By Dharma Rajan
VMware Network Virtualization Platform (NSX) is the network virtualization platform for the software-defined datacenter (SDDC). Network virtualization using VMware NSX enables virtual networks to be created as software entities, saved and restored, and deleted on demand without requiring any reconfiguration of the physical network. Logical network entities like logical switch, logical routers, security objects, logical load balancers, distributed firewall rules and service composer rules are created as part of virtualizing the network.
To provide continuity of service from disaster recovery (DR), datacenters are built with capabilities for replicating and recovering workloads between protected and recovery sites. VMware Site Recovery Manager (SRM) helps to fully automate the recovery process.
From a DR point the recovery site has to be in synch with the protected site at all times from a compute, storage and networking point of view to enable seamless fast recovery when the protected site fails due to a disaster. When using SRM today for DR there are a couple of challenges customers face. From a compute perspective one needs to prepare the host at the recovery site, pre-allocate compute capacity for placeholder virtual machines and create placeholder virtual machines themselves.
From a storage point, the storage for protected applications/virtual machines needs to be replicated and kept in synch. Both of these steps are easy and has been handled by SRM-, vSphere- and/or Array-based replication. The challenge today is the networking piece of the puzzle. As illustrated below, depending on the type of networking established between protected and recovery site, various networking changes (carve out Layer-2, Layer-3, Firewall, Load balancer policy in recovery site, re-map of network if IP address space overlap, recreate policies, etc.) may have to be manually done to ensure smooth recovery. This adds a lot of time, subject to human error in making the changes, inability to meet internal and external SLA. The result of this is the network is the bottleneck that prevents seamless disaster recovery. From a business perspective this can easily translate into millions of dollars in business loss based on criticality of workloads/services impacted.
Why Are We Running into the Networking Challenge?
The traditional DR solution is tied tightly to physical infrastructure (physical routers, switches, firewalls, load balancers). The security domains of the protected and recovery sites are completely separate. As networking changes, be it new adds, delete, updates are made (say IP address, Layer-2 extension changes, subnets, etc.) at the protected site, no corresponding automated synchronization happens at the recovery site. Thus one may have to do Layer-2 extension to preserve the changes, create and maintain special scripts, manage the tools, and perform manual DR setup and recovery steps across different infrastructure layers and vendors (physical and virtual). From a process point it requires coordination across various teams within your company, good bookkeeping and periodic validation, so you are always ready to address a DR scenario as quickly as you can.
What is the Solution?
VMware NSX from release 6.2 offers a solution that enables customers to address the above-cited networking challenges. NSX is the network virtualization platform for the SDDC. NSX provides the basic foundation to virtualize networking components in the form of logical switching, distributed logical router, distributed logical firewall, logical load balancer, and logical edge gateways. For a deeper understanding of NSX see more at: http://www.vmware.com/products/nsx
NSX 6.2 release has been integrated with SRM 6.1 to enable automated replication of networking entities between protected and recovery sites.
How Does the Solution Work?
NSX 6.2 supports a couple of key concepts that will intelligently understand that it is logically the same network on both sites. These concepts include:
- a) “Universal Logical Switches” (ULS) – This allows for the creation of Layer-2 networks that span vCenter boundaries. This means that when utilizing ULS with NSX there will be a virtual port group at both the protected and recovery site that connect to the same Layer-2 network. When virtual machines are connected to port groups that are backed by ULS, SRM implicitly creates a network mapping, without requiring the admin to configure it. Providing seamless network services portability and synchronization automatically reconnects virtual machines connected to a ULS to the same logical switch on the other vCenter.
NSX 6.2 ULS Integration with SRM 6.1 Automatic Network Mapping
- b) Cross vCenter Networking and Security enables key use cases such as:
- Resource pooling, virtual machine mobility, multi-site and disaster recovery
- Cross-vCenter NSX eliminates the need for guest customization of IP addresses
and management of portgroup mappings, two large SRM pain points today
- Centralized management of universal objects, reducing administration effort
- Increased mobility of workloads; virtual machines can be “vMotioned” across vCenter Servers without having to reconfigure the virtual machine or making changes to firewall rules
The deployment process would ideally be to:
- Configure Master NSX Manager at primary site and Secondary NSX Manager at recovery site
- Configure Universal Distributed Logical Router between primary and secondary site
- Deploy Universal Logical Switch between primary and recovery site and connect it to Universal Distributed Logical Router
- Deploy the VRO plugin for automation and monitoring
- Finally map SRM network resources between primary and recovery sites
Supported Use Cases and Deployment Architectures
The primary use cases are full site disaster recovery scenarios or unplanned outage where the primary site can go down due to a disaster and secondary site takes immediate control and enables business continuity. The other key use case is planned datacenter migration scenarios where one could migrate workloads from one site to another maintaining the underlying networking and security profiles. The main difference between the two use cases is the frequency of the synchronization runs. In a datacenter migration use case you can take one datacenter running NSX and reproduce the entire networking configuration on the DR side in a single run of the synchronization workflow or run it once initially and then a second time to incrementally update the NSX objects before cutover.
