Configuring and Managing Virtual Networks Module 5 © 2015 VMware Inc All rights reserved © 2015 VMware Inc All rights reserved Insertcxcxcxcx Course Title Here – Prerelease ? ‹› You Are Here Course Introduct.
Configuring and Managing Virtual Networks Module © 2015 VMware Inc All rights reserved You Are Here Virtual Machine Management 10 Software-Defined Data Center Resource Management and Monitoring 11 vSphere HA and vSphere Fault Tolerance Course Introduction Creating Virtual Machines 12 vCenter Server 10 Host Scalability 13 Configuring and Managing Virtual Networks 11 14 Configuring and Managing Virtual Storage 12 Installing vSphere Components vSphere Update Manager and Host Maintenance Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-2 Importance VMware ESXi™ networking features enable: • Virtual machines to communicate with other virtual and physical machines • Management of the ESXi host • VMkernel communication on the network Failure to properly configure ESXi networking can negatively affect virtual machine management and storage operations Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-3 Module Lessons Lesson 1: Introduction to vSphere Standard Switches Lesson 2: Configuring Standard Switch Policies Lesson 3: Introduction to vSphere Distributed Switches Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-4 Lesson 1: Introduction to vSphere Standard Switches ?-5 © 2015 VMware Inc All rights reserved Learner Objectives By the end of this lesson, you should be able to meet the following objectives: • Describe the virtual switch connection types • Describe the components of a standard switch Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-6 Types of Virtual Switch Connections A virtual switch has specific connection types: • Virtual machine port groups ã VMkernel port: For IP storage, VMware vSpheređ High Availability, VMware vSphere® vMotion® migration, VMware vSphere® Fault Tolerance, VMware Virtual SAN™, and VMware vSphere® Replication™ – For the ESXi management network Virtual Machine Port Groups Production TestDev VMkernel Ports DMZ vSphere vMotion Management Virtual Switch Uplink Ports Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-7 Virtual Switch Connection Examples More than one network can coexist on the same virtual switch Or networks can exist on separate virtual switches Management vSphere vMotion Production TestDev iSCSI Virtual Switch Management Virtual Virtual Switch Switch vSphere vMotion Virtual Virtual Switch Switch Production Virtual Virtual Switch Switch TestDev Virtual Virtual Switch Switch Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved iSCSI Virtual Virtual Switch Switch ?-8 Types of Virtual Switches A virtual network supports these types of virtual switches: • Standard switches: – • Virtual switch configuration for a single host Distributed switches: – Virtual switches that provide a consistent network configuration for virtual machines as they migrate across multiple hosts Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-9 Standard Switch Components A standard switch provides connections for virtual machines to communicate with one another, whether they are on the same host or a different host VM1 VNIC VM2 VNIC VM3 VNIC IP Management storage Network VNIC VMkernel VMkernel Test VLAN 101 Production VLAN 102 IP Storage VLAN 103 Management VLAN 104 Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-10 Creating a Distributed Switch You can create a distributed switch on a data center to handle the networking configuration of multiple hosts at the same time from a central place Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-36 Editing General and Advanced Distributed Switch Properties General settings for a distributed switch include the switch name and the number of uplinks Basic Basic multicast multicast filtering filtering mode mode forwards forwards multicast multicast traffic traffic for for virtual virtual machines machines according according to to the the destination destination multicast multicast group group MAC MAC address address Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-37 Migrating Network Adapters to a Distributed Switch For hosts associated with a distributed switch, you can migrate network adapters from a standard switch to the distributed switch Migrate physical or virtual network adapters to this distributed switch Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-38 Assigning a Physical NIC of a Host to a Distributed Switch You can assign physical NICs of a host that is associated with a distributed switch to an uplink port on the host proxy switch Manage the physical network adapters connected to the selected switch Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-39 Connecting Virtual Machines to a Distributed Switch You connect virtual machines to distributed switches by connecting their associated virtual network adapters to distributed port groups For a single virtual machine, modify the network adapter configuration of the virtual machine For a group of virtual machines, migrate virtual machines from a virtual network to a distributed switch Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-40 Editing Distributed Port Group General Properties You can edit general distributed port group settings, such as the distributed port group name, the port settings, and the network resource pool Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-41 Editing Distributed Port Group Advanced Properties From the advanced settings of a distributed port group, you