vSphere vSwitch configuration issue

I'm currently building a multiclient environment with two ESXi hosts in a data center. A SAN will come eventually if I want to start my basic with this thought in mind build before implemented. When comes the SAN, I just plug it in and not have to re-architect my network.

I use a switch 24 ports of Cisco 2960 S, 1 of my ESXi hosts has 4 network cards and the other has 8 network cards. I don't know that I will NOT use the VMware vDistributed switch.

The conversation I did with people, I am told I can't achieve any type of aggregation of links on the end of things Cisco and simply let VMware manage everything that LB/ft. I'm open to any argument on this point that I do not take a position be it.

Since it is a multiple tenant environment, I am curious about vSwitch/PortGroup design with security in mind.

#1 can I paste all network cards to a single vSwitch and use several groups of ports for each VLAN? It would be a safe method to keep the traffic between the VLANS segmented?

#2 instead create a vSwitch for each VLAN and paste the appropriate vSwitch? (looks like a waste of the physical NIC for me)

#3 should I allow all the VLANS or just specify those I want to pass through (security of mind is thought specify)

More traffic will take place in the VLAN and WAN, maybe 5% of the traffic will be routed between the VLANS (I read that routing between vSwitches would have on my firewall if between two vSwitches)

It will hit my Sonicwall firewall that has 6 network adapters. I thought that I would use two network cards on the Sonicwall assigned to different VLANS on my different vSwitches or exchanges (according to the method I). I know the side of the config of the Sonicwall well enough, but I want to keep all traffic to occur on the Cisco 2960 S if it resides on any network on this switch.

Good,

So until you have multi tenant VM isolated with no communication between them, you have two options. (Option 1). Take advantage of your physics of switching / VLAN / and Firewall to create the speration and control. (Option 2). Use PVLANS.

If you want more information on PLANS to let me know and I'll send you a link to another post I did which addresses in detail about this.

With this ISC here any visio drawing VERY fast just to get what you want to do.

Diagram1

Diagram2

Digram3

OK, so moving forward with your setup your life / configuration will be much easier if you could get 6-8 network interface cards on your first host that currently has 4 network cards, however if you can not lets talk about how you get to do what you want.

Let's start with your ESXi host at 8 cards just to get the idea everywhere so the address that with 4 network cards then.

So, you will want to create 3 vSwitches:

(1.) one for management and vMotion this switch will have 2 vmnic assigned for all external communications

(2.) one for iSCSI with 2 vmnic assigned for the multipath

3.) for the virtual computer network and all the other networks, you will need for isolation / multi-tenent 4 network cards for the traffic of the virtual machine. Feel free to borrow this switch network cards if you need it for other purposes

Now as every vmnic on all vswitchs will be several VLANS through them, you will need to the trunk ports on the physical switch and tag all the VLANS which could pass these network cards. For example, management - VLAN 10, vMotion - VLAN 20 times will go on vmnic0 and or vmnic1. If the ports that these network cards to connect must be resources shared with vlan 10 and 20 tag on them. If you have other questinos on this topic let me know

Ditto for iSCSI however group in the vSwitch iSCSI, most people put the ports in the access mode, which essentially qui essentiellement definit defines just one vlan to everything that is connected to this port by default so you don't require to a VLAN on the port

Now for all VM networks. Each of them will be have their own network and VLAN. In defining a VLAN and a separate network, you can set each one to a different gateway which will your Sonicwall. Your sonic wall you can create itineraries and or firewall rules to prohibit traffic between networks ect. If you have any questinos on let me know.

Now to get your SIN for talking to your virtual machine natively for backup and without going through a data store, you s VM you want this to happen to have two virtual network adapters. On the normal network on what you want and another on the network backup Nas which will route to the NAS.

Now for the ESXi host with 4 network cards, you will have more or less the same, the only difference is that your vSwitch0 will do more work that you will have all your networks routing VM, vMotion and ESXi management. So you have to tag VLAN on ports these network cards work on your physical switch.

If your planning to your NAS instead of iSCSI you NFS will be limited to only 1 GB throughput and would probably want to watch 10 GB nic if that is the case. Anyway if that's what you want I would like to know or do not hesitate to ask.

