Actually i have 4 pNIC per server and i do that scheme: vSwitch0 with 1 pNIC has a SC, vSwitch1 with 1 pNIC has a Vmotion and vSwitch2 with 2 pNIC has a VM net and SC 2. Because i need redundancy to my VMs,i just add SC 2 to that vswitch.

About routes, after removing SC2 from first server it's look normal:

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

192.168.0.0 0.0.0.0 255.255.248.0 U 0 0 0 vswif0

0.0.0.0 192.168.1.235 0.0.0.0 UG 0 0 0 vswif0

But on second server it looks strange(anyway it works almost normal) :

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

192.168.0.0 0.0.0.0 255.255.248.0 U 0 0 0 vswif0

192.168.0.0 0.0.0.0 255.255.248.0 U 0 0 0 vswif1

169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 vswif1

0.0.0.0 192.168.1.235 0.0.0.0 UG 0 0 0 vswif0

BTW tried VI client from my home desktop through vpn, but same as in local network

Hello,

You have two issues really, one is a security issue, you should not have a Service Console port on the same vSwitch as your VMs. To get the redundancy you want I would use:

pNIC0 -> SC -> vSwitch0 (backup for VMotion)

pNIC1 -> vMotion -> vSwitch0 (backup for SC)

pNIC2&3 -> VMs -> vSwitch1

The VMotion/SC would not comingle unless one of them failed, this works best however when you have VLANs, but different subnets would also work. If you use VLANs, things are easier to configure than if you use subnets.

You want the vSwitch to handle all redundancy for you.

Best regards,

Edward L. Haletky

VMware Communities User Moderator

====

Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.

SearchVMware Blog: http://itknowledgeexchange.techtarget.com/virtualization-pro/

Blue Gears Blogs - http://www.itworld.com/ and http://www.networkworld.com/community/haletky

As well as the Virtualization Wiki at http://www.astroarch.com/wiki/index.php/Virtualization

So if one of the vmotion\SC pNIC fail they dont conflict and can use same pNIC without problems?(in documentation i find only recommendation about using vmotion as separate lan and pNIC) If yes it's look better, thanks.

Hello,

Yes as long as they are on different VLANs or subnets. VLANs would be better else you have routing issues.

Best regards,

Edward L. Haletky

VMware Communities User Moderator

====

Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.

SearchVMware Blog: http://itknowledgeexchange.techtarget.com/virtualization-pro/

Blue Gears Blogs - http://www.itworld.com/ and http://www.networkworld.com/community/haletky

As well as the Virtualization Wiki at http://www.astroarch.com/wiki/index.php/Virtualization

Okay, thank you. But still here the main issue with VI Console.

Ok here the deal. Remeber i told i setup second SC net and remove them later? This is the root of problems, because in dns i make round-robin to my ESXes they try to connect to IP that doesnt exsist anymore when i try open console. So you need to flush dns cache on your client where your run VI client and on ESX host. On windows just run ipconfig /flushdns and ssh to your esx and do service network restart(dont afraid, this restart only SC network and flush dns cache also). Lesson learned: check your DNS settings and dont forget to flush cache if your make changes.