VMware vSphere 4.1 deep dive - part 2

Network Receive Side Scaling (RSS) Support Enhancements Improvements to RSS support for guests via enhancements to VMXNET3. Enhanced VM to VM Communication Further, inter-VM throughput performance will be improved under conditions where VMs are communicating directly with one another over the same virtual switch on the same ESX/ESXi host (inter-VM traffic). This is achieved through networking asynchronous TX processing architecture which enables the leveraging of additional physical CPU cores for processing inter-VM traffic. VM – VM throughput improved by 2X, to up to 19 Gbps 10% improvement when going out to physical network

Other Improvements – Network Performance NetQueue Support Extension NetQueue support is extended to include support for hardware based LRO (large receive off-load) further improving CPU and throughput performance in 10 GE environments. LRO support Large Receive Offload Each packets transmitted causes CPU to react Lots of small packets received from physical media result in high CPU load LRO merges packets and transmits them at once Receive tests indicate 5-30% improvement in throughput 40 - 60% decrease in CPU cost Enabled for pNICs Broadcoms bnx2x and Intels Niantic Enabled for vNIC vmxnet2 and vmxnet3, but only recent Linux guestOS 3

IPv6—Progress towards full NIST “Host” Profile Compliance VI 3 (ESX 3.5) IPv6 supported in guests vSphere 4.0 IPv6 support for ESX 4 vSphere Client vCenter vMotion IP Storage (iSCSI, NFS) — EXPERIMENTAL Not supported for vSphere vCLI, HA, FT, Auto Deploy vSphere 4.1 NIST compliance with “Host” Profile (http://www.antd.nist.gov/usgv6/usgv6-v1.pdf) Including IPSEC, IKEv2, etc. Not supported for vSphere vCLI, HA, FT

Cisco Nexus 1000V—Planned Enhancements Easier software upgrade In Service Software Upgrade (ISSU) for VSM and VEM Binary compatibility Weighted Fair Queuing (s/w scheduler) Increased Scalability, inline with vDS scalability SPAN to and from Port Profile VLAN pinning to PNIC Installer app for VSM HA and L3 VEM/VSM communication Start of EAL4 Common Criteria certification 4094 active VLANs Scale Port Profiles > 512 Always check with Cisco for latest info.

1GigE pNICs 10 GigE pNICs Network Traffic Management—Emergence of 10 GigE iSCSI iSCSI FT vMotion NFS FT vMotion NFS TCP/IP TCP/IP vSwitch vSwitch 10 GigE 1GigE Traffic Types compete. Who gets what share of the vmnic? ,[object Object]

Bandwidth assured by dedicated physical NICs

Traffic typically converged to two 10 GigE NICs

Some traffic types & flows could dominate others through oversubscription,[object Object]

Traffic Shaping Traffic Shaping Disadvantages Limits are fixed- even if there is bandwidth available it will not be used for other services bandwidth cannot be guaranteed without limiting other traffic (like reservations) VMware recommended to have separate pNICs for iSCSI/ NFS/ vMotion/ COS to have enough bandwidth available for these traffic types Customers don’t want to waste 8-9Gbit/s if this pNIC is dedicated for vMotion Instead of 6 1Gbit pNICs customers might have two 10Gbit pNICs sharing traffic Guaranteed bandwidth for vMotion limits bandwidth for other traffic even in the case where there is no vMotion active Traffic shaping is only a static way to control traffic iSCSI unused COS unused vMotion VMs 10Gbit/s NIC

Network I/O Control Network I/O Control Goals Isolation One flow should not dominate others Flexible Partitioning Allow isolation and over commitment Guarantee Service Levels when flows compete Note: This feature is only available with vDS (Enterprise Plus)

Parameters Limits and Shares Limits specify the absolute maximumbandwidth for a flow over a Team Specified in Mbps Traffic from a given flow will never exceed its specified limit Egress from ESX host Shares specify the relative importance of an egress flow on a vmnic i.e. guaranteed minimum Specified in abstract units, from 1-100 Presets for Low (25 shares), Normal (50 shares), High (100 shares), plus Custom Bandwidth divided between flows based on their relative shares Controls apply to output from ESX host Shares apply to a given vmnic Limits apply across the team