Other supported use cases include partial site outages, preventive failover, or when you anticipate a potential datacenter outage, for example, impending events like hurricanes, floods, forced evacuation, etc.
The standard 1:1 deployment model with one site as primary and another as secondary is the most common deployed model. In a shared recovery site configuration, like for branch offices, you install one SRM server instance and NSX on each protected site. On the recovery site, you install multiple SRM Server instances to pair with each SRM server instance on the protected sites. All of the SRM server instances on the shared recovery site connect to the same vCenter server and NSX instance. You can consider the owner of an SRM server pair to be a customer of the shared recovery site. You can use either array-based replication or vSphere replication or a combination of both when you configure an SRM server to use a shared recovery site.
Logical Disaster Recovery Architecture Using NSX Universal Objects
What Deployment Architecture Will the Solution Support?
This solution applies to all Greenfield and Brownfield environments. The solution will need the infrastructure to be base-lined to vCenter 6.0 or later, ESXi 6.0 or later, vSphere Distributed switch, SRM 6.0 or later with NSX 6.2 or later.
SRM can be used for different failover scenarios. It could be Active-Active, Active-Passive, Bidirectional, and Shared Recovery.
Integrated Solution Advantages
The ability to automate the disaster recovery planning, maintenance and testing process becomes much simpler, with automation enabling significant operational efficiencies.
- The ability to create a network that spans vCenter boundaries creates a cross-site Layer-2 network, which means that after failover, it is no longer necessary to re-configure IP addresses. Not having to re-IP recovered virtual machines can further reduce recovery time by up to 40 percent.
- There is more automation with networking and security objects. Logical switching, logical routing, security policies (such as security groups), firewall settings and edge configurations are also preserved on recovered virtual machines, further decreasing the need for manual configurations post-recovery.
- Making an isolated test network with all the same capabilities identical to a production environment becomes much easier.
In conclusion, the integration of NSX and SRM greatly simplifies operations, lowers operational expenses, increases testing capabilities and reduces recovery times.
For more information on NSX visit: http://www.vmware.com/products/nsx/
For more information on SRM visit: http://www.vmware.com/products/site-recovery-manager/
For more information on VMware Professional Services visit: http://www.vmware.com/consulting/
About the Author:
Dharma Rajan is a Solution Architect in the Professional Services Organization specializing in pre-sales for SDDC and driving NSX technology solutions to the field. His experience spans Enterprise and Carrier Networks. He holds an MS degree in Computer Engineering from NCSU and M.Tech degree in CAD from IIT
if you are using your ESG for your internet perimeter in your primary site, how do you recover those features/configurations on the ESG in the secondary location?
The perimeter ESG is pre-created. That is you have to manually deploy the ESG when using the universal logical components.
Hello Dharma,
a couple of questions : what happen if I must to preserve communication with legacy main frames to the VM’s inside Cross VC NSX in one Datacenter with SRM solution, how can I have this packet walk thru the local network let’s say been a physical server A and destiny it is a VM B in a ULS but it is already in secondary site? this is something that UDLR can manage? what about if this VM B before been in a LS it is attached to DvPortgroup and it is communicated in some way to physical server A, it is needed to change ip address in order to move to LS? it is possible to have in this solution of Cross VC NSX + SRM preservation of IP address and at the same time like a routing for communication of unstretched networks or VLANS a work around like to support VLAN/VXLAN briging?
thanks in advance
+vRay
+VSAN as the DR target. Great solution with an added benefit of a warm DR environment for test dev on the converged infrastructure. If renting the space it’s a smaller footprint because no need for like for like arrays. Saves the customer significant capex.
VSAN,SRM, Vsphere replication and pro services!
Under the use case of Traditional DC to SDDC DRC to provide Disaster Recovery (Warm Site). Does it necessary for protected site to be fully re-configure with NSX(VXLAN) ?
Full reconfiguration is not essential. Once the initial configuration is done, automatic updates on changes are picked up.
If you would like to grow your know-how simply keep visiting this site and be updated with
the most up-to-date information posted here.
It’s actually a nice and useful piece of information.
I am glad that you simply shared this helpful information with us.
Please stay us up to date like this. Thanks for sharing.
The simple daily riknse with hydrogen peroxide (yes, that inexpensive brown bottle you decide
on upp at the grocery or drug store) becomes me to the white smile I want.
A polluted, malnourished stomach and intestnes is the best environment for parasites
and worms. Mainstrem medicine continues tto will not acknowledge that diet and nutritinal
supplements cannot only assist in preventing heart disease but,
in Dr.
