9 ESXi Convergence Overview Benefits Most TrustedOverviewvSphere 5.0 will utilize the ESXi hypervisor exclusivelyESXi is the gold standard for hypervisorsvSphere ESXiBenefitsThin architectureSmaller security footprintStreamlined deployment and configurationSimplified patching and updating model
10 The Gartner Group says… “The major benefit of ESXi is the fact that it is more lightweight — under 100MB versus 2GB for VMware ESX with the service console.”“Smaller means fewer patches”“It also eliminates the need to manage a separate Linux console (and the Linux skills needed to manage it)…”“VMware users should put a plan in place to migrate to ESXi during the next 12 to 18 months.”Source: Gartner, August 2010
12 ESXCLI establishes a standard with an extensible framework. ESXi Command LineWhy a new ESXi CLI tool?Console CLI and remote vCLI are differentNeed to learn multiple CLIsLocal commands don’t work remote, remote commands don’t work locallyCommands evolved from multiple sources using different standardsNo formal process for adding or updating commandsInconsistent output and syntaxOutput format changes from command to commandDifferent commands have different input parametersRemote CLI limited compared to local CLIESXCLI establishes a standard with an extensible framework.Going forward ESXCLI commands will be backward compatible
13 vSphere 5.0 CLI Compatibility CommandsRun LocalRun RemoteESX/ESXi 4.xESXi 5.xesxcfg1YesNoesxcli2vicfg3vmware-cmdvmkfstoolsPowerCLI1. ‘esxcfg’ commands deprecated in 5.0 (replaced with esxcli)2. ‘esxcli’ in 4.x is *not* backward compatible with 5.03. ‘vicfg’ used for remote CLI only
15 ESXi 5.0 Firewall Features CapabilitiesESXi 5.0 has a new firewall engine which is not based on iptables.The firewall is service oriented, and is a stateless firewall.Users have the ability to restrict access to specific services based on IP address/Subnet Mask.ManagementThe GUI for configuring the firewall on ESXi 5.0 is similar to that used with the classic ESX firewall — customers familiar with the classic ESX firewall should not have any difficulty with using the ESXi 5.0 version.There is a new esxcli interface (esxcfg-firewall is deprecated in ESXi 5.0).There is Host Profile support for the ESXi 5.0 firewall.Customers who upgrade from Classic ESX to ESXi 5.0 will have their firewall settings preserved.
16 UI: Security ProfileThe ESXi Firewall can be managed via the vSphere client.Through the Configuration > Security Profile, one can observe the Enabled Incoming/Outgoing Services, the Opened Port List for each service & the Allowed IP List for each service.
17 UI: Security Profile > Services > Properties Through the Services Properties, one can configure if a service should be automatically started.Services can also be stopped & started on-the-fly.
18 UI: Security Profile > Firewall > Properties In the Firewall properties, one can check or uncheck the checkbox associated with a service to enable/disable access.Service name, open ports and status are also displayed.Ruleset EnabledConfiguration -> Security Profile -> Properties…Allowed IP
20 Composition of an ESXi Image Core HypervisorCIM ProvidersPlug-in ComponentsDrivers
21 ? ESXi Image Deployment Challenges Standard ESXi image from VMware download site is sometimes limitedDoesn’t have all drivers or CIM providers for specific hardwareDoesn’t contain vendor specific plug-in components?Missing CIM providerMissing driverStandard ESXi ISOBase providersBase drivers
22 Describing ESXi Components VIB“VMware Infrastructure Bundle” (VIB)Software packaging format used for ESXiOften referred to as a “Software Package”Used for all componentsESXi Base ImageDriversCIM providersOther componentsCan specify relationship with other VIBsVIBs that it depends onVIBs that it conflicts with
23 Managing Customized ESXi Images Image Builder: a set of command line utilities for…Creating and managing image profilesBuilding ESXi customized boot images, e.g.Installable ISOBundle suitable for PXE installation or FlashInitial version is based on PowerCLISnap-in component bundled as part of VMware’s PowerCLI toolsDepotA repository containingImage profilesVIBsCan have multiple depots, with two typesOn a web serverEncapsulated in a .ZIP file
25 vCenter Server with Auto Deploy OverviewvCenter Server with Auto DeployDeploy and patch vSphere hosts in minutes using a new “on the fly” modelCoordination with vSphere Host ProfilesImage ProfilesHost ProfilesBenefitsRapid provisioning: initial deployment and patching of hostsCentralized host and image managementReduce manual deployment and patch processesvSpherevSpherevSpherevSphere
