http://software.opensuse.org/download.html?project=devel%3Alanguages%3Aperl&package=perl-Net-Pcap I was wondering when the vMA appliance will be updated to a newer version of SUSE? I wanted...
See more...
http://software.opensuse.org/download.html?project=devel%3Alanguages%3Aperl&package=perl-Net-Pcap I was wondering when the vMA appliance will be updated to a newer version of SUSE? I wanted to install Net Pcap to do some network scripting in my perl scripts. However after doing some searching on the internet it appears that I can only download packages for 11.4 of SUSE. I am running the vMA appliance 5.5 which appears to be running on SUSE 11.2.
Looks this functionality doesn't exactly exist right now. Here are some options: SYSLOG Server Poing the vShield appliance at a SYSLOG server Allows you to look back in time Requires you ...
See more...
Looks this functionality doesn't exactly exist right now. Here are some options: SYSLOG Server Poing the vShield appliance at a SYSLOG server Allows you to look back in time Requires you to setup a syslog server if you don't have one SSH to vShield appliance Here you can watch network traffic in action Using commands like: show flowtable flowspec srcip=192.168.175.78 Only shows you live traffic, does not show you history show log follow Shows live traffic as it happens show log Lets you see what has happened in the past using these log commands requires that the firewall rules have logging enabled Would like to know of any other methods that can be used.
We have been using VMware vCloud Networking and Security in our test and dev environment and will be implementing this into production soon. I am still unsure how I can observe current and past t...
See more...
We have been using VMware vCloud Networking and Security in our test and dev environment and will be implementing this into production soon. I am still unsure how I can observe current and past traffic history for troubleshooting purposes. Specifically I am talking about a vShield Edge that I have deployed. Let me use Microsoft ISA Server 2006 as an example of what I am talking about. I can open ISA Server Management MMC In here I can go to Monitoring > Logging For current traffic observation I can define a query with criteria such a Client IP and Log Time = Live I can then watch this live log as I attempt to reproduce the client issue I am having which helps me diagnose things like "oh I need to open that port" For past traffic history I can define a query with criteria such a Client IP and Log Time = Specific Time Period I can then read through the logs for this specific time period to help me diagnose the issue that was reported to me\ How can I perform this functionality on a vShield Edge? I currently have deployed vShield Mananger 5.1.1-848085 which has been used to deploy the vShield Edge into our test and dev environment.
Anyone reading this thread should check out ESXi-Customizer. http://www.v-front.de/p/esxi-customizer.html I had a custom ISO with the 3Ware 9750 controller VIB created in a matter of minute...
See more...
Anyone reading this thread should check out ESXi-Customizer. http://www.v-front.de/p/esxi-customizer.html I had a custom ISO with the 3Ware 9750 controller VIB created in a matter of minutes, it was so simple. Just point and click.
I am in the process of deploying vShield Manager in our test and dev environment (before we implement in production). I have been reading the documentation "vShield Installation and Upgrade Gu...
See more...
I am in the process of deploying vShield Manager in our test and dev environment (before we implement in production). I have been reading the documentation "vShield Installation and Upgrade Guide - vShield Manager 5.1". On page 20 the following statement is made: NOTE Do not place the management interface of the vShield Manager in the same port group as the Service Console and VMkernel. Question: Is it OK for the vShield Manager to be in the same subnet and VLAN as the Service Console and VMkernel, using a dedicated port group? For example I create another port group that has the same VLAN as the Service Console and VMkernel and the vShield Manager uses this? Let me elaborate with an example. On page 19 the following statement is made: With vShield 5.0 and later, you can install the vShield Manager in a different vCenter than the one that the vShield Manager will be interoperating with. A single vShield Manager serves a single vCenter Server environment. vCenter1 This is the vCenter that the vShield Manager will be deployed to It is using the portgroup "Management Network" with the VLAN 18 for the Service Console and VMkernel It is on the subnet 192.168.10.0/24 vShield Manager This vShield Manager is running under vCenter 1 It is using the portgroup "Management Network for vShield Manager ONLY" with the VLAN 18 This is where the management interface of the vShield Manager will be running It is on the subnet 192.168.10.0/24 vCenter2 This is the vCenter that the vShield Manager will be interoperating with It is a VM running under vCenter1 It is on the subnet 192.168.10.0/24 It is using the portgroup "Management Network" with the VLAN 18 for the VM traffic So my question again: Is it OK for the vShield Manager to be in the same subnet and VLAN as the Service Console and VMkernel, using a dedicated port group?
