best practices of restart patch

Similar Questions

• Best practices for the restart of the nodes of the ISE?

  Hello community,

  I administer an ISE installation with two nodes (I'm not a specialist of the ISE, my job is simply to manage the user/mac-addresses... but now I have to move my ISE a VMWare Cluster nodes to another VMWare Cluster.

  (Both VMWare environments are connected to our network of the company, but are different environments. vMotion is not possible)

  I want to stop ISE02, move it to our new VMWare environment and start it again.

  That I could do this with our ISE01 node...

  Are there best practices to achieve this? (Stop request first, stopl replikation etc.) ?

  Can I really just reboot a node ISE - or I have consider something before I do this? After I did this?

  All tasks after reboot?

  Thanks for any answer!

  ISE01
  Administration, monitoring, Service policy
  PRI (A), DRY (M)

  ISE02
  Administration, monitoring, Service policy
  SEC (A), PRI (M)

  There is a lot to consider here.  If changing environments involves a change of IP address and IP extended, then your policies, profiles and DACL would also change among other things.  If this is the case, create a new VM ISE in the new environment in evaluation license using the and recreate the old environment deployment by using the address of the new environment scheme.  Then a new secondary node set rotation and enter it on the primary.  Once this is done, you can re - host license from your old environment on your new environment.  You can use this tool to re - host:

  https://Tools.Cisco.com/swift/LicensingUI/loadDemoLicensee?formid=3999

  If IP addressing is to stay the same, it becomes simpler.

  First and always, perform an operational backup and configuration.

  If the downtime is not a problem, or if you have a window of maintenance of an hour or so: just to close the two nodes.  Transfer to the new environment and light them, head node first, of course.

  If the downtime is a problem, stop the secondary node and transfer it to the new environment.  Start the secondary node and when he comes back, stop the main node.  Once that stopped services on the head node, promote the secondary node to the primary node.

  Transfer of the FORMER primary node to the new environment and turn it on.  She should play the role of secondary node.  If it is not the case, assign this role through the GUI.

  Remember, the proper way to shut down a node of ISE is:

  request stop ise

  Halt

  By using these commands, the risk of database corruption decreases by 90% (remember to always backup).

  Please rate useful messages and mark this question as answered if, in fact, does that answer your question.  Otherwise, feel free to post additional questions.

  Charles Moreton

• change the vswitch, best practical question

  Hello

  Here is the scenario, I invited XP and I want to spend the vswitch he connected too.

  Is it safe to simply change the properties of comments in the vshpere client, set up the different vswitch, select ok. (without closing comments)

  Here is what happened last week and I would like to get feedback to see if I did something outside best practices.

  I have a xp machine who's job it is to move files within our company.  In house app, had problems with the performance, of course the bandwidth network has been a problem but also a sustained the 100% CPU usage whenever the application in the House is running. I made a few changes, first I changed the network card to a vswitch with no other guests connected, than giving a non-shared on the network connection to this comments

  I stopped our applications in the House that copies the edited files the client settings, change to the another vswitch, selecting ok...  Everything seemed fine, restarted apps and found no problem.

  The next day, I increased the RAM on the host of Meg 512 to 1024 Meg as the available physical ram was weak, and I suspected disk cache.  Stop the guest computer, editing the memory and it has increased from 1024 to vsphere...  Restarted and is the reason for my questions, which connects to run the application has been corrupted and would not load the profile.

  I should add that the application users often use the method "end task" through windows to complete the process as soon as they are sometimes does not.  Not something I tend to do what I think may be a cause of file corruption.

  My boss suggested that he believes that my approach is the cause of profile corruption, citing specifically the way in which I changed the vswitch that the guest has been connected.  My understanding at this point is that my approach was equivalent to not patch a machine and plug in another switch, and I don't see how, which could cause a windows become corrupt profile.

  Ideas of the community?  Expect honesty burtal if my method is in error.

  Change the who vswitch a virtual computer to connect during operation is perfectly accetable as only the switch that you move to can access the subnet of the virtual computer is configured for - it's like unplugging a [machine to go to an actual physical switch and plug it into a new physical switch -

• Best practices of a partition of HDD on Windowes Server2008 and Windowes 2012

  What is the best practice for partition of HDD on Windowes Server 2008 and 2012 Windowes

  Could be interesting to ask more http://social.technet.microsoft.com/Forums/en-US/winservergen/threads that you can get more answers.

