This post is a part of my NSX SD-WAN by VeloCloud series to dive deeper into the acquisition of VeloCloud by VMware, late last year. I’ve had the privilege to play around with the virtual appliance for a couple of months with a physical appliance on the way. Expect more details in this series. 🙂
The upcoming chapters are building up the components that are in the VeloCloud portfolio and the components that you need to know.
An Edge Appliance is a physical or virtual appliance which is in the data path of your network traffic. It typically … Read more
Almost any organization that I’ve had the pleasure of talking with, uses Git either for code repositories where their developers work or for doing version control on their infrastructure systems. Git is an excellent version control tool and is widely used for both developers and also infrastructure configuration. This post goes into how to put the VMware NSX configuration into version control using Git.
Not all infrastructure components (server systems, network devices, etc) have a proper audit log on what happens in the configuration and who is doing what exactly. This is where version control can lend a helping hand … Read more
There was a line in the NSX 6.4 release notes that caught my eye: “Support for BGP and static routing over GRE tunnels.” – First thought was “awesome, dynamic routing over a VPN”. But then I realized that that GRE tunnel in itself is a new feature as well, which the release notes don’t really mention. The VMware Docs website also doesn’t mention anything about it.
After a bit of digging, it appears that this feature has been added primarily to support the VMware on AWS architecture and connectivity towards that platform. But that doesn’t mean us mortals can’t use … Read more
This is the second post in a series on how to use PowervRNI to manage Applications within your vRealize Network Insight environment. If you’d like to learn about managing Data Sources with PowervRNI, check here.
Introduced in vRealize Network Insight 3.2 in the begin of 2017, Applications are logical containers which can contain the structure of applications (including tiering). You can use these application containers to better visualize what network flows are going between specific applications or even application tiers. Next to insights into your applications, you can also use it to take a per-application approach to micro-segmentation, … Read more
Just as the title says, NSX-v 6.4 has just dropped. I my opinion, they should’ve called it NSX-v 7.0 though, considering the amount of new and cool stuff that is in there. I’ll go through the most prolific new and shiny features below.
Distributed Firewall Layer 7 Functionality – App ID
Traditionally the DFW could handle layer 2 to layer 4 rules. With NSX 6.4, there is some layer 7 functionality which becomes available. This is done by pushing a new VIB to ESXi hosts which looks inside the traffic flows. This new module will recognise App ID inside network … Read more
NSX Manager has a backup and restore functionality. That process creates a backup of the entire NSX fabric and puts that backup on a remote (s)FTP server. All configuration is available within that backup, the Edge configuration is not separate. Being a good IT-citizen, of course the backup is one of the configurations you do during the installation, so you always have a backup available.
I have a couple points for this post:
- You can restore a NSX Manager backup non-disruptively (*),
- When you restore a NSX Manager backup, existing NSX Edges are not effected and continue to operate,
… Read more
VMware NSX 6.3.5 was released last week. This is a maintenance release and addresses 32 issues in previous versions. You can find the release notes here.
One thing caught my eye which is a very welcome addition to 6.3.5;
- Host prep now has troubleshooting enhancements, including additional information for “not ready” errors
As the release notes don’t go into detail what that exactly means, I did some digging. From 6.3.5 and above, the NSX UI will now show the failure messages from EAM when the host preparation fails. For instance, you’ll see if the communication between EAM and the … Read more