I've been playing with vCenter 5.1.0A and vCloud Networking and Security 5.1.1. I needed to add users or groups as the FDQN of my local domain. Your domain is widgets.local Add the user or...
See more...
I've been playing with vCenter 5.1.0A and vCloud Networking and Security 5.1.1. I needed to add users or groups as the FDQN of my local domain. Your domain is widgets.local Add the user or group add widgets.local\user or widgets.local\group This is from the documentation on page 34. NOTE If the vCenter user is from a domain (such as a SSO user), then you must enter a fully qualified windows domain path. This will allow the default vShield Manager user (admin) as well as the SSO default user (admin) to login to vShield Manager. This user name is for login to the vShield Manager user interface, and cannot be used to access the vShield App or vShield Manager CLIs.
I've been spending lots of time working on the new vCenter 5.1.0A. I have two vCenter environments in my test and dev. vCenter1 = Windows 2008 R2 vCenter server. It has local domain Microso...
See more...
I've been spending lots of time working on the new vCenter 5.1.0A. I have two vCenter environments in my test and dev. vCenter1 = Windows 2008 R2 vCenter server. It has local domain Microsoft CA self signed certificates as per following Derek Seamans blog http://derek858.blogspot.com.au/2012/09/vmware-vcenter-51-installation-part-1.html. I can add ESXi hosts to this vCenter no problems. These ESXi hosts have local domain Microsoft CA self signed certificates. vCenter2 = VMware vCenter Server Appliance. It has local domain Microsoft CA self signed certificates as per following Doug Baer's blog http://www.goitpartners.com/blog/?p=662. I CANNOT add ESXi hosts to this vCenter when they have local domain Microsoft CA self signed certificates. I CAN add an ESXi host only if I have NOT done anything with the certificates. The error I get is: License not available to perform the operation. License file download from blade001.xxx.yyy to vCenter Server failed due to exception: vim.fault.SSLVerifyFault. I've attached the screenshot "unable to add host to ESXi - custom cert.png" that shows this. When I add an ESXi host that has NOT had the certificate replaced, I get prompted that it is unable to verify the authenticity of the host and asks me to veryify the thumbprint. I click yes to verify and the host is added successfully. I've attached the screenshot "Adding host blade002 with default cert.png" that shows this. So this is really puzzling. When a host has a replaced certificate, the thumbpring MUST be verified by the vCenter Appliance because I DO NOT get prompted about the authenticity of the host. Is anyone else experiencing this? The one thing I really want to make clear is: I can add the ESXi host with replaced certificates to a vCenter 5.1.0A server running on Windows 2008 R2 (vCenter1) This then confirms with me that there is nothing wrong with the certificate on the ESXi host I remove the host from vCenter1 I try and add the host to vCenter2 (Appliance) and I get the error, the host never gets added to vCenter
I have been reading the vSphere availability guide vsphere-esxi-vcenter-server-501-availability-guide.pdf. On page 45 it states: The combination of the virtual machine's guest operating syste...
See more...
I have been reading the vSphere availability guide vsphere-esxi-vcenter-server-501-availability-guide.pdf. On page 45 it states: The combination of the virtual machine's guest operating system and processor must be supported by Fault Tolerance (for example, 32-bit Solaris on AMD-based processors is not currently supported). See the VMware knowledge base article at http://kb.vmware.com/kb/1008027 for information on supported combinations of processors and guest operating systems. When I visit http://kb.vmware.com/kb/1008027 I only see Windows Server 2008 listed, not R2. Am I to assume that "Windows Server 2008" covers server 2008 (32bit and 64bit) along with 2008 R2? I see there is a Windows Server 2003 (32bit and 64bit) but no Windows Server 2003 R2. I know it seems obvious that R2 would be included under the Server 2008 umbrella however these are vastly different OS's. For example with Server 2003 and Server 2003 R2 the service packs work for both versions. However with Server 2008 and Server 2008 R2 they are completely different service packs. I just wanted to get some confirmation before I steam roll ahead and implement fault tolerance only to discover that I am running unsupported guest OS's.