Configuration from vSphere Client Limits Maximum bandwidth for traffic class/type Shares Guaranteed minimum service level vDS only feature! Preconfigured Traffic Classes e.g. VM traffic in this example: - limited to max of 500 Mbps (aggregate of all VMs) - with minimum of 50/400 of pNIC bandwidth (50/(100+100+50+50+50+50)

Resource Management Shares Normal = 50 Low = 25 High = 100 Custom = any values between 1 and 100 Default values VM traffic = High (100) All others = Normal (50) No limit set

Implementation Each host calculates the shares separately or independantly One host might have only 1Gbit/s NICs while another one has already 10Gbit/s ones So resulting guaranteed bandwidth is different Only outgoing traffic is controlled Inter-switch traffic is not controlled, only the pNICs are affected Limits are still valid even if the pNIC is opted out Scheduler uses a static “Packets-In-Flight” window inFlightPackets: Packets that are actually in flight and in transmit process in the pNIC Window size is 50 kB No more than 50 kB are in flight (to the wire) at a given moment

Excluding a physical NIC Physical NICs per hosts can be excluded from Network Resource Management Host configuration -> Advanced Settings -> Net -> Net.ResMgmtPnicOptOut Will exclude specified NICs from shares calculation, notfromlimits!

Results With QoS in place, performance is less impacted

Current Teaming Policy In vSphere 4.0 three policies Port ID IP hash MAC Hash Disadvantages Static mapping No load balancing Could cause unbalanced load on pNICs Did not differ between pNIC bandwidth

NIC Teaming Enhancements—Load Based Teaming (LBT) Note: adjacent physical switch configuration is same as other teaming types (except IP-hash). i.e. same L2 domain LBT invoked if saturation detected on Tx or Rx (>75% mean utilization over 30s period) 30 sec period—long period avoids MAC address flapping issues with adjacent physical switches

Load Based Teaming Initial mapping Like PortID Balanced mapping between ports and pNICs Mapping not based on load (as initially no load existed) Adjusting the mapping Based on time frames; the load on a pNIC during a timeframe is taken into account In case load is unbalanced one VM (to be precise: the vSwitch port) will get re-assigned to a different pNIC Parameters Time frames and load threshold Default frame 30 seconds, minimum value 10 seconds Default load threshold 75%, possible values 0-100 Both Configurable through command line tool (only for debug purpose - not for customer)

Load Based Teaming Advantages Dynamic adjustments to load Different NIC speeds are taken into account as this is based on % load Can have a mix of 1 Gbit, 10 Gbit and even 100 Mbit NICs Dependencies LBT works independent from other algorithms Does not take limits or reservation from traffic shaping or Network I/O Management into account Algorithm based on the local host only DRS has to take care of cluster wide balancing Implemented on vNetwork Distributed Switch only Edit dvPortGroup to change setting

NFS & HW iSCSI in vSphere 4.1 Improved NFS performance Up to 15% reduction in CPU cost for both read & write Up to 15% improvement in Throughput cost for both read & write Broadcom iSCSI HW Offload Support 89% improvement in CPU read cost! 83% improvement in CPU write cost!

VMware Data Recovery: New Capabilities Backup and Recovery Appliance ,[object Object]

File Level Restore client for Linux VMsVMware vSphere 4.1 ,[object Object],Destination Storage ,[object Object]

Improved deduplication performancevSphere Client Plug-In ,[object Object]

Improved usability and user experienceVMware vCenter

ParaVirtual SCSI (PVSCSI) We will now support PVSCSI when used with these guest OS: Windows XP (32bit and 64bit) Vista (32bit and 64bit) Windows 7 (32bit and 64bit) /vmimages/floppies Point the VM Floppy Driver at the .FLP file When installing press F6 key to read the floppy

ParaVirtual SCSI VM configured with a PVSCSI adapter can be part of an Fault Tolerant cluster. PVSCSI adapters already support hot-plugging or hot-unplugging of virtual devices, but the guest OS is not notified of any changes on the SCSI bus. Consequently, any addition/removal of devices need to be followed by a manual rescan of the bus from within the guest.

The I/O Sharing Problem Low priority VM can limit I/O bandwidth for high priority VMs Storage I/O allocation should be in line with VM priorities What you want to see What you see MicrosoftExchange MicrosoftExchange online store online store data mining data mining datastore datastore

Solution: Storage I/O Control CPU shares: Low Memory shares: Low CPU shares: High Memory shares: High CPU shares: High Memory shares: High I/O shares: High I/O shares: Low I/O shares: High 32GHz 16GB MicrosoftExchange online store data mining Datastore A

Enabling Storage I/O Control Click the Storage I/O Control ‘Enabled’ checkbox to turn the feature on for that volume.

