First ESX's and first SAN install. Have been to Install & Config class but this is first hands on experience. I looked at the doc you sent and it is a good overview but doesn't address specific settings or best design layout. We have a 10.28.28.xx LAN config with it's own ESX NIC's and network switch. We have a seperate switch for our SAN network and have added a HBA and a (2) port NIC to the ESX with the intention of connecting to the SAN switch. The SAN network is 192.168.1.xx with a 255.255.0.0 subnet and is not xconn to the LAN switch. I have successfully installed ESX to boot from SAN thru the HBA and created a VM thru the HBA to a SAN datastore. MS iSCSI initiator is installed on the VM but will not connect to the SAN and I cannot ping anu of the SAN IP's from the VM. I'm looking for docs that show me the "proper way" and "best practices" to config the isolated network. We have an ESX and SAN that is at our office and not production that I can config/learn on. I seem to find a lot of overview docs but not much in depth setup stuff.

If you would like to have the VMs connect to the iSCSI LUN via the MS iSCSI initiator, they are going to have to be able to connect to the iSCSI subnet. I suppose you could configure routing so that whatever default gateway the VMs connect to can route the traffic to the iSCSI network. But, if this is the case, the iSCSI network really won't be isolated.

I agree with the previous poster: What is the logic of having the VMs use the iSCSI initiator to connect to the SAN for all create VMs?

To clarify - my question's purpose was not one of stating that using the

iSCSI initiator is illogical. The intent was to find out the actual

rationale given for using the Microsoft iSCSI initiator within the

VM....I'm interested in hearing it.

Steve Marfisi

It sounds like we are "on the same page".

I wasn't trying to criticize anyone's decisions, I am also curious.

The only time I have installed the MS iSCSI initiator within a VM is when I created a virtual VCB proxy for test/dev (which worked really well for its intended purpose).

steve -- take a look at the inofficial (not my spelling) performance thread. i remember seeing users getting better performance this way using the MS initiator vs the vmware initiator. also....maybe he is wanting to take advatage of his sans built in bells n whistles such snaps or replication

This came from the local area Equallogic rep. As I understand it their rationale was to use the HBA for actual connection traffic between the service console and the SAN. The Equallogic SAN has redundant controllers with (3) giganics each. The thought was to create the VM and add storage volumes to it using the MS iSCSI initiator. This was supposed to offload overhead from the HBA and give multiple gig bandwidth paths for the VM connections to the SAN. At least that is my understanding of the rationale.

I suspect what is meant here is the following

1. Use the HBAs x 2 to mount VMFS's and ESX Boot volumes. The VMFS's would support the VMDKs for Guest OS's

2. Use a SW Initiator native iSCSI mount from the Guest OS via GE NICS direct to the SAN for the Application Volumes

So usually 4 SAN facing interfaces in all. 2 HBA's and 2 GE NIC's

This was a correct assumption but our underlying problem still exists. SAN connection thru the HBA works fine but we still can't connect thru the NIC's. I believe it is a network setup issue within the ESX. I am just starting to learn configuring the vswitches and network. Any VM I create can connect thru a vswitch to the LAN (10.28.28.xx) but cannot connect to SAN network (192.168.1.xx). I have tried adding a second vswitch/NIC on the ESX and set the IP for the SAN but still can't connect (either by ping or iscsi initiator discovery). I can find a great many KB's/white papers with general overview but little about actual config of a VM/ESX to connect thru seperate switches and subnets.So far I am getting that best practice shows I need a seperate SAN network but now tell me how to actually config connection to it. Maybe I am entering wrong search parameters when I look for docs.

Thank you. This ultimately gave me the answer. I had already done all that you suggested and it didn't work. With your response I went back into My ESX Network config and checked settings. Both the LAN & SAN vswitches were set to use the same Virtual Machine Port Group (VM Network - which was the LAN IP port group). Once I changed the SAN vswitch to the proper Port Group all started working properly. Thanks again.

Ahhh, I misunderstood your question.

Regardless, I would not have expected that running an iSCSI initiator within a VM would increase performance - apparently it does.

That is what I love about these forums - I learn something new everyday!!!

Hello,

We also have an Equallogic SAN and am in the process of migrating our locally installed VMs onto it.

I've also been told about the best practice of running an iSCSI initiator in the VM to attach it to the HBA that is physically installed in the host server. I'm at the point of looking to see the SAN via an iSCSI initiator in a VM after connecting it to the hardware HBA in our ESX server.

Our network ip address range is 192.168.x.x and our SAN is on the IP address range of 10.7.0.x - the HBA is dual port and has the ip address ranges of 10.7.0.100 and .101 and I can see the volume in the VI client, but not in the existing VMs.

I cannot see how you could create a Vswitch with an HBA connection - it only shows NICs not HBAs.

Can anyone help with this or point me in the right direction?

Thanks,

Paul

I cannot see how you could create a Vswitch with an HBA connection - it only shows NICs not HBAs.

Can anyone help with this or point me in the right direction?

Thanks,

Paul

An iSCSI HBA is not a NIC to the host, (It is viewed as a SCSI adapter) thusly it can not be connected to a vswitch.

We setup our ESX servers to boot from SAN. For this we used a hardware HBA to talk between the servcie console and the SAN. For now we have a single port HBA on each ESX but will probably change to dual port as our network grows and we become more comfortable with our "standard configuration". Our ESX servers have a 2 port embedded NIC and we added an addtional 2 port PCI card to our expansion cage. Our Production network and our SAN network are on seperate subnets. We created a seperate vswitch with a different VMnetwork to allow connection for iscsi traffic. We then added a second nic to our VM and tied it to the new VMnetwork & vswitch then statically set it our SAN subnet. Now I could see my SAN thru the MS iscsi initiator on my VM. My error had been that when I added the second NIC on the VM I set it to the wrong VMnetwork.

Equallogic told me that it was best to have the boot from SAN going thru the hardware HBA and then use the MS iscsi initiator to add storage volumes to my VM's. According to them this gives me better performance and more flexibility than having all traffic go thru the HBA. What we are doing is creating our VM servers with an established OS partition size that suits our needs. This is all done on a datastore recognized by the HBA. We then install the iscsi initiator and create our data volumes thru the NIC's.

I hope this answres your question. Pardon the detail/repition but I am learning as well and organizing what I know - or at least think I do. One word of advice thru experience. When you create volumes/datastores on your SAN don't link them both HBA and iscsi initiators. You can easily confuse what you are looking at and allot more storage than you have available.