  That said I would say that very much depends on what you intend to do with the server, and of course how much space you have available.

  For a general server I would probably go with two volumes, the C:\ drive for the file system and a second volume for your data, for example E:\. I recommend at LEAST 30 GB for the C:\, 40-50 GB preference, since updates, patches, etc will burn way over time and it's much easier to start big than to try to develop later.

  If you are running the Terminal Services, then you will probably need a larger C:\ amount as a large part of the user profile data is stored there in order to run lack of space fairly easily.

  As I said, it depends on what you do, how much space and disks you have available etc, it isn't really a one-size-fits-all answers.

• Connecting two 6224 separate batteries best practices LAG?

  Hello

  I wonder how I should configure LAG between two powerconnect 6224 batteries (2 x powerconnect 6224 by battery) for iSCSI against 4 members EQL traffic, I intend to use the 4 ports of each stack (stack cross-possible LAG on 6224?) and equallogic documentation leaves me in two minds when it wants to run LACP or not?

  I wonder what reviewed best practices in this scenario?

  Cross-stack, LACP and no PLEASE or am I better of without LACP?

  Thanks in advance

  Cree

  The ports connecting the two piles together will be configured differently than the ports of connection of the battery to the EQL appliance. During the connection of the control unit switch EQL is when you might want to disable STP on that specific port.

  «Do not use of Spanning Tree (STP) on switch ports that connect to the terminal nodes (iSCSI initiators or storage array network interfaces).» However, if you want to use STP or Rapid STP (preferable to STP), you must enable port settings available on some switches that allow the port immediately transition to PLEASE State reference to link up. This feature can reduce network interruptions that occur when devices to restart, and should only be enabled on switch ports that connect the nodes. "

  With the network cards on the EQL devices according to me, there is only one active port, and the other is pending. So on the switch ports that are plug on the EQL will be in access mode for your iSCSI VLANS. Maybe someone more about EQL can chime to confirm.

  Here are some good white pages.

  www.dell.com/.../Dell_EqualLogic_%20iSCSI_Optimization_for_Dell_Power_onnect_%20Switches.pdf

  docs.danielkassner.com/.../ISCSI_optimization_EQL.pdf

  www.Dell.com/.../EQL-8024f-4-Switch.pdf

• I'm looking for help to share best practices to upgrade the Site Recovery Manager (SRM), if someone can summarize the preparatory tasks?

  I'm looking for help to share best practices to upgrade the Site Recovery Manager (SRM), if someone can summarize the preparatory tasks?

  Hello

  Please check the content below, you may find useful.

  Please refer to the URL: Documentation VMware Site Recovery Manager for more detailed instructions.

  Important

  Check that there is no cleanup operation pending on recovery plans and there is no problem of configuration for the virtual machines that protects the Site Recovery Manager.

  1 all the recovery plans are in ready state.

  2 the protection status of all protection groups is OK.

  3 the status of the protection of all the individual virtual machines in the protection groups is OK.

  4 the recovery of all groups of protection status is ready.

  5. If you have configured the advanced settings in the existing installation, note settings you configured before the upgrade.

  6 the vCenter local and remote server instances must be running when you upgrade the Site Recovery Manager.

  7 upgrade all components Server vCenter Site Recovery Manager on a site until you upgrade vCenter Server and Site Recovery Manager on the other site.

  8 download the setup of Site Recovery Manager file in a folder on the machines to be upgraded the Site Recovery Manager.

  9 make sure no other facilities-\no updates windows restarts done shoud

  Procedure:

  1. connect to the machine on the protected site on which you have installed the Site Recovery Manager.

  2. backup the database of Site Recovery Manager by using the tools that offers the database software.

  3. (optional) If you upgrade of Site Recovery Manager 5.0.x, create a 64-bit DSN.

  4 upgrade the instance of vCenter Site Recovery Manager server that connects to vCenter Server 5.5.