Enabling Storage I/O Control ,[object Object]

If the latency rises above this value, Storage I/O Control will kick in, and prioritize a VM’s I/O based on its shares value.,[object Object]

Allocate I/O Resources Shares translate into ESX I/O queue slots VMs with more shares are allowed to send more I/O’s at a time Slot assignment is dynamic, based on VM shares and current load Total # of slots available is dynamic, based on level of congestion data mining MicrosoftExchange online store I/O’s in flight STORAGE ARRAY

14% 21% 42% 15% Without Storage I/O Control (Default) Performance without Storage IO Control

14% 22% 8% 500 shares 500 shares 750 shares 750 shares 4000 shares With Storage I/O Control (Congestion Threshold: 25ms) Performance with Storage IO Control

Storage I/O Control in Action: Example #2 Two Windows VMs running SQL Server on two hosts 250 GB data disk, 50 GB log disk VM1: 500 shares VM2: 2000 shares Result: VM2 with higher shares gets more orders/min & lower latency!

Step 1: Detect Congestion No benefit beyond certain load Throughput (IOPS or MB/s) Congestion signal: ESX-array response time > threshold Default threshold: 35ms We will likely recommend different defaults for SSD and SATA Changing default threshold (not usually recommended) Low latency goal: set lower if latency is critical for some VMs High throughput goal: set close to IOPS maximization point Total Datastore Load (# of IO’s in flight)

Storage I/O Control Internals ,[object Object]

The first is the local VMI/O scheduler. This is called SFQ, the start-time fair queuing scheduler. This scheduler ensures share-based allocation of I/O resources between VMs on a per host basis.

The second is the distributed I/O scheduler for ESX hosts. This is called PARDA, the Proportional Allocation of Resources for Distributed Storage Access.

carves out the array queue amongst all the VMs which are sending I/O to the datastore on the array.

adjusts the per host per datastore queue size (aka LUN queue/device queue) depending on the sum of the per VM shares on the host.

communicates this adjustment to each ESX via VSI nodes.

ESX servers also share cluster wide statistics between each other via a statsfile,[object Object]

Host-LevelIssue Queues Array Queue Storage Array SFQ SFQ SFQ Queue lengths varied dynamically Storage I/O Control Architecture PARDA PARDA PARDA

Requirements Storage I/O Control supported on FC or iSCSI storage. NFS datastores are not supported. not supported on datastores with multiple extents. Array with Automated Storage Tiering capability Automated storage tiering is the ability of an array (or group of arrays) to automatically migrate LUNs/volumes or parts of LUNs/volumes to different types of storage media (SSD, FC, SAS, SATA) based on user-set policies and current I/O patterns. Before using Storage I/O Control on datastores that are backed by arrays with automated storage tiering capabilities, check the VMware Storage/SAN Compatibility Guide to verify whether your automated tiered storage array has been certified to be compatible with Storage I/O Control No special certification is required for arrays that do not have any such automatic migration/tiering feature, including those that provide the ability to manually migrate data between different types of storage media

Hardware-Assist Storage Operation Formally known as vStorage API for Array Integration

vStorage APIs for Array Integration (VAAI) Improves performance by leveraging efficient array-based operations as an alternative to host-based solutions Three Primitives include: Full Copy – Xcopy like function to offload work to the array Write Same -Speeds up zeroing out of blocks or writing repeated content Atomic Test and Set – Alternate means to locking the entire LUN Helping function such as: Storage vMotion Provisioning VMs from Template Improves thin provisioning disk performance VMFS share storage pool scalability Notes: Requires firmware from Storage Vendors (6 participating) supports block based storage only. NFS not yet supported in 4.1

Array Integration Primitives: Introduction Atomic Test & Set (ATS) A mechanism to modify a disk sector to improve the performance of the ESX when doing metadata updates. Clone Blocks/Full Copy/XCOPY Full copy of blocks and ESX is guaranteed to have full space access to the blocks. Default offloaded clone size is 4MB. Zero Blocks/Write Same Write Zeroes. This will address the issue of time falling behind in a VM when the guest operating system writes to previously unwritten regions of its virtual disk: http://kb.vmware.com/kb/1008284 This primitive will improve MSCS in virtualization environment solutions where we need to zero out the virtual disk. Default zeroing size is 1MB.

