We have been waiting for this update to be released since it was mentioned at PEX in February. Now to get it into the lab!
Category Archives: vSphere
VMware KB: Important Information before upgrading to vSphere 6.0
VMware KB: Default behavior of DRS has been changed to make the feature less aggressive
VMware KB: Default behavior of DRS has been changed to make the feature less aggressive.
VMware has released vCenter Server 5.5 Update 2 version D today. In the release notes, VMware called out that a new configuration parameter has been added to adjust DRS aggressiveness when a host is going into maintenance mode.
VMware KB: Configuring disks to use VMware Paravirtual SCSI (PVSCSI) adapters
The question of using the PVSCSI adapter in Windows Server templates comes up occasionally. The quoted VMware KB article has the VM and OS compatibility requirements as well as the steps to implement the driver.
For my purposes, I don’t recommend using the PVSCSI adapter for the OS disk. I prefer to maintain the highest level of compatibility with OS versions and possible use cases. For example, MS clustering is not supported.
I have seen improved VM disk performance when the PVSCSI adapter is used with applications that require higher IOPS.
VMware KB: Configuring disks to use VMware Paravirtual SCSI (PVSCSI) adapters.
VMware KB: Unable to open a virtual machine console using the vSphere Web client in VMware vCenter Server 5.5 update 2
This KB article restates an item from the vCenter 5.5 Update 2 release notes:
Virtual machines with HTML 5 console in vSphere 5.5 open connections with http:// instead of https://
When the HTML 5 console is launched on a virtual machine, it uses connections like http:// and web sockets like ws:// instead of secure connections like https:// and wss://.This release resolves the issue by launching the virtual machine console with secure connection over port 7343 instead of the connection over port 7331.
This was a welcome change, but it introduces a potential connectivity issue for those who don’t read the release notes!
Here is a link to the release notes: https://www.vmware.com/support/vsphere5/doc/vsphere-vcenter-server-55u2-release-notes.html#networkingissues
Here is the top level KB article for required TCP and UDP ports for vSphere products. Notice the left hand column where the version numbers are listed!
TCP and UDP Ports required to access VMware vCenter Server, VMware ESXi and ESX hosts, and other network components
vSphere Client 5.5 Update 2 now has the capability to edit VMs with VM hardware version 10
With the release of vSphere 5.5 Update 2 last week, the vSphere client now has the ability to edit the properties of VMs with hardware compatibility level set to version 10.
With previous versions of the vSphere Client ( aka as the “C# Client”), the following error message is displayed when you attempt to edit a VM with hardware version 10:
You cannot use the vSphere client to edit the settings of virtual machines of version 10 or higher. Use the vSphere Web Client to edit the settings of this virtual machine.
The VMware vSphere Blog article: http://blogs.vmware.com/vsphere/2014/09/using-vsphere-5-5u2-client-edit-settings-virtual-machines-version-10-higher.html describes the capabilities and includes a link with a typo for the following KB article: http://kb.vmware.com/kb/2061336.
For more information on the resolved and known issues with vCenter 5.5 Update 2, see the release notes at: https://www.vmware.com/support/vsphere5/doc/vsphere-vcenter-server-55u2-release-notes.html
Save 15% off VMware vSphere V5.5 Training and get a Free VCP Exam Voucher and a Free Gift
As a VCI, I regularly get asked about free exam vouchers or course discount deals… VMware education has a promotion running now through June 20, 2014 that includes a free VCP exam voucher, a 15% discount on a qualifying course and an additional gift.
If you have been waiting for a “deal” to afford the VCP certification, now is the time to save an get certified!
Save 15% off VMware vSphere V5.5 Training and get a
Free VCP Exam Voucher and a Free Gift
VSAN Deploy and Manage links
Here is a collection of links for resources mentioned in the VMware Virtual SAN: Deploy and Manage [V5.5] Train the Trainer class I am attending this week. Thanks to John Krueger for starting this list and sharing it with us! I plan to add to this list as we go and based on recommendations.