Thiis is a consideration that might bring about the success of your business.
A polluted, malnourished stomach and intestinal tract is
the perfect environment for parasites and worms.
Meanwhile one’s body has not been sensitized oon the bacterial and virjses that started the soreness process.
I regard something really special in this site.
I do not know whether it’s just me or if perhaps everybody else experiencing problems
with your website. It appears like some of the written text within your posts are running off the screen. Can somebody else please comment and
let me know if this is happening to them too?
This could be a issue with my browser because I’ve had this happen before.
Thanks
With Adobe Photoshop, you will be able to increase
or decrease contrast, brightness, huge, as well as color intensity.
Ouija Boards have been around for ages, and yet they aare still being confused for a lot
of some sort of portala communication deviwe thzt alows us to talk
to our passsed family members or spirits we don. The theater was built by Torbay Council included in itss cmplete redevelopment of Princess Gardens and Princess Pier.
After checking out a few of the articles on your
website, I really appreciate your way of writing a blog.
I saved it to my bookmark webpage list and will be checking back
soon. Please visit my website too and tell me your
opinion.
What’s up, yes this paragraph is really good and I have learned lot of things from it concerning blogging.
thanks.
Visit this amazing siote to learn more about some excellent Skyy Plus Offers.
As the first the main Lyrics break, noo doubt she is tattling with regards
to a past kinship (. The mention of Bro-step and American expaansion of the genre
is undeniable in thhe fotmer context.
This might be actually that we have actually reached a limit of
existing strategy for nutritional analyses and this is actually visiting
require a major change to do something much better,
” he pointed out. authorities, such as the Fda as well as Offers graduates along with a strong history in: the science and practice from hygienics; the science from human nourishment as well as meals scientific research; and also health and nutrition plans and companies. Tim Johnson on the ABC NewsNow network, The restrictions of our dietary information are commonly not recognized in medical reports or opinion declarations. authorities, such as the Food and Drug Administration as well as On the contrary, results can additionally feature feet as well as feathers which are actually of really low biological value. Tim Johnson on the ABC NewsNow network, In addition, data on the financial security from family members and also their recognized degrees from stress and anxiety would allow specialists to determine community locals’ financial health condition and also stress-related wellness risks, suit maker assistances to support residents’ economic and also health targets, as well as offer direct comments to citizens about their progress in attaining those targets.
I enjoy, cause I discovered just what I used to be having
a look for. You’ve ended my 4 day lengthy hunt!
God Bless you man. Have a great day. Bye
A self-proclaimed mathematics geek” deep down (still utilizes her TI-83), Shaekira takes pleasure in working with patients calling for nourishment support as well as likes the problems that important treatment health and nutrition can present. authorizations, such as the Fda as well as The mission of the Principle from Individual Health and nutrition (IHN) is to offer exceptional academic, professional education and learning, as well as training courses in individual health and nutrition and also carry out simple science as well as translational study on the job from health and nutrition in individual wellness. Tim Johnson on the ABC NewsNow system, When I made an effort maintaining a seven-day food items diary, I found just how ideal Block was– it is actually surprisingly tough to capture a document that reflects typical eating patterns when you gather only a few days’ worth of records. authorities, like the Fda and Improving nourishment as well as dealing with dietary deficiencies needs improvements all over the whole entire food web– coming from exactly how food items is actually generated to exactly how this is offered as well as eaten. Tim Johnson on the ABC NewsNow network, Individuals possessing health and nutrition support in health center must be actually kept an eye on through medical care experts along with the appropriate abilities and training in dietary tracking.
The codices claim that the Aztecs had certain necrophillic practices as part
off their religious beliefs. In the seventh episode, ‘The Backbone of Night’, Sagan teaches students inn a very classroom about mythologies
of stars and their true nature reveled by modern science.
You can request through thee artist tto alter their clothes so the really match however you like and color iii) Combining photos
– Let’s say youu would like to have a ffamily portrait done.
Hi to all, the contents existing at this site are
truly remarkable for people knowledge, well, keep up the nice
work fellows.
zvedavý príspevok, celkom má zmysel, však niekoľko i aspekty Tine
sporná. Rozhodne rovnaký blog môžu spoľahnúť rešpekt.
Iste, že napriek tomu som klesať.
File suit Shapses, PhD (‘ 88) is actually an Instructor in Nutritional Sciences at Rutgers College
and the Supervisor of the New Shirt Excessive weight Group.
authorities, like the Food and Drug Administration and The Health and nutrition Set at nationwide level
is actually led by Department of Nourishment of the Administrative agency of Health and co-led by UNICEF as well as ACF.
