domains beyond the limits imposed by the IEEE 802.1Q standard. By utilizing a new MAC-in-UDP encapsulation technique, a VXLAN ID adds a 24 bit identifier, which allows networks to push beyond the IEEE 802.1Q limit to a possible 16 million logical networks. Figure 1 below illustrates the changes added to the Ethernet frame by VXLAN.

Figure 1: Ethernet Frame with VXLAN Encapsulation

While the conventional IEEE 802.1Q standard works perfectly, when trying to meet greater scalability demands VXLAN surpasses the IEEE 802.1Q limitation by offering scalable capabilities of up to 16 million possible networks. Because of the scalable and flexible capabilities offered by VXLAN, this technology is something to be consider for large scalable Cloud (vCloud) networks. For a quick crash course on VXLAN, take a look at Duncan Epping’s post “Understanding VXLAN and the value prop in just 4 Minutes…”

Configuring VXLAN in vCloud Director 5.1 required some initial steps that are outside of the vCloud Director 5.1 management interface which I want to illustrate here.

First a couple of facts:

A VXLAN network pool is automatically created in vCloud Director 5.1 whenever a Provider vDC is created. If the hosts of any given cluster are not prepared to use VXLAN first, the VXLAN network Pool in vCloud Director will display an error. I would recommend identifying all of the pre-requisites for the use of VXLAN from a network as well as the software dependency perspective before creating new Provider vDC in vCloud Director 5.1.

In order to prepare the resource clusters (hosts) to use VXLAN, log in the vCloud Networking and Security appliance (previously knows as vShield Manager). The preparation of the networks as well as the hosts requires the identification and assignment of the Segment ID Pool and the Multicast addresses. Below are the steps necessary to prepare and configure VXLAN for vCloud Director 5.1.

Step 1: Log into the vCloud Networking and Security appliance. Select the Datacenter. Then, select the Network Virtualization tab on the right side of the screen and click the Preparation hyperlink. This will reveal the Connectivity and Segment ID screen, as illustrated in figure 2.

Figure 2: Network Virtualization Settings

Step 2: Click the Edit button on the right end of the screen, and enter the required Segment ID Pool, and Multicast address that will be used by vCloud Networking and Security appliance. The Segment ID’s cannot be mapped directly to any one Multicast Address, as the possibility of one-to-one mapping doesn’t exist. This Segment ID and Multicast Address configuration is defined in ranges. Figure 3 illustrates the Segment ID and Multicast Address options.

Figure 3: Segment ID Pool and Multicast Address

Step 3: Click on the Connectivity button in the Network Virtualization tab to prepare the resource clusters (hosts) to be part of the VXLAN with vCloud Director. Choose the Distributed switch that is to be associated with the resource cluster, and enter the VLAN ID for the desired network segment that will be used to overlay the VXLAN traffic coming from the Distributed Switches. Figure 4 illustrates the configuration options.

Figure 4: Resource Cluster

Step 4: Specify the NIC teaming policy that applies to the respective Distributed Switch configuration, and the MTU settings. The MTU settings for VXLAN default to 1600 bytes due to the VXLAN ID encapsulation technique which increases the size of the packets. This behavior is similar for the configuration of vCDNI in vCloud Director.  vCDNI required the minimum MTU packet configuration of 1524. Overall, the important thing to understand here is the requirement to use jumbo frames across all network devices. Figure 5 illustrates the NIC teaming policies available as well as the default MTU settings and click Finish.

Figure 5: VXLAN Attributes

After choosing and completing the specification for the Distributed Switches, the VXLAN vmkernel modules are pushed and enabled on to all of the hosts that are part of the selected cluster. New dvPort Groups and vmknic interfaces are added and automatically created on the Distributed Switch associated to the VXLAN. The new dvPort group can be identified by the unique naming convention vxw-vmknicPg-dvs-xx-xx-xx-xx. Figure 6 offers an example of the adapter configuration.

Figure 6: VXLAN VMkernel Interfaces

A troublesome results of the automated network configuration process for the vmknics, is that all interfaces will be automatically assigned an IP address based on DHCP. This behavior can become a configuration management issue; unless there is a DHCP server on that network segment (normally the management network), all of the newly created interfaces will receive an IPv4 address within the 169.254/16 prefix that is valid for communication with other devices connected to the same physical link.

This configuration will not work as an IPv4 local addresses are not suitable for communication with devices not directly connected to the same physical or logical link, and are only used where stable, routable addresses are not available. As a result of this configuration the status of the hosts preparation will be displayed as “Not ready” in the vCloud Networking and Security appliance interface. Figure 7 illustrates the issue discussed above.