vSphere storage Guide – http://pubs.vmware.com/vsphere-55/topic/com.vmware.ICbase/PDF/vsphere-esxi-vcenter-server-551-storage-guide.pdf
vSphere Installation and Setup Guide – http://pubs.vmware.com/vsphere-55/topic/com.vmware.ICbase/PDF/vsphere-esxi-vcenter-server-551-installation-setup-guide.pdf
VMware Compatibility Guide for VSAN – https://www.vmware.com/resources/compatibility/search.php?deviceCategory=vsan
Virtual SAN Datasheet – http://www.vmware.com/files/pdf/products/vsan/VMware_Virtual_SAN_Datasheet.pdf
VMware® Virtual SAN™ Design and Sizing Guide – http://www.vmware.com/files/pdf/products/vsan/VSAN_Design_and_Sizing_Guide.pdf
VMware Virtual SAN Proof of Concept Guide – http://www.vmware.com/files/pdf/products/vsan/VMware_Virtual_SAN_POC_Guide.pdf
VMware Virtual SAN Quick Monitoring & Troubleshooting Reference Guide – http://www.vmware.com/files/pdf/products/vsan/VMware_Virtual_SAN_Quick_Monitoring_Reference_Guide.pdf
Virtual SAN YouTube video playlist – https://www.youtube.com/playlist?list=PL9MeVsU0uG65kM9iszj5KmNj01PiAWgvf
Virtual SAN (VSAN) Beta Webinar – How to Install, Configure & Manage: https://www.youtube.com/watch?v=cLfbeFoSQaI
How To Monitor Virtual SAN (VSAN) – https://www.youtube.com/watch?v=rHofTkK6K40
HOL-SDC-1308 – Virtual SAN (VSAN) and Virtual Storage Solutions – http://labs.hol.vmware.com/HOL/#lab/562
VMware Product Walkthrough for VSAN – http://featurewalkthrough.vmware.com/VSAN/
Cormac Hogan’s Blog – http://cormachogan.com/vsan/
Rawlinson Rivera’s Blog – http://www.punchingclouds.com/
Duncan Epping’s Blog – http://www.yellow-bricks.com/virtual-san/ – Duncan has collected a terrific compilation of blog posts related to VSAN!
Essential Virtual SAN (VSAN): Administrator’s Guide to VMware VSAN (VMware Press Technology)
vSphere: What’s New [V4.x to V5.5] supplemental weblinks
Various weblinks from the vSphere: What’s New [V4.x toV5.5] course-
http://packetlife.net/blog/2008/oct/18/cheat-sheets-tcpdump-and-wireshark/
Enabling vSphere Distributed Switch health check in the vSphere Web Client
Enhanced LACP Support on a vSphere 5.5 Distributed Switch
http://en.wikipedia.org/wiki/NetFlow
http://blogs.vmware.com/vsphere/2011/08/vsphere-5-new-networking-features-netflow.html
http://v-reality.info/2012/02/setting-up-netflow-on-vsphere-distributed-switch/
https://communities.intel.com/community/wired/blog/2010/09/07/sr-iov-explained
http://blog.scottlowe.org/2009/12/02/what-is-sr-iov/
http://www.youtube.com/watch?v=4l6T7bHNKeo – Flash Read Cache
Click to access VMware-vSphere-Flash-Read-Cache-FAQ.pdf
vSphere tags – http://www.youtube.com/watch?v=lQnSzP7kj7E
VDP Direct to Host restore – http://www.youtube.com/watch?v=TF7TnFncsgk
New VMware vSphere Blog post on ESXi console lockdown
This week I am back in the classroom teaching a vSphere 5.5: Install, Configure and Manage class for VMware in Sacramento, CA. During the first few sections of the class, the ESXi user interfaces and basic configuration tasks are presented, including an overview of the tasks that can be accomplished with DCUI (Direct Console User Interface). The topic of lockdown mode is mentioned as well as how to configure an ESXI host to use Active Directory for user authentication and a little advice on user account best practices. As part of the discussion, I bring up the use of an “ESX Admins” group in Active Directory, the treatment of the Root user password as an “in case of emergency” item to be tightly controlled and the use of lockdown mode.
Today when I was leaving class, I was happy to see a new blog post from Kyle Gleed of VMware entitled: “Restricting Access to the ESXi Host Console – Revisiting Lockdown Mode” and in particular his 5 step recommendation on restricting access to ESXi with version 5.1 or later:
1. Add your ESXi hosts to Active Directory. This not only allows users to use their existing active directory accounts to manage their ESXi hosts, but it eliminates the need to create and maintain local user accounts on each host.
2. Create the “ESX Admins” Group in Active Directory and add all your admins as members to this group. By default, when an ESXi hosts is added to active directory the “ESX Admins” group is assigned full admin privileges. Note that you can change the name of the group and customize the privileges (follow the link for information on how to do this).
3. Vault the “root” password. As I noted above, root is still able to override lockdown mode so you want to limit access to this account. With ESXi versions 5.1 and beyond you can now assign full admin rights to named users so it’s no longer necessary to use the root account for day-to-day administration. Don’t disable the root account, set a complex password and lock it away in a safe so you can access it if you ever need to.
4. Set a timeout for both the ESXiShellTimeOut and the ESXiShellInteractiveTimeOut. Should you ever need to temporarily enable access the ESXi Shell via SSH it’s good to set these timeouts so these services will automatically get shutdown and idle SSH/Shell sessions terminated.
5. Enable Lockdown Mode. Enabling lockdown mode prevents non-root users from logging onto the host console directly. This forces admins to manage the host through vCenter Server. Again, should a host ever become isolated from vCenter Server you can retrieve the root password and login as root to override the lockdown mode. Again, be sure not to disable the root user . The point is not to disable root access, but rather to avoid having admins use it for their day-to-day activities.
Terrific advice and I appreciate the timing, I will definitely refer to this in class this week and in the future!
Dennis Bray's Virtual Place 