Also, it would really be a good idea to get a second switch, so you do not have a single point of failure. CurrentY if you let go of that switch is down and you don't want that once you get a another switch you would simply divide all the vmnic redundent through two switches, both vmnic0 - switch1, vmnic1 - switch2.

I hope this has helped, let us know if you have any questions. No this is set in stone is just a quick drawing in order to give you some ideas on how you want to configure everything.

Tags: VMware

Similar Questions

Not enough memory RAM for EDU-ICM-1301 - VMware - SAMPLE Training Services - on request in the system class: vSphere install, configure, manage course 5.5

Hello
I'm looking for the laboratory "EDU-ICM-1301 - VMware education Services - SAMPLE - in class on request: vSphere install, configure, manage course 5.5" but trying to follow the instructions
LabFiles\vCenter GA Installer
1. Double-click autorun.exe , click run.
2. If the security warning dialog boxes appear, click run to continue.
the installation does not work with because the memory is not enough.
Have you ever tried this workshop?
You have a solution for this problem?
Thank you

Hello

Yes we have seen several times.

The simple solution is to install ONLY the Client vSphere and not all vCenter Server. Specified in the manual, but it is up to the user that installation of the client is the option left on the halfway point in the Setup user interface.

Thank you.

VMware vSphere: install, configure, manage [V5.1] correct review and practice test

Dear all,
Here, I'm a bit confused so I need help to clarify which exam I have to take and what is the matter with this review. I took the course VMware vSphere: install, configure, manage [V5.1] and when I tried to register for the exam, he gave me the review "VCPD510: VMware Certified Professional-Desktop ' and when I tried to find some documents to study, I found two different materials, which relates to the VCP5-DT, which is all about VMware View: install, configure, manage [V5.x] and the other which is VCP - 510. While we should I study.
Help, please.

Hi mariusme,

The review, you have to take is VCP5-VTC. VCPD510 is for desktop, which is entirely different. Please go to the vmware certification page and select VCP5-DCV(vmware certified professional in datacenter virtualization) and you will find the action plan. You can follow it, and since you've followed the required courses, you will be eligible to take the certification. And also sign up for VTC - VCP on Vmware Portal before you book review on PearsonVUE.

Fact the VMware vSphere: install, configure, manage [4.0] class eligible for VCP5 prereq?

Hi all
Doing some research, but has not been able to confirm. Also left message with our VMware training rep areas last week, but never heard back, so thought I would try here.
In 2011, I finished the VMware vSphere: install, configure, manage [4.0] courses. I never did get my VCP4, but now want to try for my VCP5. This class would qualify as a prereq so that I can just take the VMware vSphere: What's New (version 5.0) courses? The web site called specifically need to VMware vSphere: install, configure, manage [V4.1] class so I think not, but I wanted to check. I would take the shorter, which is the new class rather than a class 4 or 5 days on vSphere 5.0 so I can.
Can anyone confirm?
Thank you
Bob

No problem, this path has always been available for VCP5.

And Bob, the counties of 4.0 class, as well as class 4.1 - is only the class 4.1, which is referred to as the class 4.0 retired some time ago and has been removed from the page VCP5 when he retired.

VMware vSphere: install, configure, manage [V4] still applies for VCP 4.1

Hello everyone
I took the VMware vSphere: install, configure, and manage 09/09...will the course of the class
to apply for the exam for VCP certification? If so how much time I have left with remaining
eligible with this class to take the test?
Thanks in advance...

Your course was based on 4.0 at the time, the current VCP4 exam is not 4.1 specific as such, if your course still qualifies you for certification. VCP4 is specifically "VCP on vSphere 4", not 4.0 or 4.1.

Get the review plan later, the study of literature 4.1 (in the case where VMware is updated the review of some elements specific to 4.1) and use the convenient software either 4.0 or 4.1.

Scott.

-

different between "VMware vSphere: install, configure, manage [V4]" and "VMware vSphere: Fast Track [V4]" "

can someone help me understand different between "VMware vSphere: install, configure, and manage "and"VMware vSphere: Fast Track ", first becuse is about $3,000 and another is about $5000. "
Thank you

can someone give me some information about the rules of absente, homework and laboratories, in these classes online.

You must participate in daily.

You need a good Internet connection and a fixed phone or a headeset.

Online courses are generally in central time... but in some cases may be different.

also should I take a test on these classes?

