VMware NSX Security Features – Who should pay for them?

One of the typical questions when considering NSX deployments is who should be the administrator?  However this is typically a two horse race, between Network and Virtualization Systems Administrators. Although NSX is SDN (software defined networking) the driver behind much of what it does is due security requirements, using vlans to segregate layer two networks, […]

Continue reading


NSX – Availability and Redundancy

vSphere administrators normally have two great fears, failure of Storage and failure in the network layer, as both of these can result in 100s or 1000s of virtual machines simultaneously going off line. Software defined networking such as NSX or vShield have the potential to bring those failures even closer to home. How has NSX been architected to make it […]

Continue reading


vSphere Integrated Containers – Manageability and Security

vSphere Integrated Containers. For the last few years I’ve been noting with increasing anxiety the rise of docker and the predicted invasion of the virtualized machine environment. When VMware previewed the open source Photon platform and the vSphere Integrated Container initiates I breathed a sigh of relief that they had noticed the amassing armies of […]

Continue reading


Using infrastructure qualities to assess new technology

Change is the only constant. Everything changes and nothing stands still. That is especially true of technology. Many of today’s products will be outdated in a single life cycle. As new features are added at each major release products can be completely transformed within a few short years. Technology vendors pitch themselves as solution providers, […]

Continue reading


VCIX6 DCV Design – Exam Preparation Workbook

Trying to keep track of what you have read in preparing for the advanced level design exam is a task in itself. I’ve created a downloadable excel file that contains objectives and hyperlinks as per blueprint 3V0-622 v1.2, published on 4 December 2015       VMware Certified Advanced Professional 6 – Data Center Virtualization […]

Continue reading


virtual machine performance – high cpu ready lab

Application issues, undersizing a virtual machine, or applying a restrictive cpu limit can all result in cpu ready CPU Ready is the primary indicator of a cpu performance issue. Although it’s possible to create a cpu-ready alarm, every VMware admin needs to be able to recognize what the values mean.   How much cpu ready is ok It is […]

Continue reading


NSX Lab Series

Network Virtualization is challenging for those of us coming from a systems admin background. In this series of posts there are lots of diagrams, so you can see the layout of hosts, network switches, controllers, and understand the traffic flows, and routing requirements If you are a visual learner like me, then I hope you […]

Continue reading


virtual machine cpu limit considerations

Several years ago some of VMware’s most respected technical experts made recommendations against using virtual machine cpu limits. yellow-bricks limiting-your-vcpu More recently VMware stated “Resource limits on a virtual machine… form an artificial boundary… you need to take the possible impact into consideration before applying limits to either memory or CPU.” Impact of virtual machine CPU resource […]

Continue reading


VMware PowerCLI Script Library

Get-ByBlueFolders Series Many of us divide services or customers using blue folders, typically in a multi service enviroment The following are scripts that can be run against all vms in a folder Get-bybluefolder list vm harddisk and scsi-id information List information for virtual machine harddisk, harddisk number, size, scsi id, and raw canonical name This […]

Continue reading


Surviving a security audit

The main point of a security audit is not to try and strangle the auditor, he is just doing his job, although you might think he is there to make your life impossible. I have put together a collection of posts, the configuration settings are all publicly available, mainly from VMware’s Hardening Guide, so there […]

Continue reading


Last of the betas (vcix6-design)

VCIX-DCV-Design / VCAP6-DCD Beta Exam Experience Only one of vmware’s new vcix/vcap 6 exams was available for public beta, I was able to enrol and took the exam on the final day of beta phase. The expectation is that it will go live in late April/ early May 2016.   Exam Preparation Some of the best advice […]

Continue reading


vmware design math – calculate new cluster requirements

design math – calculate new cluster requirements Question 1   Inventory of 100 physical servers    75 Severs with 2 x 2 core 2.5GHZ intel CPU’s 25 Servers with 2 x 4 core 2.5GHZ intel CPU’s   75 Servers with 4GB of memory 25 Servers with 16GB of memory   Average peak CPU usage PER CORE on […]

Continue reading


vmware-design math – calculate vsan requirements

Here’s a math question based on the vsan design and sizing guide   Customer wants to deploy 100  virtual  machines in a hybrid Virtual SAN 6.0 cluster, disk format v2 Each virtual  machine requires  2  vCPU,  8GB  of  memory  and  a  single  100GB  VMDK. Snapshots are not used. Customer expect a vCPU-to-core ratio of 5:1 […]

Continue reading


vcix-dcv-design math – Get remaining host cpu capacity

Although these are typical question for vmware design exams, (vcap-dcd, vcix-dcv-design) they are fundamental in calculating available capacity given a specific number of tolerable host failures What percentage of cluster resources does your cluster still have to start VM’s in the event of a failure with x admission control reservation. In other words, after setting admission control (see […]

Continue reading


vcix-dcv-design math – Get admission control percentage

VMware are clear about the importance of setting admission control on vSphere clusters, and the preference of using the percentage calculation where possible A simple formula will help calculate for heterogeneous cluster*    For example I have a 12 node vsphere cluster and want to tolerate the loss of 4 hosts 100 / <number of hosts […]

Continue reading