Categorie archieven: VMware

PowerShell, VCF, VMware

Password Rotation in VCF SDDC Manager

Een reactie plaatsen

VCF-Logo-large-300x169.png - VMware BlogsIn today’s security conscious IT landscape (with databreaches news everywhere), password rotation is a critical practice for maintaining the integrity and security of your infrastructure. Within VMware by Broadcome’s VMware Cloud Foundation (VCF), the SDDC Manager plays an important role in orchestrating and automating this process across the VMware based software defined data center.

Password rotation helps mitigate the risk of credential compromise by ensuring that passwords are changed regularly and are not reused across systems. In environments like VCF, where multiple components such as vCenter, NSX, vSAN, and others are tightly integrated, managing credentials manually can be an error sencitive  and time-consuming task.

Lees verder Password Rotation in VCF SDDC Manager

NSX, VCF

Understanding BGP Peering in NSX

Een reactie plaatsen

image

In this article, I will dive into the functionality of BGP (Border Gateway Protocol) peering within a VMware Cloud Foundation (VCF) and NSX environment. Since VMware’s acquisition of Broadcom, the company’s primary focus has shifted toward expanding and optimizing VCF, making it a critical area of development for enterprise customers.

I’ve been fortunate enough to work with large-scale clients who can fully leverage the benefits that VCF provides. This experience has not only broadened my technical expertise but also given me valuable insights into the real-world applications of VCF in enterprise environments. NSX has always been a key area of interest for me, and integrating it with VCF presented a new, exciting learning curve that I’ve thoroughly enjoyed navigating.

One of the critical aspects of delivering a successful VCF environment is ensuring seamless connectivity with the broader network infrastructure. This is where BGP comes into play. To ensure reliable and efficient routing in and out of VCF, BGP is an essential protocol that helps facilitate proper network communication and routing across complex environments. In the following sections, I will walk you through the importance of BGP peering in a VCF/NSX setup and how it enables smooth, scalable networking.

Lees verder Understanding BGP Peering in NSX

Cloud, ESXi, NSX, vCenter, VCF, VMware, vSAN

What is new in VMware Cloud Foundation 5.0?

Een reactie plaatsen

VCF-Logo-1-1.png - VMware BlogsOn June 1st VMware released the latest version for VMware Cloud Foundation (VCF), version 5.0. The release of VCF 5.0 means that VCF customers now can benefit from all the cool new features included in vSphere 8.x and NSX 4.1.x.

The first release off VCF dates back to 2015. During the VMworld (what we now know as VMware Explore) of that year VMware launched a product called SDDC EVO. In the following years that product evolved to what we know today as VCF.

Lees verder What is new in VMware Cloud Foundation 5.0?

NSX, VMware

Change NSX passwords with the API

Een reactie plaatsen

image

Today I received a message from a customer that he wanted to change his NSX passwords to more complex passwords for the various account within his NSX environment.

NSX allows you to change the passwords by using API calls. API are a common way of managing your NSX environment. I think changing the NSX accounts passwords is a good way for getting yourself familiar with using API for managing NSX. it is quite a simple task, and this is a good way to practice using a API and Postman. Let me talk you through how to accomplish this task.

Lees verder Change NSX passwords with the API

NSX

Replace Local Manager Certificate

Een reactie plaatsen

imageA customer send out the request to take a look at a few alarms they received in the NSX Manager console. The alarm they received was about a expiring certificate for local manager.

We did some investigating from the NSX Manager and it was clear that this was a self-signed (not linked to the company own PKI infrastructure) and it was in use. This last comment means we have to use the Application Programing Interface (API) to tell NSX to use the new certificate.

Since this is a production environment we don’t do anything before we have verified that a recent backup of the NSX database is available. Please take note that a VMware snapshot is not supported the restore a NSX Manager Cluster. It is  best practice to have a scheduled NSX Manager backup schedule. Before we start working on the environment we create a manual backup of the NSX database.

Lees verder Replace Local Manager Certificate

NSX, VMware

Unable to delete a segment in NSX because of an orphaned logical port

Een reactie plaatsen

imageFor one of our customers all NSX related questions are routed to me (pun intended). I received a customer ticket stating that they where not able to remove an unused NSX created port group although it is not in use while observing from vCenter.

After some investigating within NSX it was clear that this issues was caused by an orphaned logical port. NSX allows you to do allot of the config from the UI, but for some actions it is required to turn to the application programming interface (API). NSX provides a programmatic API to automate management activities. The API follows a resource-oriented architecture by using JSON object encoding. Clients interact with the management plane by using RESTful web service calls over HTTPS.

Lees verder Unable to delete a segment in NSX because of an orphaned logical port

vCenter, VMware

vSphere 8: What is new?

Een reactie plaatsen

Image result for vsphere 8 logovSphere 8 has been released on October 11 in 2022. It was first announced during the VMware Explore US (the event previously known as VMworld). vSphere 8 includes many new features . To be clear, when we talk about vSphere we talk about both vCenter Server and ESXi.

Compared to VMware vSphere 7 U3, this new release has increased a number of hard limits:

  • Lifecycle Manager can now manage 1000 ESXi Hosts, this was 400 in the previous release.
  • A cluster can now hold 10000 VMs, this was 8000 in the previous release.
  • VM DirectPath I/O devices per host is increased from 8 to 32.

Lees verder vSphere 8: What is new?

NSX, VMware

NSX Microsegmentation

Een reactie plaatsen

image

In this blog article I will first give you some history of the NSX product and how it evolved to the current product that we all know today. Next I will explain the security use case for NSX. And show you step by step how to implement this in your environment.

A bit of history
In 2012, VMware acquired a company called Nicira. One year later VMware launched of the first NSX product from to the public. One year later in 2013 VMware launched NSX for vSphere (NSX-V). NSX-V came with its limitations. To name a few It was tied into vCenter and it was not possible to create multi-tier routing. In 2016 came VMware launched NSX 1.0 which later evolved into NSX Datacenter. Now fast forward to January 22 of 2022, on this day VMware release NSX for Datacenter version 3.2.0.1. This release came with a long list of improvement on his predecessor. The migration and upgrade assistance is very much improved to allow this version to operate in a wide variation of environments. Another big change is the launch of the Kubernetes bases NSX Application Platform. Lees verder NSX Microsegmentation

NSX, VMware

DPU-based Acceleration for NSX 4.0

Een reactie plaatsen

imageDPU-based Acceleration for NSX is a result of Project Monterey. VMware began with this project around two years ago. VMware will continue to offer support for hypervisor-based NSX architectures, but the capability of running NSX on a DPU or SmartNIC offers major advantages for customers that require accelerated network performance such as healthcare and financial services.

In this blog I will take you step by step to understand the magnitude of DBU-based Acceleration for NSX.

Lees verder DPU-based Acceleration for NSX 4.0

vCenter, VMware, vSAN

What is new in vSAN 8?

Een reactie plaatsen

imageOn VMware Explore US (the event previously known as VMworld) vSphere 8 and vSAN 8 was announced. In this blog I want to explain what has been changed. vSAN was first introduced back in 2014, the product has been evolved allot in these past 8 years. A few of these changes are support for All-Flash, Encryption, Deduplication and allot improvement in how vSAN handles failures and maintenance mode.

Lees verder What is new in vSAN 8?