Page 2 of 22

Storing the VMware NSX config in version control

Almost any organization that I’ve had the pleasure of talking with, uses Git either for code repositories where their developers work or for doing version control on their infrastructure systems. Git is an excellent version control tool and is widely used for both developers and also infrastructure configuration. This post goes into how to put the VMware NSX configuration into version control using Git.

Not all infrastructure components (server systems, network devices, etc) have a proper audit log on what happens in the configuration and who is doing what exactly. This is where version control can lend a helping hand … Read more

Doing Dual ISP Load Balancing with Ubiquiti EdgeRouter

Ever since I moved to a new house, I’ve been stuck to a pretty bad ISP. With no fiber, a few kilometers away from the DSL termination pop (so a max of 10Mbit on ADSL), it just leaves cable. Speeds aren’t terrible, I get a 400Mbit line for E 60,- p/m. Latency spikes and jitter are horrible, but that can be expected on a cable network. Especially fun when doing internet calls. 😉

All in all, I haven’t been enjoying my internet connection for a while and I wanted to do something about it.

Dual Connection

After dismissing the thought … Read more

VMware NSX & OTRS – Automating Security with Help Desk Systems

Over the last couple of months, Sander, Anne Jan and I have been working on a security whitepaper that lays out a practical implementation of zero trust while interfacing with a helpdesk system. In this case, OTRS.

It’s all about how engineers can get access to servers to perform maintenance, once your environment is properly micro-segmented. This whitepaper talks about the challenges you have when you’re micro-segmented and how you can resolve these challenges. Using OTRS as an example, this document lays out how to configure a help desk system like OTRS to interface with NSX to gain network … Read more

Deploying VeloCloud on VMware vSphere

Hopefully you’ve heard the good news that VMware has acquired VeloCloud, including SD-WAN into the software-defined portfolio. This is especially exciting to me, as I get to branch out a little more into the WAN space, being in the Networking & Security BU. For me, it also means NEW TOYS! 🙂

VeloCloud primarily runs on hardware in a few flavors (no software without hardware), but they also have a VM form factor (which I’m sure will get extra attention in the future). I managed to get a hold of an OVA to run in my lab. While you … Read more

PowervRNI is now on PowerShell Gallery

PowerShell is about making things easy and consumable. Same goes for PowervRNI, making repetitive tasks in vRealize Network Insight easier and make it possible to extract information from vRNI.

It’s not that easy to load a custom module into PowerShell though, you have to download 1 or 2 files, then load it into your PowerShell session by referencing those local files. The PowerShell Gallery is a pretty awesome way to also make module management very easy. All you have to do is use the Install-Module command and it downloads and installs the module for you.

For the module authors, … Read more

GRE Tunnels & Dynamic Routing in NSX 6.4

There was a line in the NSX 6.4 release notes that caught my eye: “Support for BGP and static routing over GRE tunnels.” – First thought was “awesome, dynamic routing over a VPN”. But then I realized that that GRE tunnel in itself is a new feature as well, which the release notes don’t really mention. The VMware Docs website also doesn’t mention anything about it.

After a bit of digging, it appears that this feature has been added primarily to support the VMware on AWS architecture and connectivity towards that platform. But that doesn’t mean us mortals can’t use … Read more

Using PowervRNI to Quickly Add Applications

This is the second post in a series on how to use PowervRNI to manage Applications within your vRealize Network Insight environment. If you’d like to learn about managing Data Sources with PowervRNI, check here.

Applications

Introduced in vRealize Network Insight 3.2 in the begin of 2017, Applications are logical containers which can contain the structure of applications (including tiering). You can use these application containers to better visualize what network flows are going between specific applications or even application tiers. Next to insights into your applications, you can also use it to take a per-application approach to micro-segmentation, … Read more

© 2018 Lostdomain

Theme by Anders NorénUp ↑