Hardware Acceleration All vStorage support will be grouped into one attribute, called "Hardware Acceleration". Not Supported implies one or more Hardware Acceleration primitives failed. Unknown implies Hardware Acceleration primitives have not yet been attempted.

VM Provisioning from Template with Full Copy Benefits Reduce installation time Standardize to ensure efficient management, protection & control Challenges Requires a full data copy 100 GB template (10 GB to copy): 5-20 minutes FT requires additional zeroing of blocks Improved Solution Use array’s native copy/clone & zeroing functions Up to 10-20x speedup in provisioning time

Storage vMotion with Array Full Copy Function Benefits Zero-downtime migration Eases array maintenance, tiering, load balancing, upgrades, space mgmt Challenges Performance impact on host, array, network Long migration time (0.5 - 2.5 hrs for 100GB VM) Best practice: use infrequently Improved solution Use array’s native copy/clone functionality

VAAI Speeds Up Storage vMotion - Example 42:27 - 39:12 = 2 Min 21 sec w/out (141 seconds) 33:04 - 32:37 = 27 Sec with VAAI 141 sec vs. 27 sec

Copying Data – Optimized Cloning with VAAI ,[object Object]

Dramatic reduction in load on:

Creating a new VM or deploying a VM from a template

Creating or deleting a file, including snapshots

A new VAAI feature, atomic_test_and_set allows the ESX Server to offload the management of the required locks to thestorage and avoids locking the entire VMFS file system.,[object Object]

VMFS Scalability with Atomic Test and Set (ATS) Makes VMFS more scalable overall, by offloading block locking mechanism Using Atomic Test and Set (ATS) capability provides an alternate option to use of SCSI reservations to protect the VMFS metadata from being written to by two separate ESX Servers at one time. Normal VMware Locking (No ATS) Enhanced VMware Locking (With ATS)

For more details on VAAI vSphere 4.1 Documentation also describes use of this features in the ESX Configuration Guide Chapter 9 (pages 124 - 125) Listed in TOC as “Storage Hardware Acceleration” Three setting under advanced settings: DataMover.HardwareAcceratedMove - Full Copy DataMover.HardwareAcceratedInit - Write Same VMFS3.HarwareAccerated Locking - Atomic Test Set Additional Collateral planned for release after GA Frequently Asked Questions Datasheet or webpage content Partners include: Dell/EQL, EMC, HDS, HP, IBM and NetApp

Requirements The VMFS data mover will not leverage hardware offloads, and will use software data movement instead, in the following cases: If the source and destination VMFS volumes have different block size; in such situations data movement will fall back to the generic FSDM layer, which will only do software data movement. If the source file type is RDM and the destination file type is non-RDM (regular file) If the source VMDK type is eagerzeroedthick and the destination VMDK type is thin. If either source or destination VMDK is any sort of sparse or hosted format. If the logical address and/or transfer length in the requested operation are not aligned to the minimum alignment required by the storage device.

VMFS Data Movement Caveats VMware supports VAAI primitives on VMFS with multiple LUNs/extents, if they are all on the same array and the array supports offloading. VMware does not support VAAI primitives on VMFS with multiple LUNs/extents, if they are all on different arrays, but all arrays support offloading. HW cloning between arrays (even if it's within the same VMFS volume) won't work, so that would fall back to Software data movement.

vSphere 4.1 New Features: Management Management related features

Management – New Features Summary vCenter 32-bit to 64-bit data migration Enhanced Scalability Faster response time Update Manager Host Profile Enhancements Orchestrator Active Directory Support (Host and vMA) VMware Converter Hyper-V Import. Win08 R2 and Win7 convert Virtual Serial Port Concentrator

Scripting & Automation Host Profiles, Orchestrator, vMA, CLI, PowerCLI

Summary Host Profiles VMware Orchestrator VMware vMA PowerShell esxtop vscsiStats VMware Tools

Host Profiles Enhancements Host Profiles Cisco support PCI device ordering (support for selecting NICs) iSCSI support Admin password (setting root password) Logging on the host File is at C:ocuments and Settingsll Userspplication DataMwareMware VirtualCenterogsyVmomiServer.log Config not covered by Host Profiles are: Licensing vDS policy configuration (however you can do non-policy vDS stuff) iSCSI Multipathing

