NSX

Automating the creation of NSX-T “Disconnected” Segments for DR testing on VMware Cloud on AWS

03/05/2020 by William Lam 1 Comment

Disaster Recovery (DR) and Disaster Avoidance (DA) on VMware Cloud on AWS is still one of the most popular use case amongst our customers, just second to Datacenter Migration and Evacuation. The VMware Site Recovery service makes it extremely easy and cost effective for customers to protect their critical workloads without having to worry about the underlying infrastructure. Most often, the biggest cost of having a dedicated DR site is the on-going operational and maintenance cost of that infrastructure.

Most recently I have seen several requests come in where customers were looking to streamline their DR testing which is fantastic to hear. Just having a DR solution is not enough, you actually need to exercise it and verify that your workloads and applications are functioning as expected. Today, customers can verify that their applications are functioning as expected by creating NSX-T network segments that are "Disconnected" and then using a VM-based router to provide internal connectivity between these isolated environments.

Here is a screenshot of the VMware Cloud console and under the Networking & Security tab, when creating a new segment you can specify whether the segment is "Connected" (Routed) or "Disconnected".

Obviously, the NSX-T UI is just one way of creating a segment. In fact, most customers that have asked about this is wanting to do this via Automation which not only brings speed to testing but also consistency! With that, I have updated my NSX-T PowerShell Community Module for VMC to include two new updates. If you have never used this VMC module before, please take a look at the Getting Started guide here.

Intel NUC 9 Pro & Extreme – First “Modular” NUC

01/07/2020 by William Lam 21 Comments

The highly anticipated "modular" Next Unit of Computing (NUC) has just been announced at the Consumer Electronic Show (CES) this week, dubbed the Intel NUC 9 Pro (codename Quartz Canyon) and NUC 9 Extreme (codename Ghost Canyon). Boy am I super excited for this new platform and what it could mean for the VMware Community! 😍

Immediately off the bat, you can see that this is not your typical NUC "cube" form factor. Intel has completely redesigned the system from the inside and out, more on this in a bit. The key difference between the two NUC 9 variants (Pro and Extreme) are the CPU options, which are detailed below. For the remainder of this article, I will be focusing on the Pro version of the NUC 9 and I will call out any differences where applicable.

The use of the word "Pro" is also quite fitting as Intel is positioning this system as a high-end prosumer to Mid-Enterprise device compared to the traditional NUC. The NUC 9 Pro is targeting more demanding workloads such as Digital Content Creation, CAD/Manufacturing and Financial Service applications that either require a high-end graphics card or AI module for computing. When I first heard about this system from Intel, it conceptually reminded me of Apple's recent 2019 Mac Pro, which is also designed with modularity in mind and can cater to a variety of use cases.

Speaking of use cases, although Virtualization is not a target use case for this new platform, VMware customers have been taking advantage of the Intel NUCs for a number of years now and it is still by far the most popular platform for running a vSphere/vSAN/NSX Home Lab. However, one common complaint I often hear about the current generations of NUCs has been its CPU and I think the new NUC 9 Pro/Extreme will be a nice contender for current alternatives like the popular Supermicro E200-8D. Thanks to Intel, I was able to get my hands on a pre-production NUC 9 Pro unit for testing, so lets take a closer look at what this new platform has to offer!

Simulating the VMware Cloud on AWS API using Stoplight Prism Tool

01/06/2020 by William Lam Leave a Comment

As more customers and partners on-board the VMware Cloud on AWS service, the topic of Automation has been coming up more frequently. There are a number of resources that are available to help users get started including here, here, here, here and here to just name a few.

Customers and partners can spin up 1-Node SDDC which includes the full stack (vSphere, vSAN and NSX-T), fully configured and ready for use for less than $8/hour (list price) and start exploring the rich APIs provided by the VMware Cloud on AWS service. Nothing beats playing with the real thing but we definitely have heard from customers and new developers that it would be nice to have the ability to test out some of the Automation prior to running against a real SDDC.

The VMware Cloud APIs is based on OpenAPI (formally Swagger) and has a very rich eco-system of tools that are available to developers and end-users. One really cool thing you can do with OpenAPIs is to "mock" or simulate the APIs just based on your API specification. This is really useful for API development but it can also come in handy for end users to be able to try out your APIs. Prism Mock by Stoplight is an OpenAPI mocking tool that was introduced to me by Jake Robinson.

Over the break, I finally found some time to play with this tool and I think this could be really useful for those wanting to get a taste of the various VMware Cloud APIs. As I have mentioned already, nothing beats the real APIs and there are some limitations with the mocking tool, so you should still consider using the real APIs when you are ready.