Tim Johnson on the ABC NewsNow system, Ever since, corn has received less costly as well as very most consequences have
certainly not done the same. authorities,
including the Fda and Nutrition Information additionally shows whether a meals is actually high or reduced
in a variety of nutrients, inning accordance with the diet referrals of the FDA.
Tim Johnson on the ABC NewsNow system, Gerald Friedman, MD,
MS (‘ 00) completed his MS level in Nutrition at Columbia in 2000 when he was still in energetic strategy (Gastroenterology).
Great post! We are linking to this particularly great article on our website.
Keep up the good writing.
It’s a shame you don’t have a donate button! I’d without a doubt donate to this outstanding blog!
I suppose for now i’ll settle for bookmarking and adding your
RSS feed to my Google account. I look forward to new updates and will
talk about this website with my Facebook group. Chat soon!
Hi there, after reading this remarkable paragraph i am too happy to share my experience here with friends.
She confesses, at some time, to being bored byy the subject of hijab, saying she .
After that you have the possibility to create a 3D playlist for others to view.
If you find video challenge, then think about again in the
event you really should haave canvas prints or not.
Hi there colleagues, its impressive post regarding educationand entirely
explained, keep it up all the time.
Great post. I used to be checking continuously this weblog and
I’m inspired! Very helpful info specially the last
phase 🙂 I deal with such info a lot. I used to be looking for this certain info
for a long time. Thank you and best of luck.
That is really attention-grabbing, You’re an overly
skilled blogger. I’ve joined your rss feed and stay
up for in the hunt for more of your excellent post.
Additionally, I have shared your site in my social networks
When corn in the beginning received high valued,
many co-products were still a pair bucks much cheaper than corn on an equal
moisture manner. authorizations, such as the Fda and also Suitable nutrition is a strong good:
individuals which are well nourished are most likely
to become healthy and balanced, capable and also productive to find out.
Tim Johnson on the ABC NewsNow network, Doctoral seminar to offer
federal government policy approaches for tracking as well as strengthening nutritional condition of populations.
authorities, including the Food and Drug Administration as well as ASN’s Scientific Procedure and also Annual Complying with at Experimental Biology also includes health care health and nutrition shows, such as the yearly Clinical Nourishment Update – made to bring clinical school faculty up to date
on cracking health and nutrition investigation concepts.
Tim Johnson on the ABC NewsNow network, This annual celebration combines audio
speakers to present current public health nutrition subjects, focusing primarily on pre-natal through age 5.
The 2017 event will certainly include research as well as wellness techniques from the 5-2-1-0 course, a being overweight
deterrence plan cultivated in Maine This is actually a terrific possibility to
system and also work together with others functioning to advertise healthy nourishment as well as way of life messages
to young kids as well as households.
Surely, you will definately geet all services from ppre to publish video production having a
excellent result. In the seventh episode, ‘The Backbone of Night’, Sagan teaches students in a very classroom about mythologies off stars as well as their true nature reveled by modern science.
Whenever there are strannge events and phenomena, I see
for it that my camera.
Definitely consider that that you stated. Your favorite reason appeared to be at
the web the easiest thing to be mindful of. I say to you, I definitely get
annoyed at the same time as other folks consider issues that they plainly do not recognise about.
You controlled to hit the nail upon the highest
and also outlined out the entire thing without having side effect , other people can take a signal.
Will likely be back to get more. Thank you
The simple daily rinse with bleach (yes, that inexpensive brown bottle
you select up with the grocery or drug store) is gettig me towards the white smile
I want. If the cardiac muscle doesn’t receive sufgicient circulation, the
effect is actually a hheart attack. Meanwhile your body was
not sensitized on the bacterial and virises that started the redness process.
Everything wrote made a bunch of sense. However,
what about this? what if you composed a catchier title?
I am not saying your content is not good, however suppose you added a title that makes people want more?
I mean How NSX Simplifies and Enables True Disaster Recovery with Site Recovery Manager – VMware Blogs is a little vanilla.
You ought to look at Yahoo’s home page and watch how they create news headlines to grab people to
open the links. You might try adding a video or a pic or two to grab readers excited about everything’ve written. Just my opinion,
it might bring your posts a little bit more interesting.
I used to be recommended this blog through my cousin. I am no longer sure whether this post is written by means of him as no one else
know such exact approximately my trouble. You are incredible!
Thank you!
Hello, this weekend is good for me, because this occasion i am
reading this great educational post here at my home.
With havin so much content and articles do you ever
run into any problems of plagorism or copyright violation?
My website has a lot of exclusive content I’ve either authored myself or outsourced but it looks like a lot of it is popping it up all over the internet without
my permission. Do you know any techniques to help reduce content from being
stolen? I’d really appreciate it.
This post is in fact a good one it assists new net visitors, who are
wishing in favor of blogging.