  If you upgrade a vCenter Server and Site Recovery Manager 4.1.x, you upgrade the instances of vCenter Server and Site Recovery Manager server in the correct sequence until you can upgrade to Site Recovery Manager 5.5.

  a upgrade vCenter Server 4.1.x to 5.0.x server.

  b Update Site Recovery Manager of 4.1.x to 5.0.x.

  c upgrade server vCenter Server 5.0.x to 5.5.

  Please let me know if it helped you or not.

  Thank you.

• Best practices deployment CD to the internet non-connected PC

  Hello

  Are there things or best practices to be careful during the deployment of CD player on the internet non-connected PC? We currently use drive X, which we are patching regularly via a field startup script. Specifically, I want to know:

  (1) CD player can be deployed in the same way that we currently do for Reader X (i.e. first install the base of the file through msiexec.exe /i package in a startup script, and then install the latest hotfix files using msiexec /p also using a startup script)

  (2) CD player does require authentication via internet, or can that be disabled via Adobe Customization Wizard or group policy?

  (3) can I disable all related and all features which requires an internet connection via Adobe Customization Wizard or group policy for clouds?

  (4) at - it nothing another important to know?

  Thank you.

  Here are answers to your questions:

  (1) CD player can be deployed the same way we do it currently for Reader X (i.e. first install the basic package of the file through msiexec.exe /i in a startup script, and then install the latest hotfix using msiexec /p also using a startup script) - Yes, CD player can be deployed in the same way as the X drive. There is no difference.

  (2) CD player does require authentication via internet, or can that be disabled via Adobe Customization Wizard or group policy?  -No, only DC Acrobat requires it. However, CD player, is free and requires no all identifications.

  (3) can I disable all related and all features which requires an internet connection via Adobe Customization Wizard or group policy for clouds? -Yes, you can disable all cloud related features through the Customization Wizard or group policy

  Ben above mentioned, you must always keep your reader to update to the latest version which has the latest security related bugs.

  I hope that I have answered all your questions, and it helps. If you have any question, please report.

  Thank you

  Vinod

• New to ESXi ESXi installation USB or local disks operation best practices?

  I'm new to Vmware and run a small store, what is the best practice or best method to install the OS ESXi.  I currently have a few that I have installed on the usb stick on the server Board.  After some research it would be better to have two small drives SSD that I can raid with the operating system, then another RAID for the VM data store.  USB is a single source of failure.

  Thank you

  Mike

  Hello

  Having the internal hard drives in RAID1 for the o/s will certainly to avoid a single point of failure, as you pointed out correctly. At present the death of your USB key, your host problems quite quickly, and you will need to get a new one and re-install again. You could save your good host configuration and realistically - it does take too long to rebuild a crowd if he dies. Lose other stuff like network configurations and others would however be a pain!

  I think I have two SSD internal drives in RAID1 for the o/s is probably overkill. You will have an advantage any speed of startup, but realistically most of the servers restart everything often and once that ESXi is in place and operational it is very little activity on the disks, a config updates every so often and so on. I'd be inclined to use a SSD to create a Cache of the host for the swap drive, like that you can actually use the SSD and get more performance for your money.

  Many manufacturers (like Dell) use internal SD cards in RAID1. While SD cards are not known to be very robust, because of the congestion of ESXi and the minimum number of necessary paperwork once installed initially, it makes a less expensive alternative to business class for the o/s disks.

  In regards to your data warehouses, having an internal RAID your local disks is best if you use a stand-alone host with no storage attached to the network. You always have the problem of failure of the host if.

  See you soon,.

  Ryan

• Best practices for setting in RoboHelp to create .chm?

  I have Tech Com Suite 2015. I need to make a FrameMaker book .chm file. I tried to do directly from chassis, but was not happy with the results, so I will try to do a RoboHelp project instead.  Can someone help me with best practices to achieve. I would like to than my files related to RoboHelp, so that I don't have to start over if they are updated. I tried to work with it. You can fix things after you import? For example, if I have does not have difficulty cross-references (and delete page for example numbers) in FrameMaker, before the import/lining, what I have to do it again?  I have worked with FrameMaker for quite a long time, but I'm less familiar with RoboHelp. Is there a video or webinar showing how to do this? Or can someone give some tips and things that I should know about this procedure. Thank you

  Hello

  1. the table of contents at the same level:

  To create levels of navigation OCD in a table of contents in the output to publish FM, we need to change either the first indent, the property size or weight are.

