Deploying NSX-T Based Workload Domain in VMware Cloud Foundation

In this post I will walk through steps of deploying a VI workload domain based on NSX-T. Note: We can only deploy VI domain with NSX-T. As of now Management workload domain is only NSX-V based.

Before kicking NSX-T based VI workload domain, please ensure you have met following prerequisites:

1: NSX-T license has been added to SDDC-Manager under Administration > Licensing

2: NSX-T install bundle have been downloaded from repository. Below is screenshot of a downloaded bundle.

nsx-t-bundle.PNG

3: Network Pool have been created for the workload domain. This pool will have IP address for the vMotion & vSAN network. Read More

vROPS Deployment in VMware Cloud Foundation

VMware Cloud Foundation not only deploys SDDC but can be used to automate deployment of vRealize suite components such as vRealize Suite Life Cycle Manager (vRSLCM), vRealize Log Insight, vRealize Operations and vRealize Automation. 

Before you can deploy vROPS/vRA or vRLI, you need to deploy vRSLCM using vCF. vCF can then trigger workflows and send requests via API to vRSLCM for taking care of deployment. 

In this post I will walk through steps of deploying both vRSLCM and vROPS.

To deploy vRSLCM, login to SDDC Manager and navigate to Home> Administration > vRealize Suite > vRealize Suite LifeCycle Manger and click on Deploy.  Read More

Scaling Workload Domain in VMware Cloud Foundation

When you spin up a brand new SDDC using VMware Cloud Foundation, minimum number of hosts that are needed in Management Domain and VI Domain are 4 & 3 respectively. You can scale up Management domain up to 8 hosts and VI domain to 64 hosts.

Before scaling up the workload domains, we need to commission the host first and add it to vCF inventory. To add new hosts to inventory, we need to create a new network pool or expand the default network pool created during bring-up.

Once network pool has been created, you can start commission of new hosts by navigating to SDDC-Manager > Hosts and click on “Commission Hosts” button Read More

Troubleshooting NFS Mount Issue During SDDC Bringup in vCF 3.7

Recently while playing with vCF 3.7.2 in my lab, I encountered an issue where SDDC Bringup process was halted because of NFS mount problem.

If you are experienced with vCF then you would be knowing that during bringup process, NFS share from the sddc manager vm is mounted as a NFS datastore across the management domain by the name “lcm-bundle-repo”.

On checking the hostd.log on Esxi host I saw following log entries

vmkernel.log was full of below error messages Read More

vCF 3.7 to 3.8 Online Upgrade

In this post we will learn how to perform online upgrade of VMware Cloud Foundation from version 3.7.2 to 3.8.0. Although upgrade process is fairly simple and straight forward, it needs a bit of planning. 

As a best practice, it is always recommended to read the release notes & known issues in new version of product before performing upgrade. vCF 3.8 known issues are documented here

To perform online upgrade of vCF, your SDDC Manager appliance should have direct connectivity to internet or via a proxy server.  Read More

Troubleshooting NSX Host Preparation Error “Agency Already Exist For Cluster”

Yesterday while setting up my lab for NSX-V deployment, I encountered an issue with host preparation and it failed with error “Agency 3d62d2da-5e93-4f57-a87c-063a7af3be28 already exist for cluster Mgmt-Cluster. Delete this agency from EAM database

nsx-error

I past I had NSX-V configured in my cluster and sometimes back I uninstalled NSX-V components and was playing with NSX-T and later uninstalled NSX-T as well. I guess the uninstall was not clean and left behind lingering item in EAM database. Read More

Deleting Workload Domain in VMware Cloud Foundation

In last post of this series, we learnt how to deploy a workload domain via SDDC Manager. In this post we will learn how to delete it. 

If you are not following along this series, then I recommend reading earlier posts of this series from below links:

1: Physical/Virtual Infra Preparation

2: DNS and IP Pools Requirements for vCF 

3: Nested Esxi Host Deployment & Configuration

4: Deploying Management Domain aka SDDC Bringup

5: Workload Domain Deployment

To delete a workload domain, login to SDDC Manager and navigate to Inventory > Workload Domains and from Action menu select “Delete Domain Read More

Building a VMware Cloud Foundation Lab: Part 5 – VI Workload Domain Deployment

In last post of this series we learnt the process of SDDC bringup aka Management Domain deployment. Also we verified we are able to login to SDDC manager. The management domain is integrated in SDDC manager by default during bringup process.