NO.

just be present on these days of class?

Yes

I mean those class just for learning or at the end of these classes, I have to pass an additional examination for them?

The VCP410 exam to be held in a centre VIEW (www.vue.com)... for the use of recording the same e-mail that your use of the course.

André

VLAN and physical and vSwitch Configuration

I am trying to set up a laboratory at the House and recently bought a new physical switch with the goal of creating a number of VLANS to segment the different networks with router controlling access to each network.
The router is configured with 4 networks of each on a separate interface:
- 10 - home network network
- 172 - network management
- 192 - laboratory network
- Internet
These are in turn connected to a single physical switch. I wish that my switch to have 3 VLAN to match each network. Guests on these VIRTUAL LANs can be physical or virtual. A network adapter on the server vSphere will be bound to a vSwitch and connected to the VLAN respective on the physical switch to enable connectivity for virtual hosts.
Can someone explain to me what to leave a VLAN tagging perspective in order to get this to work and now the separation between networks?
I tried a combination of marking on the physical and virtual switch and impossible to get full connectivity to the physical and virtual hosts. For now, I have three VLAN (default value (1) where is my network 10), 172 and 192.
I can ping the physical hosts on 172 and 192 VLAN but I can't ping any invited virtual.
I can ping hosts physical and virtual a virtual guest on any other network.
The router has not at all of any configuration of VLAN.
Thank you
Adam

Hi Adam,.

I can give you an explanation of how I could do this using cisco equipment.

You say you have 4 NICs from your host and would have networks vlan, so a very simple way to do this would be to create the VLAN on the switch. Define each of the physical network cards on the switch to be an access port to the vlan correct. Personally, I'd be trunk all interfaces, but access is easier to explain...

If an example (cisco config)

Interface 1 on switch access to vlan 10 - Conf t, IM 1 interface, switch mode access port vlan, switchport Access 10

interface 2 on the access of the switch to vlan 172 - Conf t interface IG 2, switch to access port, switchport access vlan 172

etc.

When you create your vswitches, select the correct uplink, create a network of the vm by vswitch, you would not need to specify a vlan.

If you wanted connectivity between virtual LANs to happen in the switch, assuming you have a l3 switch, you can give the VLAN IP addresses to the correct subnet, use it as the gateway for customers and enable ip Routing.

Access to Internet; How I have this setup in my lab, it is that I have a trunk between the switch and the router, allowing the VLANS on my networks that require the traffic internet, my router has sub interfaces defined on the network for each virtual local area network interface. These submarines have an IP address in the correct VLAN (all clients use this as the gateway). Internet link is connected outside the router and which deals with the nats and routing between VLAN etc.

Another way to do would be to have an extra virtual LAN on the switch to which connect your router, give them two ip addresses, use the switch to route 0.0.0.0 0.0.0.0 for the IP address of the router. You would need to implement Nat for each network, and no doubt some allow lists but its possible.

Not as easy to explain as I thought when starts this...

vSphere network configuration 5 with 10 cards and two physical HP switches

We will deploy our first vSphere servers 5 with 10 network adapters in each host ESX 4 and I have questions about how to best configure the network.
All the guests have 10 cards 1 GB
My first thought was to build 4 vswitches
vSwitch0:
Networking VLAN10
VM Network VLAN10
physical vmnic0 + vmnic1 in switch1
vmnic6 + vmnic7 to the physical switch2
vswitch1:
DMZ VLAN20
vmnic2 to physical switch1
vmnic8 to the physical switch2
vswitch2:
vMotion
vmnic4 to a dedicated switch vmotion
vswitch3:
Network with NFS for the Veeam VLAN30 backup
vmnic3 to physical switch1
vmnic9 to the physical switch2
Now my questions.
Are there design improvements? What can I do better?
Configuratoin physical switch:
I need to configure an etherchannel between the NIC, vmnic0, 1, 6 7 and change the route based on the IP hash strategy?
Can I put the vswitch0 reserve and with active NIC or should I use the cards in Active state?
If it is better to work with intelligence and active cards change in sleep mode?
Thank you for your help
concerning
Dennis

Hello

I would like to do something like that, see attachment

vMotion and mgmt in a vSwitch with approach active\standby - vLAN trunking should be done on the port of pSwitch