  We determine the level by setting these properties by Tag:

  -First indent,

  -Font Size,

  -Font

  by example, so if you want to have titre3 appear inside Title2 like this:

  Titre3

  Title2

  In Para designer > properties updated by designer of these 2 tags (Heading2TOC, Heading3TOC):

  -First indent Heading2TOC Heading3TOC more

  - Or font of Heading2TOC less Heading3TOC

  - Or the size of the police of Heading2TOC less Heading3TOC

  2. the option Enable browse sequence allows the navigation arrows. Try to activate the option "activate browse Sequence. (apply the latest Patch, help > updates)

  3. Once you create your table of contents, you will see the title of the chapter begins to appear in the breadcrumbs.

  Main effort, you'll need to do, is to create a table of contents leveled once it made should solve the issues you face.

  Amit

• Best practices for backup of a VM Web server?

  This question comes from another thread, that I created, but I figure I might as well start a thread fresh since it is his own question.

  Basically, I have an environment that I inherited when I started my new job within this environment, there is a lonely VM that runs from our Web server and was created using VMware player (will go to the workstation for the snapshot feature).

  I am extremely concerned by the fact that there is no backup strategy for it, so I'm interested in finding the best way to save this virtual machine.

  Being that it's a machine virtual I instantly thought, but of course I'm open to dictate what best practices.

  A lot of what I've read so far indicates to stop or suspend the virtual machine, then copy files, however is there a way to do that without temporarily take down my Web server?  It's just that we have customers in the world that has access to the server to different time zones and I want her to be in place 24/7.

  You'll have to stop the Virtual Machine and close VMware Player and uninstall VMware Player to install VMware Workstation and it is the time where you should make a backup copy of the master of the Virtual Machine.  Once installed VMware Workstation and the Virtual Machine is back and then runs to reduce the minimum time for subsequent backups you necessarily do not do such proposed by Richardson Porto although I don't disagree with what he says.

  In theory anyway, and in practice, when you want to backup you would take a cliché Hot and then copy the Parent disk such that it is now read-only and the Virtual Machine is still running while you make a copy of the Parent disk.  Once you have copied the Parent disk, you can then remove the snapshot thus merging Delta and drive Parent and now ready for the next time you want to back up the drive.  The duration of that Virtual Machine is interrupted during the snapshot warm and hot snapshot delete should be considerably less and then stop and restart the virtual machine.  The reason why I said "in theory" because while it is supposed to work in practice, nevertheless if you correctly shutdown the guest operating system before capture instant, so you do not rely on VMware Workstation to make sure that everything works all in being hot.  Not that you should have problems, it's hot, however you remove a layer of the process that has the potential of being wrong compared to when is cold, even if it is cold takes a little longer.

  In both cases, I would avoid cloning because it changes the UUID and MAC address of the clone of the parent company and by creating a second occurrence technically need a second license for the Windows operating system that is installed on the cloned virtual machine.  In other words an archived copy complete or exact unedited from the original is a legitimate backup a clone of IMO is a second occurrence but it has a different UUID and MAC address.  It would be like taking a copy of the operating system with a single license and install on two different physical computers.  Also by doing as I have suggested and make a backup copy of Master of the Virtual Machine and then just save the Parent read-only disks disk hard virtual are themselves not a computer virtual and just that copy a backup, however can be used to restore the same Virtual Machine driven and not having not any changes in the UUID MAC addresses etc.

  Finally, you should look into what you are running in the guest operating system and how to properly save Web Site and database, or user data etc in the guest operating system.  In other words, you should always have a copy backup of the virtual machine and everything that is necessary in the guest operating system to be able to restore it without necessarily restore all of the Virtual Machine.  IMO it's better to have several and backup types to have more options in a recovery scenario!