Figure 7: vmknics IP Address Status

The solution to this issue is simple: update the vmknics interface with automatically assigned IP with valid addresses. This can be achieved in a manual or automated format. Figure 8 illustrate the results of a successful configuration.

Figure 8: VXLAN Successful Preparation Results

Step 5: At this point, all the required network, and hosts preparation for the use of VXLAN with vCloud Director 5.1 have been completed. In order to start using the VXLAN feature in vCloud Director 5.1,  create a Provider vDC.  A VXLAN Pool is automatically created. Figure 9 illustrates the existence of VXLAN capable network pool in the management interface of vCloud Director.

Figure 9: VXLAN Network Pool in vCloud Director 5.1

There you have it, folks. You can now proceed with the creation and configuration of Organization, and vApp networks to harness the scalable features delivered by VXLAN in vCloud Director 5.1 infrastructures.

Enjoy!

Rawlinson is a Senior Technical Marketing Manager in the Cloud Infrastructure Technical Marketing Group at VMware, focused on Storage Virtualization technologies. Previously he was an architect focused on Cloud and vSphere enterprise architectures for VMware fortune 100, 500 customers. Rawlinson is amongst the first VMware Certified Design Experts (VCDX#86), author of multiple books and a retired Professional Skater.

How to Deploy a vCloud Networking and Security Edge Device

Posted on by

By: David Hill, Senior Cloud Consultant for the VMware Global Centre of Excellence in Cloud Infrastructure

This is a repost from Dave’s personal blog, Virtual-Blog.com

Today I have been working in the lab messing around with vCloud Networking and Security for one of the projects I am working on. With all the new changes in vCloud Networking and Security version 5.1, deploying an edge device needs a little understanding. I have written this blog article to walk you through the steps involved in deploying an edge device, and what to look for when you have deployed it.

The following steps show how to deploy a vCloud Networking and Security edge device through the vCloud Networking and Security Manager.

  • Login to the vCloud Networking and Security Manager (formerly and still called vShield Manager).

  • Expand Datacenters, and select the datacenter you want to deploy your edge device in, and select the tab Network Virtualization.

  • Select Edges.  You will be shown a list of the current edge devices.  Click the green plus to add a new edge device.

  • Type the name you want to call the edge device.  This is the virtual machine display name you will see in vCenter.  If you want to enable HA (High Availability) on the edge, tick the Enable HA device.

  • Enter the CLI username and password that you set when configuring the vCloud Networking and Security Manager.

  • Select the appliance size. I always recommend to keep the Auto rule generation tick box enabled.  Before clicking next, you MUST click the green plus to enter the configuration details for the edge device.

  • Select from the dropdowns, which Cluster or Resource pool and datastore you want to deploy the edge on.

  • You now need to add the interfaces for this edge device, click the green plus.

  • Enter the details for your edge device uplink.  This is the external interface.

  • Select the port group you want to connect the edge to.

  • Specify the IP address for this external interface.

  • Enter the subnet.

  • Scroll down the edge interface window and change the MTU to 1600.  Note: The MTU must be changed on your switches for this to work.

  • Follow the steps again to create an internal interface.  This is the interface that you will use to route traffic from your VMs.
  • Configure the Default Gateway by clicking the check box, and add the gateway IP.  This is the default gateway for your external interface that you added in the previous steps.

  • Enable the tickbox Configure Firewall default policy and set the default policy.  If you ticked the HA box you can set the configuration options for this here.

  • Review the summary and click Finish to deploy the edge device.

  • You will now see the status of the edge Deploying vShield edge device.

  • Once the edge has deployed you will see the status Deploy.

To understand what you have actually deployed, if you look within vCenter at the vSwitch you have deployed the edge on, you will be able to see the different port groups and connections the Edge device has.

David Hill is currently a Senior Cloud Consultant for the VMware Global Centre of Excellence in Cloud Infrastructure. David has been a self-employed IT Consultant and Architect for around 15 years, working on projects for large consultancies and financial institutions. Dave blogs at his personal blog, Virtual-Blog.com, where he hopes to provide readers with an informative reference site when designing/deploying or troubleshooting virtualisation and cloud technologies.

Building Your Cloud With vCloud Director

Posted on by

By: Chris Colotti, Consulting Architect, VMware Global Center of Excellence

This is a repost from Chris' personal blog, ChrisColotti.us.

