Virtualization

If you’re a vSphere Administrator and have compliance regulations to deal with, vShield Endpoint might save you a lot of hassle. From my own experience with PCI-DSS, it was important to limit the cardholder data environment scope. The fewer devices that touch credit card data, the fewer items that had to be protected. In the same breath, it was important to have Anti-Virus, malware protection, firewall rules and file integrity monitoring. vShield Endpoint allows for all of these things to be handled in a single package. This post looks specifically at Trend Micro’s Deep Security Product. ...

In the first post in this series, we deployed the vShield Endpoint host driver and installed the Trend Micro Deep Security Manager on a Windows VM. Trend Micro Deep Security Appliance Deployment First, we need to login to the Deep Security Manager which is conveniently accessed as a web page. Go the the DNS name of the Manager that you entered during the setup wizard in part 1 of this series. Log in with the username and password that you specified. ...

The first parts of this series focused mainly on how to install the Trend Micro Deep Security product and how to prepare your environment. This post shows you a bit more of what can be accomplished with the product. vShield Endpoint Part 1 vSheidl Endpoint Part 2 Policies This is the guts of the product. All the configurations you’ve done up to this point have been leading up to a solution that can help secure your environment and possibly make it comply with a regulatory body. ...

Last week I attended the Virtualization Field Day 3 put on by the amazing staff at GestaltIT. One of the sessions was hosted by the folks at Atlantis Computing and they were giving us an overview of their Atlantis USX product. All travel expenses and incidentals were paid for by Gestalt IT to attend Virtual Field Day 3. This was the only compensation given. Atlantis USX Overview Before we get to the crux of the issue, a quick refresher on what Atlantis USX does. The USX product will utilize existing SAN, NAS and DAS and combine it with a server ram to do caching. The value proposition is that Atlantis USX can carve out RAM to be used as either a whole datastore (SUPER FAST) or combine it with existing storage and have it act as a cache. Keeping the cache so close to the processor without having to go across a bus or HBA, which can add additional latency, can be an important addition to a performance strapped storage solution. ...

High Availability is a great reason to virtualize your servers. It can help reduce downtime by automatically rebooting virtual machines in the case of a host failure. But, a relatively minor host issue should not cause the reboot of all of your virtual machines. This is where vCenter HA datastore heartbeats are useful. Let’s first look at a basic example of HA. Below is our normal environment with no failures. We have a few VMs on each host and the hosts are connected to a pair of datastores and a network switch. Now assume we have a host failure, we now need to have HA kick in and reboot the virtual machines on the failed host, over on the still working hosts. HA is working great and is a great feature, but lets take a look at what happens if the Management network were to fail. Without datastore heartbeats involved, the two hosts wouldn’t be able to communicate with each other over the network so the two of them would assume that the other was failed. But by looking at the example below we can see that even though the Management network is down, the virtual machines and their network is working just fine. This means that no outages are being noticed by end users so we DON’T want HA to kick in because the virtual machines will restart. ...

This is a Site Recovery Manager 5.5 Guide to help understand the design, installation, operation and architecture of setting up VMware SRM 5.5 SRM 5.5 Architecture SRM 5.5 Installation SRM 5.5 Site Configuration SRM 5.5 VM Replication Configuration SRM 5.5 Array Replication Configuration SRM 5.5 Virtual Appliance Replication SRM 5.5 Protection Groups SRM 5.5 Recovery Plans SRM 5.5 Bulk IP Customizations SRM 5.5 Test Recovery SRM 5.5 Recovery SRM Gotchas Official Documentation Links SRM 5.5 Release Notes SRM 5.5 Compatibility Matrix SRM 5.5 Documentation Center SRM Port Numbers SRM Product Page ...

I think the Olsen twins have been using FT longer than VMware has. Awesome! So you’ve got your brand new shiny VMware cluster all setup with HA and think, “Man, I’m in great shape now. Downtime is a thing of the past!”. Well, not so fast! VMware High Availability just means that if a physical host fails, the virtual machines can reboot on another host which LIMITS your downtime. What if your machines are so critical that you can’t have this reboot time in the case of a host failure? The answer might be VMware Fault Tolerance (FT). ...

I’m often asked about how to provision virtual machine disks. This almost always comes down to, “Should I use thick or thin disks?” and then “Should I do thin provisioning on the array or on the hypervisor?” So here we go: Thin vs Thick Thin provisioning: Thin provisioned disks don’t allocate all of the space during the provisioning of the storage. Instead, they allocate the space on demand. This is a great way to get more bang for you buck out of your storage. Let’s take a closer look with an example. ...

Disaster Recovery has never been easier to manage than it is right now. Virtualization has given engineers a tremendous tool to allow us to almost effortlessly move workloads between datacenters. Now that we’re virtualizing workloads, we’re now capable of standing up exact copies of our servers in two offices and have them up and running in very short RTOs. In the past year we’ve seen two major storms hit the East Coast causing severe power outages as well as making commutes difficult or impossible for users to get to work. Thanks to the cloud we have many more mobile users than we used to and even if they’re not considered mobile, their servers may not be located in their office. Cloud presents some great options for disaster recovery that should be taken advantage of, no matter what your geographic location. If you’re in a SMB and you don’t have a DR plan, GET ONE NOW! ...

VMware slot sizes are an important topic if you’re concerned with how many ESXi hosts are required to run your environment. What is a Slot? To begin this post, we need to understand what a slot is. A slot is the minimum amount of CPU and memory resources required for a single VM in an ESXi cluster. Slot size is an important concept because it affects admission control. A VMware ESXi cluster needs a way to determine how many resources need to be available in the event of a host failure. This slot calculation gives the cluster a way to reserve the right amount of resources. ...