26 Auto Deploy Components Sub-ComponentsNotesPXE Boot InfrastructureDHCP ServerTFTP ServerSetup independentlygPXE file from vCenterCan use Auto Deploy ApplianceAuto Deploy ServerRules EnginePowerCLI Snap-inWeb ServerBuild/Manage RulesMatch server to Image and Host ProfileDeploy serverImage BuilderImage Profiles,Combine ESXi image with 3rd party VIBs to create custom Image ProfilesvCenter ServerStores RulesHost ProfilesAnswer FilesProvides store for rulesHost configs saved in Host ProfilesCustom Host settings saved in Answer Files
28 How Does A User Plan an ESX to ESXi migration? Visit the ESX and ESXi Info CenterStart testing ESXiIf you’ve not already deployed, there’s no better time than the presentEnsure 3rd party solutions used by your customers are ESXi ReadyMonitoring, backup, management, etc. Most already are.Bid farewell to agents!Familiarize with ESXi remote management optionsTransition any scripts or automation that depended on the COSPowerful off-host scripting and automation using vCLI, PowerCLI, …Plan an ESXi migration as part of vSphere upgradeTesting of ESXi architecture can be incorporated into overall vSphere testing
29 ESXi and ESX Info Center All Resources in One Centralized Location
30 ESX to ESXi Migration with VMware Update Manager Supported PathsMigration from ESX (“Classic”) 4.x to ESXi 5.0For VUM-driven migration, pre-4.x hosts will have to be upgraded to 4.x firstMight be better just to do fresh install of ESXi 5.0Preservation of Configuration InformationMost standard configurations will be preserved, but not all:Information that’s not applicable to ESXi will not be preserved, e.g./etc/yp.conf (no NIS in ESXi)/etc/sudoers (no sudo in ESXi)Any additional custom configuration files will not be preserved, e.g.Any scripts added to /etc/rc.dConfidential
31 ESXi Migration and Third-Party Software Supported componentsUpgrade of third-party components limited toCisco Nexus 1000vEMC PowerPathDuring upgrade, if either of these is detected on starting hostTarget ESXi image is checked for presence of these modulesIf found, upgrade proceedsIf not found, option provided to override and proceedOtherwise, haltAll other componentsStarting host not checked for other third-party softwareUpgrade process will not preserve anythingUp to Admins to take care of replacingConfidential
32 Agenda: vStorage – What’s New IntroductionVMFS-5vStorage API for Array IntegrationStorage vMotionStorage I/O ControlStorage DRSVMware API for Storage AwarenessProfile Driven StorageFCoE – Fibre Channel over Ethernet
33 Introduction to VMFS-5 Enhanced Scalability Better Performance Increase the size limits of the filesystem & support much larger single extent VMFS-5 volumes.Support for single extent 64TB Datastores.Better PerformanceUses VAAI locking mechanism with more tasks.Easier to manage and less overheadSpace reclamation on thin provisioned LUNs.Smaller sub blocks.Unified Block size.
34 VMFS-5 Versus VMFS-3 Feature Comparison 2TB+ VMFS VolumesYes (using extents)YesSupport for 2TB+ Physical RDMsNoUnified Block size (1MB)Atomic Test & Set Enhancements (part of VAAI, locking mechanism)Sub-blocks for space efficiency64KB (max ~3k)8KB (max ~30k)Small file support1KB
35 VMFS-3 to VMFS-5 UpgradeThe Upgrade to VMFS-5 is clearly displayed in the vSphere Client under Configuration → Storage view.It is also displayed in the Datastores → Configuration view.The upgrade is non-disruptive.
36 Agenda: vStorage – What’s New IntroductionVMFS-5vStorage API for Array IntegrationStorage DRSStorage I/O ControlVMware API for Storage AwarenessProfile Driven StorageFCoE – Fibre Channel over Ethernet
37 VAAI – Introduction vStorage API for Array Integration = VAAI VAAI’s main purpose is to leverage array capabilities.Offloading tasks to reduce overheadBenefit from enhanced mechanisms arrays mechanismsThe “traditional” VAAI primitives have been improved.We have introduced multiple new primitives.Support for NAS!ApplicationVI-3HypervisorNon-VAAIFabricArrayVAAILUN 01LUN 02
38 Introducing VAAI Thin Provisioning What are the driving factors behind VAAI Thin Provisioning?Provisioning new LUNs to a vSphere environment (cluster) is complicated.Often requires involvement from multiple people, creating delays in the provisioning processStrategic Goal:We want to make the act of physical storage provisioning in a vSphere environment extremely rare.LUNs should be extended across a large address space and able to handle any VM workload.VAAI TP features include:Dead space reclamation.Monitoring of the space.vSphere 5.0 introduces multiple VAAI enhancements for environments using Array based Thin Provisioning capabilities. Historically the two major challenges of thin provisioned LUNs have been the reclamation of dead space and the challenges around monitoring space usage. Dead space reclamation offers the ability to reclaim blocks of a thin provisioned LUN on the array when a virtual disk is deleted or migrated to a different datastore by for example Storage DRS.