Host Profiles Enhancements Lbtd Lsassd (Part of AD. See the AD preso) Lwiod (Part of AD) Netlogond (part of AD) vSphere 4.1 vSphere 4.0

Orchestrator Enhancements provides a client and server for 64-bit installations, with an optional 32-bit client. performance enhancements due to 64-bit installation

VMware Tools Command Line Utility This feature provides an alternative to the VMware Tools control panel (the GUI dialog box) The command line based toolbox will allow for administrators to automate the use of the toolbox functionalities by writing their own scripts

vSphere Management Assistant (vMA) A convenient place to perform administration Virtual Appliance packaged as an OVF Distributed, maintained and supported by VMware Not included with ESXi – must be downloaded separately The environment has the following pre-installed: 64-bit Enterprise Linux OS VMware Tools Perl Toolkit vSphere Command Line Interface (VCLI) JRE (to run applications built with the vSphere SDK) VI Fast Pass (authentication service for scripts) VI Logger (log aggregator)

vMA Improvements in 4.1 Improved authentication capability – Active Directory support Transition from RHEL to CentOS Security The security hole that exposed clear text passwords on ESX(i) or vCenter hosts when using vifpinit (vi-fastpass) is fixed vMA as netdump server You can configure ESXi host to get the netcoredump onto a remote server in case of crash or panic. Each ESXi must be configured to write the core dump.

For Tech Partner: VMware CIM API What it is: for developers building management applications. With the VMware CIM APIs, developers can use standards-based CIM-compliant applications to manage ESX/ESXi hosts. The VMware Common Information Model (CIM) APIs allow you to: view VMs and resources using profiles defined by the Storage Management Initiative Specification (SMI-S) manage hosts using the System Management Architecture for Server Hardware (SMASH) standard. SMASH profiles allow CIM clients to monitor system health of a managed server. What’s new in 4.1 www.vmware.com/support/developer/cim-sdk/4.1/cim_410_releasenotes.html

vCLI and PowerCLI: primary scripting interfaces vCLI and PowerCLI built on same API as vSphere Client Same authentication (e.g. Active Directory), roles and privileges, event logging API is secure, optimized for remote environments, firewall-friendly, standards-based vCLI vSpherePowerCLI Other utility scripts Otherlanguages vSphere SDK vSphere Client vSphere Web Service API

vCLI for Administrative and Troubleshooting Tasks Areas of functionality Host Configuration: NTP, SNMP, Remote syslog, ESX conf, Kernel modules, local users Storage Configuration: NAS, SAN, iSCSI, vmkfstools, storage pathing, VMFS volume management Network Configuration: vSwitches (standard and distributed), physical NICs, Vmkernel NICs, DNS, Routing Miscellaneous: Monitoring, File management, VM Management, host backup, restore, and update vCLI can point to an ESXi host or to vCenter vMA is a convenient way for accessing vCLI Remote CLI now run faster in 4.1 relative to 4.0

Anatomy of a vCLI command Run directly on ESXi Host vicfg-nics --server hostname --user username --password mypassword options Hostname of ESXi host User defined locally on ESXi host Run through vCenter vicfg-nics --server hostname --user username --password mypassword --vihost hostname options Hostname of vCenter host User defined in vCenter (AD) Target ESXi host

Additional vCLI configuration commands in 4.1 Storage esxcliswiscsi session: Manage iSCSI sessions esxcliswiscsinic: Manage iSCSI NICs esxcliswiscsivmknic: List VMkernel NICs available for binding to particular iSCSI adapter esxcliswiscsivmnic: List available uplink adapters for use with a specified iSCSI adapter esxclivaai device: Display information about devices claimed by the VMware VAAI (vStorage APIs for Array Integration) Filter Plugin. esxclicorestorage device: List devices or plugins. Used in conjunction with hardware acceleration.