RSS feed for VMware release notes

12/20/2019 by William Lam 8 Comments

Staying up to date with the latest VMware product releases can be a challenge and with something like VMware Cloud on AWS, which is delivered as a service, it can be even more tricky as new updates are constantly being made available. Historically, there has not been a consistent method for how customers can get notified of new releases and this has also come up from our VMware Cloud on AWS customers.

We posed the challenge to our Information Exchange (documentation) team to see how we can help our VMware Cloud on AWS customers and the team came back with an initial implementation of providing a standard RSS feed which you can now find at the upper right hand corner of the VMware Cloud on AWS release notes page. You can subscribe using your favorite RSS reader, I personally use Feedly and when a new release of the SDDC and/or service, you will get notified via your RSS reader. For those that want a different delivery mechanism such as email for example, you can use the free If This, Than That (IFTTT) service which I also personally use and setup an email notification or any other type of notification that IFTTT supports.

Although this initial requirement was driven by the VMware Cloud on AWS product team, we definitely wanted to see this capability delivered across all VMware products and services which is what the team has done as well. When you navigate to a specific product and/or service release notes, you will now see the additional RSS feed that you can subscribe to.

Here are just a few of the popular RSS feeds that I know folks will want to subscribe to. For a complete list of all VMware product/services, please take a look here.

VMware Cloud on AWS - https://docs.vmware.com/en/VMware-Cloud-on-AWS/rn_rss.xml
VMware Cloud on DellEMC - https://docs.vmware.com/en/VMware-Cloud-on-Dell-EMC/rn_rss.xml
vSphere - https://docs.vmware.com/en/VMware-vSphere/rn_rss.xml
vSAN - https://docs.vmware.com/en/VMware-vSphere/rn_rss.xml
NSX-T - https://docs.vmware.com/en/VMware-NSX-T-Data-Center/rn_rss.xml
HCX - https://docs.vmware.com/en/VMware-HCX/rn_rss.xml
VMware Site Recovery - https://docs.vmware.com/en/VMware-Site-Recovery/rn_rss.xml

I think this be a great first step in helping our customers easily get notified of new releases, so that can start reviewing the release notes and start planning. I know many of you have also asked for other methods such as programmatic access to release notes updates or even having a specific changelog for things like our APIs. If folks have any feedback in this area, feel free to leave a comment and I will be more than happy to share this with our documentation team.

Configure NSX-T Enhanced Data path / Network Stack (ENS) for Nested ESXi

12/10/2019 by William Lam Leave a Comment

After publishing my Running Nested ESXi, NSX-V or NSX-T on top of NSX-T article which actually turned out to be quite popular, I received an interesting question on whether ENS for NSX-T could also be configured within a Nested ESXi deployment? I was a little familiar with ENS, which I will explain in a second. However, I was not completely sure about the benefits of running ENS in a Nested environment.

With the help from my friend Frank Escaros-Buechsel, who actually works in our NFV group at VMware. Frank helped validate the instructions but he also provided some additional insights on why this could be useful in a lab setup for verifying configuration and behaviors when additional tuning maybe required. If you are NOT running NFV-based workloads, ENS is not something you need to configure when running NSX-T using Nested ESXi.

So what is ENS? Enhanced Network Stack (ENS) also referred to as Enhanced Data Path is an NSX-T capability which was first introduced with NSX-T 2.3. ENS is specifically designed for Network Function Virtualization (NFV) workloads that require a high performance data path. Such workloads include Telco, 5G and IoT based deployments where improved packet throughput is critical for the responsiveness of these applications.

Running Nested ESXi, NSX-V or NSX-T on top of NSX-T

11/22/2019 by William Lam 5 Comments

Nested Virtualization is an extremely useful tool that helps customers easily test and try out new VMware products and solutions before rolling that into a proper development environment for further validation. This is especially handy for those wanting to setup an NSX-based environment and simulating their actual deployment topology, configuration and upgrade workflows.

In this past year, I have seen a 10x increase in the number of NSX-T based questions that have come up from customers and our field, the adoption of NSX-T is definitely in full swing. As expected, questions about running Nested ESXi on top of a physical NSX-T deployment has come up and there has actually been several variations that have been asked about whether that is Nested ESXi using VSS, VDS, NSX-V or even NSX-T running on top of an N-VDS, which is the virtual switch that NSX-T uses.

Luckily all of these combinations work and just require some basic configuration changes within NSX-T. However, before I continue, let me remind folks again that VMware does NOT officially support Nested Virtualization.