39 VAAI Thin Provisioning – Dead Space Reclamation Dead space is previously written blocks that are no longer used by the VM. For instance after a Storage vMotion.vSphere conveys block information to storage system via VAAI & storage system reclaims the dead blocks.Storage vMotion, VM deletion and swap file deletion can trigger the thin LUN to free some physical space.ESXi 5.0 uses a standard SCSI command for dead space reclamation.vSphereVMFS volume AVMFS volume B
40 Agenda: vStorage – What’s New IntroductionVMFS-5vStorage API for Array IntegrationStorage DRSStorage I/O ControlVMware API for Storage AwarenessProfile Driven StorageFCoE – Fibre Channel over Ethernet
41 Storage DRS Overview Benefits Group “like” datastores in a datastore cluster.Initial placement of VMs/VMDKsDatastore maintenance modeSpace and I/O load balancingAffinity and anti-affinity rulesAffinityStorage vMotionoverloadedBenefitsDatastore ClusterScalable storage managementReduce time for VM provisioningEliminate VM downtime for storage maintenanceAutomated Out of space avoidanceAutomated I/O bottleneck avoidanceAccelerate VM storage placement decision to a storage pod by:Capturing VM storage SLA requirementsMapping to the storage with the right characteristics and spare space
42 SDRS allows you to create a schedule to change its settings. SDRS SchedulingSDRS allows you to create a schedule to change its settings.This can be useful for scenarios where you don’t want VMs to migrate between datastore or when I/O latency might rise, giving false negatives, e.g. during VM backups.
44 So What Does It Look Like? Load Balancing. The Storage DRS tab will show “utilization before” and “after”.There’s always the option to override the recommendations.
45 Agenda: vStorage – What’s New IntroductionVMFS-5vStorage API for Array IntegrationStorage DRSStorage I/O ControlVMware API for Storage AwarenessProfile Driven StorageFCoE – Fibre Channel over Ethernet
46 Performance Guarantees – Network and Storage I/O Control Overview3. w/ I/O controls, can give VIP VMs preferential access2. Other VMs are starved for resources1. VM requests more resourcesSet up SLAs for use of storage and network resourcesAdded per virtual machine settings for Network I/O ControlAdded NFS support for Storage I/O ControlBenefitsEliminate the “noisy neighbor” problemMore granular SLA settings for network trafficExtend Storage SLAs to more VMs
47 Agenda: vStorage – What’s New IntroductionVMFS-5vStorage API for Array IntegrationStorage DRSStorage I/O ControlVMware API for Storage AwarenessProfile Driven StorageFCoE – Fibre Channel over Ethernet
48 What Is vStorage APIs Storage Awareness (VASA)? VASA is an Extension of the vSphere Storage APIs, vCenter-based extensions. It allows storage arrays to integrate with vCenter for management functionality via server-side plug-ins or Vendor Providers.This in turn allows a vCenter administrator to be aware of the topology, capabilities, and state of the physical storage devices available to the cluster.VASA enables several features.For example it delivers System-defined (array-defined) Capabilities that enables Profile-driven Storage.Another example is that it provides array internal information that helps several Storage DRS use cases to work optimally with various arrays.
49 Agenda: vStorage – What’s New IntroductionVMFS-5vStorage API for Array IntegrationStorage DRSStorage I/O ControlVMware API for Storage AwarenessProfile Driven StorageFCoE – Fibre Channel over Ethernet
50 Profile-Driven Storage OverviewTier storage based on performance or SLA characteristicsView a list of all compliant storage resourcesHigh IO ThroughputBenefitsTier 1Tier 2Tier 3Utilize the correct storage resources every time (no mistakes)Help IT personnel that may not be as familiar with storage characteristics align with business and application goalsImprove storage utilization and efficiencies
51 Selecting a Storage Profile During Provisioning By selecting a VM Storage Profile, datastores are now split into Compatible & Incompatible.The Celerra_NFS datastore is the only datastore which meets the GOLD Profile requirements – i.e. it is the only datastore that has our user-defined storage capability associated with it.
52 VM Storage Profile Compliance Policy Compliance is visible from the Virtual Machine Summary tab.
53 Agenda: vStorage – What’s New IntroductionVMFS-5vStorage API for Array IntegrationStorage DRSStorage I/O ControlVMware API for Storage AwarenessProfile Driven StorageFCoE – Fibre Channel over Ethernet
54 Software FCoE Adapters (1 of 2) A software FCoE adapter is a software code that performs some of the FCoE processing.This adapter can be used with a number of NICs that support partial FCoE offload.Unlike the hardware FCoE adapter, the software adapter needs to be activated, similar to Software iSCSI.