• Design by using NetApp's best practices

  I am preparing for my VCP5 and I read the new book by Scott Lowe. the book describes how the traffic should be isolated. your vMotion, vmkernal, etc., but in many organizations, I see the NetApp with some of data warehouses and a few LUNS to CIFS share LUNS. I guess you can have your vmMotion on a VLAN separated, but would not safer just configure a windows VM file server to host your files? In freenas and openfiler forums, they stress is not to run their software in virtual machines in a production environment.   Physical separation would be better then just a VLAN? I was inking and correct me if I'm wrong. I think the CIFS shares in a virtual hosting machine would SAN, vMotion, vmkernal, most reliable if you have redundant switches on both sides VMware hosts. So if your kernel switches drop your vmware environment will not drop.

  > traffic must be isolated.

  Yes, the network traffic must be split on networks separated for various reasons, including performance and safety.

  > NetApps with MON a few for data warehouses and a few LUNS to CIFS share.

  Yes, if you have a NetApp file server you can block-level storage server as FCP or iSCSI, CIFS or NFS file-level storage.

  > I guess you can have your vmMotion on a VLAN separated, but would not safer just configure a windows VM file server to host your files?

  OK, you lost me.  Yes, you must separate the vMotion traffic to enhance the performance and because the vMotion traffic is not encrypted.

  I don't see where you're going for vMotion to a Windows file server?

  However, if you are referring to, why don't you your NetApp instead of Windows CIFS Server:

  You don't need to patch and reboot the NetApp at least once a month.

  Performance is better

  You don't need to buy a Windows license and then maintain Windows

  Snapshots.  NetApp has the best shots in the business.  When your Windows I/O high, or just typing box because it of Tuesday and removes all of your VSS snapshots you really wish you had a NetApp.

  > In the forums of freenas and openfiler, they stress is not to run their software in virtual machines in a production environment.

  Note that there are a ton of storage there equipment running as VMs and server NFS for shared storage, including left and they have been stable for years.

  > Physical separation would be better then just a VLAN?

  Yes, if you have the infrastructure.  When it comes to the first time I've seen reference you VLAN?  Are you talking about now the NetApp as the series 2020 with two network cards where you need to carry all traffic (managent, CIFS and iSCSI) through them via VLAN?

  Like this: http://sostechblog.com/2012/01/08/netapp-fas2xxx-fas3xxx-2-nic-ethernet-scheme/

  > I was inking and correct me if I'm wrong. I think the CIFS shares in a virtual hosting machine would SAN, vMotion, vmkernal, most reliable

  CIFS is nothting to do with SAN, vMotion or VMkernel.  CIFS (SMB) is the protocol used mainly by Windows file sharing

  > If you have redundant switches on both sides of the VMware hosts. So if your kernel switches drop your vmware environment will not drop.

  You always want to redundant switches.  No single point of failure is the best practice.

• Looking for a best practices guide: complete replacement cluster

  Hello

  I was in charge as the complete replacement of our current environment hardware ESXi 5.0 U2 with a new cluster of servers running 5.1.

  Here are the basics:

  Currently, HP Blade Server chassis with 6 hypervisors running ESXi 5.0 U2, the company license, about 100 or so virtual running different operating systems - mainly MS 2003 R2 to 2008 R2, stores the data on without connected through ethernet connections 1 GB.

  Intended to run 7 independent servers as a cluster with ESXi 5.1, license of the company, connections to SAN be improved to 10 GB ethernet or fiber.  The range of virtual machines in the importance of 'can be restarted after hours' to ' should not be restarted or that will cost us money service interruptions.  (Looking for the options live - migrate if possible although I have my doubts, it will be an option given the cluster plans)

  I'm looking for a Guide to best practices (or a combination of the guides) which will help me to determine how best to plan the migration of VM - especially in light of the fact that the new cluster will be not part of the existing.  Given also the fact we upgrade is unable (due to problems on the chassis firmware) 5.1 before this work...

  Any pointers in the right direction would be great - look no no not a handout, just people signs

  See you soon.

  Welcome to the community - from vCenter 5.1 can manage an ESXi 5.0 host just one at a time do guests 5.0 5.1 and vmotion the VMs to new hosts - environment as the two environment will see the same SAN it will be necessary for storage vmotion.

• Best practices for a NFS data store

  I need to create a data store on a NAS and connect to some servers ESXi 5.0 as a NFS datastore.

  It will be used to host virtual machines less used.