Vmware_vcloud_director_box_shot-e1328279959814

Below is a recording of the session I did in January 2012 at Gillette Stadium with Paul Lembo called “Building your cloud with vCloud Director”.  I finally got a copy of the session and wanted to share it for those that could not make it to that event.  It was well received – thanks to Chris Harney for getting me the session video.  It takes a slightly different approach than the one done at VMworld and Partner Exchange.

One thing that was really funny about this session is that the stadium apparently pipes the audio into the restrooms.  I found out later that many people thought I was in both the Men’s and Ladies rooms just talking to myself.  I guess you had to be there, but it was pretty funny to find that out after the fact.  As we know the Patriots did beat the Ravens, but we won’t talk about the SuperBowl outcome.

Video:

 

Slides:

Chris is a Consulting Architect with the VMware vCloud Delivery Services team with over 10 years of experience working with IT hardware and software solutions. He holds a Bachelor of Science Degree in Information Systems from the Daniel Webster College. Prior to VMware he served a Fortune 1000 company in southern NH as a Systems Architect/Administrator, architecting VMware solutions to support new application deployments. At VMware, in the roles of a Consultant and now Consulting Architect, Chris has guided partners as well as customers in establishing a VMware practice and consulted on multiple customer projects ranging from datacenter migrations to long-term residency architecture support. Currently, Chris is working on the newest VMware vCloud solutions and architectures for enterprise-wide private cloud deployments.

[Video] Monitoring vCloud Director Overview

Posted on by

By: David Davis

With vSphere and vCenter, so much time is focused on configuring it, many times, a very small amount of time is spent actually monitoring it to ensure you are achieving your goals of solid performance, reliability, and security. This statement is also true for VMware vCloud Director. Thus, while installing and configuring is certainly crucial, the ability to monitor vCloud Director is also crucial.

In the video below (a full-length video taken from my vCloud Director Essentials training course), I show you, step by step how to:

  • Monitor tasks and events in vCloud Director, at multiple levels, just like you already do in VMware vCenter or vSphere.

Monitoring1

  • Monitoring blocking tasks, used when you have integrated vCloud Director with other management tools, connected through an AMQP broker, like RabbitMQ.
  • Check the status of provider and org vDC cloud infrastructure usage.

Monitoring2

  • How to view vCloud Director log files from the command lie.

 

For more information on vCloud Director, see my posts:

David Davis is a VMware Evangelist and vSphere Video Training Author for Train Signal. He has achieved CCIE, VCP,CISSP, and vExpert level status over his 15+ years in the IT industry. David has authored hundreds of articles on the Internet and nine different video training courses for TrainSignal.com including the popular vSphere 5 and vCloud Director video training courses. Learn more about David at his blog or on Twitter and check out a sample of his VMware vSphere video training course from TrainSignal.com.

Preparing your vCloud Director SQL Server Database Server

Posted on by

By: David Davis

If you haven’t tried installing vCloud Director yet in your virtualization lab, you should. However, be prepared that the install is more complex than the typical virtualization management tool that might happen in just a single vApp deployment. While vCD is available in a vApp (for pilot and test use only), even that requires a bit more configuration than you may be used to. 

Assuming you are using the full production installation version of vCD, the biggest hurdle for most vSphere Admins is getting a database server installed and prepared to support it. To help make this process easier, I created the video below that walks you through the process of:

  • Installing MS SQL Server Express, used as your vCD database
  • Running SQL Server Management Studio to add a new user and database
  • Running a SQL script from KendrickColeman.com’s website to prepare the database configuration for vCD
  • Configuring SQL networking for vCD

Before you watch the video I would like to point out that, as this was for a lab environment, I opted for the free SQL Server Express with the Management Studio. In a production environment, you would of course want to use the full / commercial version of SQL Server.

Now, here is your 11-minute video on the preparing your vCloud Director SQL Server Database:
 

For VMware’s official vCloud Director documentation, checkout the vCD Installation and Configuration Guide.

And, for more information regarding vCloud Director Installation check out these resources:

David Davis is a VMware Evangelist and vSphere Video Training Author for Train Signal. He has achieved CCIE, VCP,CISSP, and vExpert level status over his 15+ years in the IT industry. David has authored hundreds of articles on the Internet and nine different video training courses for TrainSignal.com including the popular vSphere 5 and vCloud Director video training courses. Learn more about David at his blog or on Twitter and check out a sample of his VMware vSphere video training course from TrainSignal.com.