I had a chat to Dell at VMworld about HIT/VE and they said they have a new version coming out shortly that will allow it to talk to multiple EQL groups.
I'm on the same page as you, I'm also using vSphere 5 Update 1. I did happen to try out the Host Integration Tools for VMware (HIT/VE). This is an EqualLogic virtual appliance that communicate...
See more...
I'm on the same page as you, I'm also using vSphere 5 Update 1. I did happen to try out the Host Integration Tools for VMware (HIT/VE). This is an EqualLogic virtual appliance that communicates with the EqualLogic SANs and vCenter. However it is only aimed at small deployments for the following reasons: HIT/VE can only talk to a single instance of vCenter HIT/VE can only talk to a single PS series group The ability to only talk to a single PS series group is a real show stopper for me. I have multiple groups and I don't want to have to deploy multiple vCenter servers just to get around this stupid limitation. It's a pity because the HIT/VE shows a lot of promise and the possibility to fix our issue (there is a Datastore Manager component in HIT/VE). I did try implementing a HIT/VE appliances for each PS group however when the second appliance registers with vCenter the first appliance is de-registered. Doh! I too will be at VMworld this year so I'll also be addressing this issue with Dell (I was on their case about it last year as well). I don't see it being a VMware issue, our older SAN is an EMC SAN and it never has this issue when deleting luns.
I have done this in the past and it seemed to work OK until ... you introduce Distributed vSwitches to the mix. If the template uses a portgroup on a dvswitch it all fails. Example: vC...
See more...
I have done this in the past and it seemed to work OK until ... you introduce Distributed vSwitches to the mix. If the template uses a portgroup on a dvswitch it all fails. Example: vCenterA has templateX pointing to dvswitch portgroupY From vCenterB you browse the datastore and add templateX When you try and deploy templateX from vCenterB, it doesn't know what portgroupY is and it fails with some sort of "can't reference object error' (right when you right click and slect deploy vm from template)" This happened to me in vCenter 4.1 when I started using dvswitches. I haven't tried again in v5. I just keep a separte copy of the template for each vCenter. However I think it would still be possible if you created a local vswitch on each host with a portgroup called something like Template. Set templateX to use the Template portgroup and it should work across all vCenter servers. I've been thinking of doing this myself.
Cheers, I'll be testing that one as well. However the plugin I am talking about here is an EqualLogic specific one which is different to the one you are talking about.
I have not re-vistited this for some time now, I've just put up with it. The plugin should be available from the EqualLogic support website. I'll be upgrading to vSphere 5 soon so I'll be t...
See more...
I have not re-vistited this for some time now, I've just put up with it. The plugin should be available from the EqualLogic support website. I'll be upgrading to vSphere 5 soon so I'll be testing this plugin (if available) and other EqualLogic ones as I'll have some time for test and dev before putting it into production. If I find anything out I'll report here.
Not at this point in time, I need to disable the alerts on the EQL Group and SANHQ. However when I was at VMWorld 2011 I spoke to Dell and they informed me that there is a plugin coming out fo...
See more...
Not at this point in time, I need to disable the alerts on the EQL Group and SANHQ. However when I was at VMWorld 2011 I spoke to Dell and they informed me that there is a plugin coming out for vCenter that will allow you to delete volumes from within vCenter, you won't need to log into the Group manager. I would assume that this would circumvent the problem. There is also KB 1015084 that has a step by step guide on how to remove a VMFS volume, however I had a read of it and it seems overally complex. One little tip if you decide to disable the alerts, immediately create a calendar reminder to re-enable the alerts. I shudder to think about missing actual important alerts all because I forgot to re-enable them.