The VMware Mobile Knowledge Portal iOS and Android app has recently been updated. It sports a great new look and feel and makes finding the information you need even easier by grouping it by area in our SDDC vision.
Category Archives: Networking
When I joined the Technical Marketing team last September I was tasked with vCenter Availability and Scalability along with providing coverage for all things vCenter and SSO.
Since that time I’ve branched out and am also covering Resource Management (more on this coming soon!) and also features in the Enterprise Plus SKU. I’m really excited about this as to this day one of my favorite and I feel underused features is the vSphere Distributed Switch, or VDS.
One question that we often get from customers is how to load balance SSO. While we do have documentation and support for setting up Apache to load balance SSO many customers already own a load balancer or do not wish to use Apache.
On August 26th at VMworld 2013 VMware announced vSphere 5.5, the latest release of VMware’s industry-leading virtualization platform. This latest release includes a lot of improvements and many new features and capabilities. In an effort to try and get my head around all this exciting new “stuff” I decided to go through the what’s new paper and compile a brief summary (well, relatively brief anyway).
Here’s the list I came up with. I’m sure I missed some things, but this list should help you get started with learning about what’s new in vSphere 5.5.
Summary of new features and capabilities available in vSphere 5.5 Continue reading
The 2013 VMware Fling Contest is now open. Do you have an idea on how certain features or functionality could be improved upon? Can you think of an app that would make the life of a system administrator so much easier? Do you have a repetitive task that you wished you could have automated in your vSphere environment? Or a decision making tool for certain tasks? We are looking for you, our customers & users, to propose ideas for new VMware Flings. Our panel of judges will pick the winner. The submitter of the winning entry will win a free pass to VMworld 2014.
Last year we got over 120 submissions. We’re also planning to release a new Fling (Proactive DRS) at VMworld that was built based on last year’s winning winning idea.
The contest will remain open for submissions through November 15.
Get notification of these blogs postings and more VMware Storage information by following me on Twitter: @VMwareStorage
People are madly registering for VMworld sessions as the 10 year anniversary of the conference opens in less than 2 weeks. I highly recommend this next session in the Extreme Performance Series Continue reading
I am sorry that it took me a while to do this post on VXLAN. I was on summer vacation to India for three weeks and then got busy with the VMworld 2013 preparation. I hope you have registered for VMworld US conference. If you are interested in learning more about network virtualization please checkout the catalogue. I have couple of sessions in the networking track so hope to see you there.
After that shameless promotion about my sessions and before I jump in to explain the vMotion packet flow in VXLAN deployment, I want to address some of the questions that were raised in the comments section of the last blog. Please refer to the diagrams in the blog here.
- Install vCloud Networking and Security Manager (aka vShield Manager) on a dedicated management cluster. Other components that get installed on this cluster are VMware vCenter Server, vCloud Director etc.
- vCloud Networking and Security Manager should be run on an ESXi host that is not affected by downtime, such as frequent reboots or maintenance mode operations. Use vSphere HA to increase the resilience of the Manager. Thus, a cluster with more than one ESXi host is recommended.
- Install vCloud Networking and Security App Firewall on all vSphere hosts within a cluster so that virtual machines remain protected as they migrate between vSphere hosts.
- The management interfaces of vCloud Networking and Security components should be placed in a common network, such as the vSphere management network. Manager requires IP connectivity to the vCenter Server, ESXi host, and App Firewall virtual machine. Refer the KB article for the network port requirements for vCloud Networking and Security. It is a best practice to separate management traffic from the production traffic.
- If the vCenter Server or vCenter Server database virtual machines are on the ESXi host on which you are installing App Firewall, migrate them to another host before installing App Firewall or exclude these virtual machines from vCloud Networking and Security App Firewall protection.
- Install VMware Tools on each Virtual Machine. The vCloud Networking and Security Manager collects the IP addresses of virtual machines from VMware Tools on each virtual machine. Use App Firewall SpoofGuard to authorize the IP addresses reported by VMware Tools to prevent spoofing. With SpoofGuard use trust on first use to reduce the administrative overhead.
In this post I am going to describe how VTEPs learn about the virtual machines connected to the logical Layer 2 networks. The learning process is quite similar to a transparent bridge function. As transparent bridges learn based on the packets received on the bridge ports, the VTEP also learn based on the inner and outer header of the packets received.
Let’s take an example to illustrate the VTEP learning process.
I am happy to announce the availability of the VMware vCloud Networking and Security – DMZ Design and Deployment Guide. This paper highlights how securing a virtual DMZ environment using vCloud Networking and Security can be a strategic enabler to your organization as it helps you to reduce your capital expenditure and increase agility, while building a cloud ready, secure and scalable environment for business applications. The paper also highlights the different design approaches to securing business critical applications and enables you to make the choice that is most suited to your organization in the cloud journey. Further, it gives prescriptive configuration guidance to help you get started with the deployment of your preferred approach.
Get notification of these blogs and more vCloud Networking and Security information by following me on Twitter @vCloudNetSec.