DMZ on two vmnic active/active

VM_LAN - vmnic on 4 all active

Backup - 2 vmincs - active/active

All critical (Mgmt) vMotion, VM_LAN and DMZ networks are redundant (split between 2 quad port adapter) + backup flowing over built-in LAN adapter

No channel of the ether - I have never seen saturated by VM - here traffic network so you have 4 vmnic works perfectly

See you soon
Artur

Please, do not forget the points of call of the "useful" or "correct" answers

vSphere Client Configuration and alarm

Hello
I recently started a new job with a company and legacy of the current system and the network. My knowledge of VMWare is ok, but I'm of course not as great as people in this community. The issue I'm facing is that there is a constant alarm that needs attention. We run vSphere Client 4.0.0. The alarm is one of our stores in DB, and it's "use of the data store on disk. The alert is set to trigger when 95% of the use of disk data store is reached. The problem seems to be this VMFS configuration... Here are the analytical capability. Ability to 99,75 go-go configured 99,55 space free space - 206 MB.
I contacted the company who originally put this in place, and their response is to ignore the alarm, because it is an efficient use of disk space. Can someone please comment if this is acceptable or not to "ignore"? I don't think it's the right way to set up a store of DB, but I just want to check.
Thank you
Jay

Hello and welcome to the forums.

You certainly don't want to ignore that. See KB 1003412 for more information.

Good luck!

Post edited by: vmroyale - discussion moved from the industry forum to the Forum of vSphere storage & virtualization technology.

loginsight + vSphere programmatic configuration

As part of our continuous integration workflow, we deploy a virtualized test bed that includes a VC and ESX servers on an ongoing basis and the demand for development. In the context of the present to facilitate debugging, we wanted to deploy LogInsight 2.5. Is there a way to configure programmatically content pack of vSphere? As part of the deployment at the request of the testbed, I wish I had LogInsight/vSphere configured for users do not have to go do it themselves manually.
Thank you

The content pack is not all configuration items. You try to configure ESXi hosts to send logs of Log Insight automatically when deployed? If so, consider using Host Profiles or against esxcli or with PowerCLI scripts as part of the deployment logic. Pick up the tasks and events of vCenter Server requires a configuration change in newspaper Insight to add/remove each CV, which is not exposed by the API yet.

Retrieve message to ESXi host Summary tab "Configuration issues."

Using VMware Perl SDK API, how to get the message of 'Problems of Configuration' tab summary ESXi host?
For example, I have an ESXi host disconnected from the cluster, and in the summary for this host tab, there 'Problems of Configuration' message "disconnected from esxi_hostname in esx_clustername." "Reason: expired license."
Is it possible to recover the message above through Perl SDK API? The host is already disconnected from the cluster, not sure if this is possible.

Yes, you can take a look at the configIssue (http://vijava.sourceforge.net/vSphereAPIDoc/ver5/ReferenceGuide/vim.ManagedEntity.html#configIssue) for the object HostSystem connecting to vCenter, i.e. When this information appears. It contains a table of configuration problems and it is exposed in the API, which means that it can be accessed by using one of our SDKs including the vSphere SDK Perl

Configuration issue VLAN

Hi all
I'm a newbie on VLAN and spent a lot of time googleing and youtubeing trying to learn more about the virtual LAN, but now I'm stuck.
I think I'll need upgrade to vSphere Enterprise Plus Standard so I can use the dswitch to specify local networks virtual, but not sure.
Your expertise will be appreciated.
That's what I'm trying to do.
I need to put some of the vm (see Security Server) on the DMZ servers, and since they all share the same NETWORK card on the host, the only way to do it is by using the VIRTUAL LAN. (I think).
Our network consists of:
Cisco ASA 5510 - 3Com 4200G Switch - switch PowerConnect 2724 DELL
Every PC on the LAN are connected to the 3Com switch.
All 4.1 vSphere hosts are connected to the DELL PowerConnect 2724.
VLAN 1 = LAN
VLAN 2 = DMZ
Cisco ASA 5510
0 port: Connect to the Internet
Port 1: Connect to 3Com switch 48-port
3Com 4200 G
Port 1-46: assigned to the vlan 1
: 47 connected to DELL 24 Port switch, assigned as a trunk in vlan 1 and 2
: 48 connected to Cisco ASA Port 1, assigned to vlan 1 and 2
Reference DELL 2724 (Installer in question)
1-23 port: assigned to the default vlan 1 for now.
Port 24: As trunk assigned to the vlan 1 and 2.
Port 1-2: connected to the VM NIC host where view Security Server and DMZ will be setup.
I have installation subinterfaces on the Cisco ASA for VLAN1 and 2, thanks to engineer Cisco that helped me.
Basically, we split an interface to use the 2 VLANS.
But after its installation, the local network was not able to talk to the Cisco and vice versa. I ping the other PC or vSphere hosts on the local network, but cannot access the internet or Cisco. From the outside, you can connect to the Cisco but cannot ping the cisco LAN.
Do I need to have some dSwitch on the vSphere host to install vlan1 and 2?
I DO NOT use vlan1 since it was a vlan by default of the switch?
Or are you a better solutions for our mess?
Fine thanks
See you soon.