In this post I will walk through steps of deploying a Virtual Infrastructure Workload Domain. If you are new to vCF and wondering what a workload domain is, then in simpler words its resource cluster where end users will provision their vm’s.

If you are not following along this series, then I recommend reading earlier posts of this series from below links: Read More

Building a VMware Cloud Foundation Lab: Part 4 – SDDC Bringup

This is probably the most important post of this series. In this post we will learn how to bring up the SDDC i.e the Management Domain deployment.

Before we start the process we need to have the vCF 3.7.x cloud builder ova handy which can be downloaded from here

Cloud Builder deployment is pretty much straight forward.  Not covering the steps of deployment as nothing fancy there. Once the cloud builder vm boots up, open console of the vm to fetch the URL to access UI.

vcf-login.JPG

Download and Complete Deployment Parameter Sheet Read More

Building a VMware Cloud Foundation Lab: Part 3 – Esxi Host Deployment & Configuration

In last Post of this series, I talked about the DNS records and IP Pools that should be in place for a successful vCF deployment.

In this post I will walk through steps needed to create nested Esxi and post installation steps.

Before we plan to create nested Esxi hosts or physical, we need to identify the build/version of Esxi and other components that are compatible with a given vCF version. VMware KB-52520 help you identify this.

For vCF 3.7 please refer to below table for build number needed.  Read More

Building a VMware Cloud Foundation Lab: Part 2 – DNS and IP Pools

When you are planning for a vCF deployment, you need lot and lot of IP’s and DNS records. 

In my environment I have an AD integrated DNS running on MS 2012 R2.

If you are only planning on deploying the Management Workload Domain in your environment you only need to create the forward and reverse lookup records for Management Workload Domain. If Virtual Infrastructure Workload Domain will be introduced in future then you need to plan the DNS records accordingly.

Note: Please see this article for comprehensive list of DNS requirement for vCF deployment. Read More

Building a VMware Cloud Foundation Lab: Part 1 – Infra Preparation

Recently I got chance to do a nested vCF 3.5/3.7 deployment in my lab and it was a great learning. Few friends of mine reached out to me to know more about VMware Cloud Foundation product as a whole and how we can get our hands dirty on it. 

Through this series of articles, I want to share my experience with you on how to do a successful vCF 3.7 deployment in a nested environment.  

What is VMware Cloud Foundation (vCF)?

As per VMware official documentation

VMware Cloud Foundation is an integrated software stack that bundles compute virtualization (VMware vSphere), storage virtualization (VMware vSAN), network virtualization (VMware NSX), and cloud management and monitoring (VMware vRealize Suite) into a single platform that can be deployed on premises as a private cloud or run as a service within a public cloud. Read More

NSX Guest Introspection: Components & Configuration

What is NSX Guest  Introspection ?

VMware NSX Guest Introspection is a security feature which when enabled, offloads antivirus and anti-malware agent processing to a dedicated virtual appliance (service vm’s). 

When Guest Introspection is enabled on a cluster, it continuously update antivirus signatures, thus giving uninterrupted protection to the virtual machines running in that cluster. New virtual machines that are created (or existing virtual machines that went offline) are immediately protected with the most current antivirus signatures when they come online. Read More

Deleting Stubborn Interconnect Configuration in HCX

I had a working HCX setup in my lab and I was doing some modification in my setup and tried chopping off my interconnect networking configuration in HCX Cloud side. Deletion of interconnect configuration was failing for me with below error

hcx-pool-delete error.JPG

Let me first explain how I landed in this situation. 

I was deleting the interconnect appliances from my on-prem to show demo to my peers on how the interconnects are deployed via HCX plugin in vSphere webclient. During the demo I did not noticed that site pairing between my on-prem HCX and cloud side HCX was broken (due to vCenter upgrade in cloud side, cert mismatch issue occurred). Read More

Creating HCX Multi Site Service-Mesh for Hybrid Mobility

This is in continuation with my last post where I discussed about what is service mesh feature of HCX and how it works. In this post we will learn how to create service mesh.

As we discussed earlier that we need to have compute/network profiles created on both on-prem and cloud side.

The compute profile describes the infrastructure at the source and destination site and provides the placement details (Resource Pool, Datastore) where the virtual appliances should be placed during deployment and the networks to which they should connect. Read More