Additional vCLI commands Network esxcli network: List active connections or list active ARP table entries. vicfg-authconfig --server=<ESXi_IP_Adress> --username=root --password '' --authscheme AD --joindomain <ad_domain_name> --adusername=<ad_user_name> --adpassword=<ad_user_password> Storage NFS statistics available in resxtop VM esxclivms: Forcibly stop VMs that do not respond to normal stop operations, by using kill commands. # esxcli vms vm kill --type <kill_type> --world-id <ID> Note: designed to kill VMs in a reliable way (not dependent upon well-behaving system) Eliminating one of the most common reasons for wanting to use TSM.

esxcli - New Namespaces esxcli has got 3 new namespaces – network, vaai and vms [root@cs-tse-i132 ~]# esxcli Usage: esxcli [disp options] <namespace> <object> <command> For esxcli help please run esxcli –help Available namespaces: corestorage VMware core storage commands. network VMware networking commands. nmp VMware Native Multipath Plugin (NMP). This is the VMware default implementation of the Pluggable Storage Architecture. swiscsi VMware iSCSI commands. vaai Vaai Namespace containing vaai code. vms Limited Operations on VMs.

Control VM Operations # esxcli vms vm Usage: esxcli [disp options] vms vm <command> For esxcli help please run esxcli –help Available commands: kill Used to forcibly kill VMs that are stuck and not responding to normal stop operations. list List the VMs on this system. This command currently will only list running VMs on the system. [root@cs-tse-i132 ~]# esxcli vms vm list vSphere Management Assistant (vMA) World ID: 5588 Process ID: 27253 VMX Cartel ID: 5587 UUID: 42 01 a1 98 d6 65 6b e8-79 3b 2a 7c 9d 88 70 05 Display Name: vSphere Management Assistant (vMA) Config File: /vmfs/volumes/4b1e10ed-8ce9ce16-f692-00215e364468/vSphere Management Assistant (vM/vSphere Management Assistant (vM.vmx

esxtop – Disk Devices View Use the ‘u’ option to display ‘Disk Devices’. NFS statistics can now be observed. Here we are looking at throughput and latency stats for the devices.

New VAAI Statistics in esxtop (1 of 2) ,[object Object]

Each of the three primitives has their own unique set of statistics.

Toggle VAAI fields (‘O’ and ‘P’) to on for VAAI specific statistics.,[object Object],[object Object]

VSI # vsish /> cat /vmkModules/nfsclient/mnt/isos/properties mount point information { server name:rhtraining.vmware.com server IP:10.21.64.206 server volume:/mnt/repo/isos UUID:4f125ca5-de4ee74d socketSendSize:270336 socketReceiveSize:131072 reads:7 writes:0 readBytes:92160 writeBytes:0 readTime:404366 writeTime:0 aborts:0 active:0 readOnly:1 isMounted:1 isAccessible:1 unstableWrites:0 unstableNoCommit:0 } NFS I/O statistics are also available via the VSI nodes

vm-support enhancements vm-support now enables user to run 3rd party scripts. To make vm-support run such scripts, add the scripts to "/etc/vmware/vm-support/command-files.d" directory and run vm-support. The results will be added to the vm-support archive. Each script that is run will have its own directory which contain output and log files for that script in the vm-support archive. These directories are stored in top-level directory "vm-support-commands-output".

Power CLI Feature Highlights: Easier to customize and extend PowerCLI, especially for reporting Output objects can be customized by adding extra properties Better readability and less typing in scripts based on Get-View. Each output object has its associated view as nested property. Less typing is required to call Get-View and convert between PowerCLI object IDs and managed object IDs. Basic vDS support – moving VMs from/to vDS, adding/removing hosts from/to vDS More reporting: new getter cmdlets, new properties added to existing output objects, improvements in Get-Stat. Cmdlets for host HBAs PowerCLI Cmdlet Reference now documents all output types Cmdlets to control host routing tables Faster Datastore provider http://blogs.vmware.com/vipowershell/2010/07/powercli-41-is-out.html

If you are really really curious….  Additional commands (not supported) http://www.petri.co.il/vmware-esxi4-console-secret-commands.htm

vCenter improvement Better load balancing with improved DRS/DPM algorithm effectiveness Improved performance at higher vCenter inventory limits – up to 7x higher throughput and up to 75% reduced latency Improved performance at higher cluster inventory limits – up to 3x higher throughput and up to 60% reduced latency Faster vCenter startup – around 5 minutes for maximum vCenter inventory size Better vSphere Client responsiveness, quicker user interaction, and faster user login Faster host operations and VM operations on standalone hosts – up to 60% reduction in latency Lower resource usage by vCenter agents by up to 40% Reduced VM group power-on latency by up to 25% Faster VM recovery with HA – up to 60% reduction in total recovery time for 1.6x more VMs