  What are the best practices to create and connect a datastore NFS or networking and storage view bridges in order to get the best possible performance and decrease is not the overall performance of the network?

  Concerning

  Marius

  Create a new subnet of layer 2 for your NFS data warehouses and set it up on his own vSwitch with two uplinks in an active configuration / eve of reunification. Uplink should be variously patches in two distinct physical switches and the subnet must have the disabled bridge so that NFS traffic is not routable in other parts of your network. NFS export can be restricted to the IP address of storage host IP (address of the VM kernel port you created for NFS in the first step), or any address on that subnet. This configuration isolates traffic NFS for performance, ensures the security and redundancy. You should also consult your whitepapers of storage vendors for any specific recommendation of the seller.

  Data warehouses can be made available for the guests you wish and you can use Iometer to compare PAHO are / s and flow rate to see if it meets your expectations and requirements.

• Issue of best practice

  Hello

  I mounted the UN lab pour assess vSphere 5.

  I have a switch and 2 servers.

  Problem:

  vCenter is currently on a VM Server n ° 2. Resources are not sufficient and it is possible that I will reinstall.

  Question:

  More than the way of the East which simple / Secure / quick pour transfer this VM on the server # 1.

  Good evening

  Without the use of special features, you can also:

  -clone the virtual machine

  -migrate from the

  fishing - your vcenter server.

  -start the clone vcenter server.

  and:

  -Since the clone migrate the original stop the clone / delete it and restart the original.

  UO:

  -check that the ok to EST vcenter.

  -delete the original and keep the clone.

  After I know best practices, but in any case by causing, you Microsoft have almost no interruption of service and you have a backup available in 2 clicks.

  He must just ensure that the 2 vm (original and clone is not started at the same time, otherwise you will create a conflict of @ ip).

  Good luck.

• Best practices Networking ESXi 5

  Good afternoon.

  Hate me help, docks as best practices para uma infraestrutura of rede receber o Vmware (ESXi 5 + vCenter vConverter) autonomous.

  Switch, VLAN, NIC?

  Obrigado

  Olá amigo, good afternoon.

  Leave aqui um trecho do livro "Virtualização - Central Datacenter do Componente" em than comenta, sober os conceitos uma rede virtual cloud:

  An e VMware a Savvis sugerem some measures Segurança interesting than sao Speaker aqui operacionais:

  Lado provedor:

  • Manter as redes for sao to leave da infraestrutura virtualizada isoladas. Insulation pode ser feito com os rocking or utilizando segmentacao through VLAN. Outro Método PODES use uma want Kanada Doi methods e o conceito of virtual switch.
  • Manter as redes of members isoladas. Manter as redes of members e isoladas interfaces controlled devidamente.
  • Manter as redes used para verificaram maquinas e tolls IP isoladas em redes roteaveis nao. Estas redes precisam ser rapidas e ao mesmo tempo sao suscetiveis an attacks.
  • Manter as redes back clients isoladas. Estas redes should ser isoladas das redes e members should divertir firewall between as redes para avoid security problems.
  • Fornecer seguro aos recursos nuvem client access. Client OS usually precisam ter access has recursos dentro da e nuvem para isto e Chipre o provedor disponibilize um Portal com encriptacao para Segurança effect.
  • Backups to maintain E restores seguros e consistent. Provedor deve to maintain this appearance basico realize e recursos back to maintain backup um processo rapido restore.
  • Autenticacao strong mechanisms, auditoria e autorização. OS provedores should please has autenticacao segura, access so aos recursos waiting rooms recursos providenciar e.
  • Use models seguros e configuracao gold images do sistema operational e das management. Estas reduzem os problemas com configuracoes inadequadas measures. Also o provisionamento maquinas tolls deve obedecer an entrar em being Produção antes criteria preestabelecidos.
  • Members of recursos para avoid attacks do tipo back.

  Client side:

  • Practices of mercado Seguir para a Segurança sistemas operacionais back. OS administradores should seguir as mesmas rules used no ambiente interno relativas to back sistemas operacionais, como manter os last Segurança no patches of Segurança configuracao gold images.
  • Following to encrypt data. Dados follows sistemas important should mantidos encriptados forse ainda but os possíveis ataque para ser to rede.

  Espero ter helped.