You allowed 101 VLAN on ports of junction on the physical switch on which the uplinks are connected?

For an example of Cisco configuration, see http://kb.vmware.com/kb/1004074

André

Attempt vSwitch configuration change and now the ESXi host and virtual machines offline

So I have no doubt, I have myself to blame for this one. I was trying to change my vSwitch from 100 Mbps to 1000 Mbps when an 'operation timed' error out jumps-to the top and my vCenter Server lost connection with my ESXi host. I tried to restart the host manually, but that did not help. The host is not the ping requests and all the virtual machines on that host are offline; None of them vMotion off to my other ESX Server.
I tried to reconnect the host computer in vCenter, but it is obviously does not connect because it can't ping it. I logged the ESXi console and all the network settings appear to be correct. I'm used to connect to the ESX console where you can execute commands, but it's my first ESXi host, so I don't know what I can do.
Any help is greatly appreciated!
-D.

If you had your management port and VMs on different vSwitches / NIC leave on framework would eliminate a false positive. As in your case the management port reportedly follows the cable / about speed, but the virtual machine network would be intact (and I'm assuming that your storage space as well). In this case the VMs system would have worked very well even if the management port did not work.

Dave

VMware communities user moderator

Now available - vSphere Quick Start Guide

You have a system or a PCI with VMDirectPath? Submit your specifications to Officieux VMDirectPath HCL.

ESX 3.5 - network configuration issues

Hey guys,.
Been reading through these discussions throughout the day trying to solve problems, nothing helps.
He began by trying to remove our ESX Server virtual machines. After choosing "remove disc", both headquartered in 'in progrebs' in tasks, until finally one completed, the other never. So I restarted the ESX Server.
After the restart I couldn't connect/ping the host. After investigation, I realized that he had lost the two configurations of vSwitch somehow. After that, I was able to connect with VIC.
With the help of VIC I tried to set up the configuration of the network again. There was a vSwitch1 which I had not created from the service console, I guess it was previously the vSwitch which connected to our iSCSI SAN. However, I could not change this or delete it, sorry, but is not a note of the error that was thrown upwards.
After ESX reboot, he lost it again all the config I had put in, so I went through the same process, this time without ever being able to re-establish the connection through VIC or web etc, but I could ping.
Now, after rebooting again, he has started and instead to show the IP address of normal service console (10.10.0.45, he did even when I couldn't connect through VIC) it displays 0.0.0.0.
Nothing came out when the esxcfg-vswitch-l command is entered, it simply goes to the command prompt:
#esxcfg - vswitch - l
#
Its at this point, I ask if anyone out there has some tips! This is not a production server (was about to become one!) but has been completely configured with only a couple of VM.
Thank you very much
Daniel

At this point you can go with my original suggestion.

Start over. as it seems that there is something out of wack on a deeper level.

Portably SA60-652 - configuration issues

On startup, I get a small "Windows Installer" window trying to configure the Office 2000 program and ask to insert a Microsoft Office 2000 - Rom2 CD, which was not included with the computer.
How can I solve my problem? Thank you
David

Hello

Can you please tell me when you get this message? At the start of the CE (operating system or Office 2000 program)?

vSphere vSwitch configuration issue

Similar Questions

Please, do not forget the points of call of the "useful" or "correct" answers

Maybe you are looking for