55 Software FCoE Adapters (2 of 2) Once the Software FCoE is enabled, a new adapter is created, and discovery of devices can now take place.
56 New Virtual Machine Features vSphere 5.0 supports the industry’s most capable virtual machines32 virtual CPUs per VM1TB RAM per VM4x previous capabilities!VM Scalability3D graphicsRicher Desktop ExperienceBroader Device CoverageClient-connected USB devicesUSB 3.0 devicesSmart Card Readers for VM Console AccessVM BIOS boot order config API and PowerCLI interfaceEFI BIOSOther new featuresUI for multi-core virtual CPUsExtended VMware Tools compatibilitySupport for Mac OS X serversItems which require HW version 8 in orange56
57 Upgrade Compatibility Provides for flexibility for Administrators to upgrade environment in phased mannerFeatureESX/ESXi 4.xESXi 5.xVMware Tools 4.xYesVMware Tools 5.xVMFS-3VMFS-5NoVirtual Hardware13, 4, 74, 7, 8ESXi 5.0 supports upgrading Virtual Hardware version 3 and later
58 Application Services – Availability, Security, and Scalability
59 Scaling Virtual Machines OverviewCreate virtual machines with up to:32 vCPU1 TB of vRAMBenefits4x4x size of previous vSphere versionsRun even the largest applications in vSphere, including very large databasesVirtualize even more applications than ever before (Tier 1 and 2)
60 New HA Architecture Overview Benefits New architecture for High Availability feature of vSphereStorage vMotionVMware Fault Tolerance High Availability DRS Maintenance Mode vMotionVMFSVMFSVMwareNIC Teaming MultipathingBenefitsStorageSimplified clustering setup and configurationEnhanced reliability through better resource guarantees and monitoringEnhanced scalabilityServerComponent
62 vCenter Server Appliance (Linux) OverviewRun vCenter Server as a Linux-based applianceBenefitsSimplified setup and configurationEnables deployment choices according to business needs or requirementsLeverages vSphere availability features for protection of the management layer
63 Component Overview vCenter Server Appliance (VCSA) consists of: A pre-packaged 64 bit application running on SLES 11Distributed with sparse disksDisk FootprintMemory FootprintA built in enterprise level database with optional support for a remote Oracle databases.Limits are the same for VC and VCSAEmbedded DB5 hosts/50 VMsExternal DB<1000 hosts/<10,000 VMs (64 bit)A web-based configuration interfaceDistributionMin DeployedMax Deployed3.6GB~5GB~80GB
64 Feature Overview vCenter Server Appliance supports: The vSphere Web ClientAuthentication through AD and NISFeature parity with vCenter Server on WindowsExcept –Linked Mode supportRequires ADAM (AD LDS)IPv6 supportExternal DB SupportOracle is the only supported external DB for the first releaseNo vCenter Heartbeat supportHA is provided through vSphere HA
65 Web Client Overview Benefits Run and manage vSphere from any web browser anywhere in the worldBenefitsPlatform independenceReplaces Web Access GUIBuilding block for cloud based administration
66 Why Flex?Flex provides us with the richest and fullest featured development platform available.Extensive amount of Libraries to useTechnologies such as HTML5 and others are still in developmentProvides the best performanceScales to the webWeb ClientWindows ClientScalability50 VCs100,000 VMs10 VCs10,000 VMsPlatform IndependenceWindowsLinuxExtensibilityLinux NativeRich Extension PointsOne HTMLplug-in
67 Features of the vSphere Web Client Customize the GUICreate custom views to reflect the information you need to see, the way you like to see it
68 Features of the vSphere Web Client Ready Access to Common ActionsQuick access to common tasks provided out of the box
69 Features of the vSphere Web Client Support interrupt driven workflowsAllow jumping in and out of workflows easily – continuing exactly from where you left off without having to repeat a process
70 Features of the vSphere Web Client Extendable FunctionalityPossible for partners and end users to add features and functionalityEasily create new tabs for informationCreate portlets for instant access to information
71 The Best of the Rest Platform Network Storage Availability Management Hardware Version 8 – EFI virtual BIOSMemory Fault IsolationNetworkDistributed Switch (Netflow, SPAN support, LLDP)Network I/O Controls (per VM), ESXi firewallStorageVMFS 5iSCSI UIStorage I/O Control (NFS)Array Integration for Thin Provisioning,Swap to SSD, 2TB+ VMFS datastoresStorage vMotion Snapshot SupportAvailabilityvMotion with higher latency linksData Recovery EnhancementsManagementInventory ExtensibilityiPad clientData Recovery Enhancements - reports, performance, support of datastore maintenance windows