can configure the per-port overriding of the policies that are set at the port group level Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-42 About the VMkernel Networking Level The VMkernel networking layer provides connectivity to hosts and handles the standard system traffic of VMware vSphere® vMotion®, IP storage, VMware vSphere® Fault Tolerance, VMware Virtual SAN™, and others You can also create VMkernel adapters on the source and target VMware vSphere® Replication™ hosts to isolate the replication data traffic TCP/IP stacks at the VMkernel level: • Default TCP/IP stack • vMotion TCP/IP stack • Provisioning TCP/IP stack • Custom TCP/IP stacks Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-43 Creating a VMkernel Adapter on a Host Associated with a Distributed Switch You create a VMkernel adapter on a host that is associated with a distributed switch to provide network connectivity to the host and to handle the traffic for vSphere vMotion, IP storage, vSphere Fault Tolerance logging, Virtual SAN, and others Click Add host networking to start the Add Networking wizard Click VMkernel Network Adapter Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-44 Virtual Machine Communication Problem Analysis (1) Under certain conditions, the virtual machines on the same distributed port group but on different hosts cannot communicate with one another Problems: • Virtual machines residing on different hosts and on the same port group are unable to communicate • Pings from one virtual machine to another fail You cannot migrate the virtual machines between the hosts by using vSphere vMotion Causes: • No physical NICs on some of the hosts are assigned to active or standby uplinks in the teaming The failover order of the distributed port group is not correctly configured • The physical NICs on the hosts assigned to the active or standby uplinks reside on different VLANs on the physical switch The physical NICs on different VLANs cannot see one another and thus cannot communicate with one another Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-45 Virtual Machine Communication Problem Analysis (2) Solutions: • In the topology of the distributed switch, check which host does not have physical NICs assigned to an active or standby uplink on the distributed port group Assign at least one physical NIC on that host to an active uplink on the port group • In the topology of the distributed switch, check the VLAN IDs of the physical NICs assigned to the active uplinks on the distributed port group On all hosts, assign physical NICs from the same VLAN to an active uplink on the distributed port group Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-46 Physical Network Considerations Your virtual networking environment relies on the physical network infrastructure As a vSphere administrator, you should discuss your vSphere networking needs with your network administration team The following issues are topics for discussion: • Number of physical switches • Network bandwidth required • Physical switch configuration support for 802.3ad, for NIC teaming • Physical switch configuration support for 802.1Q, for VLAN tagging • Physical switch configuration support for Link Aggregation Control Protocol (LACP) • Network port security • Link Layer Discovery Protocol (LLDP) and Cisco Discovery Protocol (CDP) share the following operation modes: – Listen, broadcast, listen and broadcast, and disabled Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-47 Lab 8: Using vSphere Distributed Switches Create and configure a distributed switch Create a Distributed Switch Add the ESXi Hosts to the New Distributed Switch Examine Your Distributed Switch Configuration Migrate the Virtual Machines to a Distributed Switch Port Group Prepare for the Next Lab Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-48 Review of Learner Objectives You should be able to meet the following objectives: • List the benefits of using vSphere distributed switches • Describe the distributed switch architecture • Create a distributed switch • Manage the distributed switch • Describe the properties of a distributed switch Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-49 Key Points • Two connection types are on a virtual switch: virtual machine and VMkernel • A standard switch is a virtual switch configuration for a single host • Network policies set at the standard switch level can be overridden at the port group level • A distributed switch provides centralized management and monitoring of the networking configuration of all hosts that are associated with the switch • You set up a distributed switch on a vCenter Server system, and its settings are propagated to all hosts that are associated with the switch • Distributed port groups define how a connection is made through the distributed switch to the network Questions? Insert Course Title Here – Prerelease © 2015 VMware Inc All rights reserved ?-50 ... Here – Prerelease © 2015 VMware Inc All rights reserved ?-42 About the VMkernel Networking Level The VMkernel networking layer provides connectivity to hosts and handles the standard system traffic... storage, vSphere Fault Tolerance logging, Virtual SAN, and others Click Add host networking to start the Add Networking wizard Click VMkernel Network Adapter Insert Course Title Here – Prerelease... Network Considerations Your virtual networking environment relies on the physical network infrastructure As a vSphere administrator, you should discuss your vSphere networking needs with your network