Author Archives: Ranjit Singh Thakurratan

Learning VMware NSX Second Edition Released

vmware, nsx

Just in time for VMworld 2017 which officially kicks off in an hour from now, the second edition of “Learning VMware NSX Second Edition” released.

I took all the constructive feedback from the first book and incorporated in the second edition. The second edition comes with all the applicable updates for NSX 6.3.3 and brings deep clarity to help you get started quickly with VMware NSX.

Software-defined Networking not only makes it easy to connect your networks and expand at fission pace, but also makes it a breeze to connect to multiple public clouds with near zero infrastructure investment (The statement depends on your topology).

Order your’s today and feel free to get back to me for all feedback. It will be most welcome.

Order today at –

Publisher

Amazon

Lastly, many thanks to my readers and last but not the least, my lovely Wife and my lovely Pup who remind me why we need to smile every day and celebrate our lives.

VMware Security Advisory

VMware blog announced a security advisory today.

The advisory documents a hard to exploit denial of service vulnerability in the implementation of the OSPF protocol in NSX-V Edge (CVE-2017-4920). This issue is present due to incorrect handling of link-state advertisements (LSA). NSX-V Edge 6.2.8 and NSX-V Edge 6.3.3 address the issue.

More Info VMSA-2017-0014

VMworld NSX SWAG :: AIRDROP

VMworld 2017 is close and the vExpert team made sure they kept us happy.

Today I got my vExpert NSX VMworld Swag! A big box of goodies that helps vExperts stand out in the crowd.

Have a look

Inside there is a Jacket, a T-shirt and a water bottle – all branded vExpert NSX 2017!

Sweet – Thanks NSX vExpert Team!

VMworld 2017 – IT Meeting OT

IT/Digital transformation is the wave upon which all the major enterprises are hitching a ride. It promises not just innovation but faster product to market, cost reductions and over all revenue increases across the business.

This VMworld 2017, the theme is undoubtedly focused not just on technology, but on business outcomes through IT/Digital Transformation. It is important to remember that what you are doing or working on does not matter if it fails to achieve effective long term business outcomes. This is what every business executive is driven towards – to achieve these business outcomes with maximum efficiency and minimal costs.

As technologies evolved, business were quick to extract more value out of their physical assets without increasing costs (and assets) exponentially. This has undoubtedly increased the consumption and management of these ever growing and highly sought after resources.

Companies today lack the resources, the understanding and the necessary customization that are required to build these transformational processes that drive the efficiency engine behind IT/digital transformation. Applying older processes to a advanced technology is equivalent to having an advanced engine in a 1940’s sedan. The engine will work well but the sedan will simply fall apart.

We will continue this discussion and talk about identifying different aspects of IT transformation and gradually take the conversation to OT (Operational) transformation. Stay tuned.

SDDC Era …

A post that went online on Monday.

Been preoccupied lately with loads of work and SDDC stuff but time to get back to sharing and caring!

The Software-Defined Data Center Era is Here

DR in vCloud Director

On Jan 26, VMware silently announced the release of vCloud Availability 1.0.1 which allows you to build disaster recovery solutions in vCloud Director. The idea here is replication of VMs to a multi-tenant cloud. The best thing about this replication technology is that you don’t need a special replication network and replication traffic can safely travel over the internet. Another thing to note is that replication in either way is always initiated from the on-prem site only.

After VMware cloud showed up, there was a dire need for having cloud as replication traffic target and VMware is aiming to solve it by vCloud Availability 1.0.1. The service is said to scale to hundreds of customers which means any hosting provider can now be a DR target to a plethora of customers.

You can read more details on how it works – here

The official VMware blog about it is – here.

 

 

 

So Sensitive… vRA

vRA is very sensitive. All the users, all the permissions and all the DEM workers have to be all set and happy or else you will start missing tabs in vRA which causes you to break your head.

I started missing the Reservations tab and it was frustrating! Yes it was.

There was this decent KB that made me realize how important it is to add users and connect to their appropriate permissions in vRA.

Here is the KB article.

vSAN Design Decision

Just a quick read and a refresher on vSAN Design Decision to keep my memory fresh..