88 Enhanced vCenter Scalability

vCenter 4.1 install New option: Managing the RAM of JVM

vCenter Server: Changing JVM Sizing The same change should be visible by launching "Configure Tomcat" from the program menu (Start->Programs->VMware->VMware Tomcat).

vCenter: Services in Windows The following are not shown as services Licence Reporting manager

Remote Console to VM Formally known as Virtual Serial Port Concentrator

Overview Many customers rely on managing physical hosts by connecting to the target machine over the serial port. Physical serial port concentrators are used by such admins to multiplex connections to multiple hosts. Provides a suitable way to remote a VM’s serial port(s) over a network connection, and supporting a “virtual serial port concentrator” utility. Using VMs you lose this functionality and the ability to do remote management using scripted installs and management. Virtual Serial Port Concentrator Communicate between VMs and IP-enabled serial devices. Connect to VM's serial port over the network, using telnet /ssh. Have this connection uninterrupted during vmotion and other similar events.

Virtual Serial Port Concentrator What it is Redirect VM serial ports over a standard network link vSPC aggregates traffic from multiple serial ports onto one management console. It behaves similarly as physical serial port concentrators. Benefits Using a vSPC also allows network connections to a VM's serial ports to migrate seamlessly when the VM is migrated using vMotion Management efficiencies Lower costs for multi-host management Enables 3rd party concentrator integration if required

Example (using Avocent) ACS 6000 Advanced Console Server running as a vSPC. There is not a serial port or virtual serial port in the ACS6000 console server. ACS6000 console server has a telnet daemon (server) listen to connections coming from ESX. ESX will make one telnet connection for each virtual serial port configured to send data to ACS6000 console server. The serial daemon will implement the telnet server with support to all telnet extensions implemented by VMware.

Configuring Virtual Ports on a VM

Configuring Virtual Ports on a VM Enables two VMs or a VM and a process on the host to communicate as if they were physical machines connected by a serial cable. For example, this can be used for remote debugging on a VM vSPC, which will act as proxy.

Configuring Virtual Ports on a VM Example (for Avocent): Type ACSID://ttySxx in the Port URI, where xx is between 1 to 48. It defines which virtual serial port from the ACS6000 console server this serial port will connect to. 1 VM 1 port. ACS6000 has 48 ports only Type telnet://<IP of Avocent VM>:8801

Configure VM to redirect Console Login Check your system's serial support Check operating system recognizes serial ports in your hardware Configure your /etc/inittab to support serial console logins Add the following lines to the /etc/inittab # Run agetty on COM1/ttyS0 s0:2345:respawn:/sbin/agetty -L -f /etc/issueserial 9600 ttyS0 vt100

Configure VM to redirect Console Login Activate the changes that you made in /etc/inittab # init q If you want to be able to login via serial console as the root user, you will need to edit the /etc/securetty configuration file. Add ttyS0 as an entry in the /etc/securetty console ttyS0 vc/1 vc/2

Configure serial port as the system console Use options in /etc/grub.conf to redirect console output to one of your serial ports Enables you to see all of the bootup and shutdown messages from your terminal. The text to add to the config file is highlighted :

Accessing the Serial Port of the Virtual Machine Open a Web connection to the AvocentACS6000 Click on the Portsfolder and click SerialPorts Based on the SerialPort connection configured in the VirtualMachine, you should see Signals of CTS|DSR|CD|RI

Accessing the Serial Port of the Virtual Machine ,[object Object]

Enter password of avocent and hit the Enterkey to establish the connection,[object Object]

UI > Performance > Advanced vSphere 4.1 vSphere 4.0 Additional Chart Options in vSphere 4.1 around storage performance statistics: Datastore, Power, Storageadapter & Storage path.