Sizing for capacity, maintenance and availability 

1. The minimum configuration required for Virtual SAN is 3 ESXi hosts, or two hosts in conjunction with an external witness node. However, this smallest environment has important restrictions.

2. In Virtual SAN, if there is a failure, an attempt is made to rebuild any virtual machine components from the failed device or host on the remaining cluster. In a 3-node cluster, if one node fails, there is nowhere to rebuild the failed components. The same principle holds for a host that is placed in maintenance mode.

3. One of the maintenance mode options is to evacuate all the data from the host. However, this will only be possible if there are 4 or more nodes in the cluster, and the cluster has enough spare capacity.

4. One additional consideration is the size of the capacity layer. Since virtual machines deployed on Virtual SAN are policy driven, and one of those policy settings (NumberOfFailuresToTolerate) will make a mirror copy of the virtual machine data, one needs to consider how much capacity is required to tolerate one or more failures.

Design decision: 4 nodes or more provide more availability options than 3 node configurations. Ensure there is enough storage capacity to meet the availability requirements and to allow for a rebuild of the components after a failure.

Brew Update Error in MacOS El Capitan

Brew or Homebrew kept erroring out on MacOS with El Capitan – turns out it had to do with security feature called SIP = Security integrity protection which prevents changes to the /System, /Usr and /sbin directory.

You can disable it by running – “csrutil disable” command.

For homebrew to work

$ sudo chown -R $(whoami):admin /usr/local  

If it still doesn’t work, use following steps

1. open terminal  
2. $ cd /usr/local  
3. $ git reset --hard  
4. $ git clean -df
5. $ brew update

Credit 

VMworld 2016, Book giveaway and New Updates!

vmworld2016

I have been very very busy with work and strategic leadership sessions which have kept me away from contributing to the community so let me begin with a huge sorry!

So VMworld 2016 – Be_Tomorrow is on and going and its really great to see VMware focus on IT transformation and hybrid cloud strategy to enable multi cloud “seamless” consumption – something few vendors out there offer and none is better than VMware themselves.

I am sure you heard about the new vRealize Automation 7.x release and the upcoming NSX features of multi cloud and hybrid cloud environments. This means you can use NSX to manage networks in Amazon and Azure! What you can also do is create “ONE” security policy that spans across all the clouds and automatically applies it! This means no going to each cloud platform to modify your policy – apply it in NSX and see it get enforced in AWS, GCP, vCloud Air, Azure and OpenStack! This is huge – unless you think security is not important – in which case you will be in trouble soon.

Horizon Suite has some major updates as well! Below is a grab from this blog site.

  • Further enhancements to the protocol
  • Improvements in the GPU-encode/decode that significantly lower bandwidth and latency
  • Improvements in the JPG/PNG codec to reduce bandwidth utilization by 6x
  • vRealize Operations integration with Blast Extreme.  I can now see Blast statistics in the vROPs console
  • UEM Smart Policies Integration with Blast.  I can now use the same PCoIP smart policies to control the Blast protocol.  This enhancement also allows administrators to set per-device policies so I can set different policies for Windows, Mac, Android, and IOS.
  • A Raspberry Pi client

vRealize automation features are awesome – The new 7.x version includes

  • Improved Views – You can now see the IP Address of the provisioned VM in items view and change the All Services Icon!
  • Improved Migration and Upgrades – vRA 6 to 7.1
  • Out of the Box Active Directory Integration for provisioning
  • Out of the box IPAM integration – Infoblox
  • Portlets for external web content – Great for posting how to videos or company wide messages.
  • Scale out/in -Support for elastic applications

And still in Beta and super exciting

  • Native Container Support
  • Azure Endpoint – Provision to Microsoft Azure  (YAYYYYYYYYYYYY!!!!!!!)
  • vRA Service Now integration – Use Service Now portal for vRA (I FAINTED!!!)

Pretty awesome right? Well there are more upgrades and improvements in the entire VMware portfolio so will blog about it soon.

And before I forget – we had a very successful book signing session at the Rackspace booth! Stop by and have a chat with me or other awesome folks.

Be_Tomorrow!