110 Performance Graphs Additional Performance GraphViews added to vSphere 4.1 Host – Datastore, Management Agent, Power, Storage Adapter, Storage Path VM – Datastore, Power, Virtual Disk 110

Storage Statistics: vCenter & esxtop Not available in this timeframe: Aggregation at cluster level in vCenter (possible through APIs) *Network-based storage (NFS, iSCSI) I/O breakdown still being researched ** Not applicable to NFS; datastore is the equivalent ESXTOP publishes throughput and latency for LUN, if datastore has only one LUN then LUN will be equal datastore

Update Manager ,[object Object]

Define, track, and enforce software update compliance for ESX hosts/clusters, 3rd party ESX extensions, Virtual Appliances, VMTools/VM Hardware, online*/offline VMs, templates

Cluster level pre-remediation check analysis and report

Framework to support 3rd party IHV/ISV updates, customizations: mass install, /update of EMC’s PowerPath module

Enhanced compatibility with DPM for cluster level patch operations

Performance and scalability enhancements to match vCenter,[object Object]

Define, track, and enforce software update compliance and support for :

Automate and Generate Reports using Update Manager Database Views ESX/ESXi VM Virtual Appliance VMTools VM H/W VMTools VM H/W Online/offline ; Templates 3rd party extensions vCenter Update Manager

Deployment Components vCenter Server VI Client Update Manager Server Update Manager Components: Update Manager Server + DB 2. Update Manager VI Client Plug-in 3. Update Manager Download Service Virtualized Infrastructure External Patch Feeds Confidential

New Features in 4.1 Update Manager now provides management of host upgrade packages. Provisioning, patching, and upgrade support for third-party modules. Offline bundles. Recalled patches Enhanced cluster operation. Better handling of low bandwidth and high latency network PowerCLI Better support for virtual vCenter

Notifications As we have already seen with the notification Schedule, Update Manager 4.1 contacts VMware at regular intervals to download notifications about patch recalls, new fixes and alerts. If patches with problems/potential issues are released, these patches are recalled in the metadata and VUM marks them as recalled. If you try to install a recalled patch, Update Manager notifies you that the patch is recalled and does not install it on the host. If you have already installed such a patch, VUM notifies you that the recalled patch is installed on certain hosts, but does not remove the recalled patch from the host. Update Manager also deletes all the recalled patches from the Update Manager patch repository. When a patch fixing the problem is released, Update Manager 4.1 downloads the new patch and prompts you to install it.

Notifications Notifications which Update Manager downloads are displayed on the Notifications tab of the Update Manager Administration view. ,[object Object]

Update Manager shows the patch as recalled,[object Object]

Notifications Alarms posted for recalled and fixed Patches RecalledPatches are represented by a Flag

VUM 4.1 Feature - Notification Check Schedule By default Update Manager checks for notifications about patch recalls, patch fixes and alerts at certain time intervals. Edit Notifications to define the Frequency (hourly, daily, weekly, Monthly) and the Start time ( minutes after hour ), the Interval and the email address of who to Notify for recalled Patches

VUM 4.1 Feature - ESX Host/Cluster Settings When Remediating objects in a cluster with Distributed Power Management (DPM), High Availability (HA), and Fault Tolerance (FT) you should temporarilydisable these features for the entire cluster. VUM does not remediate hosts on which these features are enabled. When the update completes, VUM restores these features These settings become the default failure response. You can specify differentsettings when you configure individual remediation tasks.

VUM 4.1 Feature - ESX Host/Cluster Settings Update Manager can not remediate hosts where VMs have connected CD/DVD drives. CD/DVD drives that are connected to the VMs on a host might prevent the host from entering maintenancemode and interrupt remediation. Select Temporarily disable any CD-ROMs that may prevent a host from entering maintenance mode.

Baselines and Groups Baselines might be upgrade, extension or patchbaselines. Baselines contain a collection of one or more patches, servicepacks and bugfixes, extensions or upgrades. Baseline groups are assembled from existingbaselines and might contain one upgradebaseline per type and one or more patch and extensionbaselines, or a combination of multiple patch and extension baselines. Preconfigured Baselines Hosts – 2 Baselines VM/VA – 6 Baselines

Baselines and Groups Update Manager 4.1 introduces a new Host Extension Baseline Host Extension baselines contain additional software for ESX/ESXi hosts. This additional software might be VMwaresoftware or third-partysoftware.

VMware vSphere 4.1 deep dive - part 2

Recomendados

Recomendados

Mais conteúdo relacionado

Mais procurados

Mais procurados (15)

Semelhante a VMware vSphere 4.1 deep dive - part 2

Semelhante a VMware vSphere 4.1 deep dive - part 2 (20)

Mais de Louis Göhl

Mais de Louis Göhl (19)

VMware vSphere 4.1 deep dive - part 2