vBlogWare @virtuallyBlogging

vBlogWare @virtuallyBlogging

A VMware blog created to spread news, opinions, ideas and experiences

admin

Cloud Director Availability 4.3 Released

VMware Cloud Director Availability 4.3 is Generally Available now. Together with the newly branded logo, it brings a significant amount of new features and improvements for our VMware Cloud Providers to deliver even better DR and migration services to their tenants and offer an answer to combat Ransomware.

New features available:

  • Advanced Retention Rules – Now providers can set more than one rule for retention of the instances. Up to five different retention rules can store instances with a granularity that is changing over time. 
  • DR and Migration Plans – Orchestrate and schedule the recovery and the migration operations across multiple virtual machines and vApps by using plans with sequences of delayable and pausable steps, containing execution settings and existing virtual machines and vApps replications references.
  • 1-Minute Target Recovery Point Objective (RPO) – Now you can set the shortest RPO as 1 minute, by using the slider for RPO in Configure replication, in SLA profiles, or in replication policies. To meet shorter RPO, verify that you follow the recommendations for lowering the RPO violations occurrence and see https://docs.vmware.com/en/VMware-Cloud-Director-Availability/index.html. An I/O intensive workload protected with shorter RPO can cause RPO violations.
  • Multisite Cloud to Cloud authentication – When multiple Availability cloud sites use a single VMware Cloud Director instance now you can use multisite authentication for performing regular replication operations when prompted to extend the session from Availability site A to Availability site B.
  • On-Premises Authentication by Using a Token – With vCenter Server 7.0 or later, a new authentication mechanism for the on-premises tenants allows performing disaster recovery operations in the vSphere Client Plug-In that require authentication to the cloud site. When the organization uses an external identity provider, for example, SAML, the on-premises tenants can now use that method for authentication.
  • Add Virtual Machines in Existing vApp Groups – Now, you can group one or several new virtual machines to an already existing vApp replication from on-premises to the cloud.
  • Placement Policies – Now the system providers and their tenants can select a placement organization VDC compute policy for a specific cluster or host for the recovered virtual machine.
  • Optimized Reverse – When performing a reverse task, now skips performing a full synchronization back to the original source workload by transferring only the deltas when there are no blocks changed in the original source and the original source disks are not modified in any way.
  • Backup and Restore – Now you can perform an in-place restore on existing appliances. Also, now you can perform a restore on a single cloud appliance.
  • Select Endpoint Address for Each Network Adapter – Now in a Cloud Replicator Appliance or in a Cloud Tunnel Appliance with multiple network interfaces, you can specify which of the network adapters to use for local site communication.
  • Replacing the Cloud Service Certificate Without Impacting Paired On-Premises – Now the paired on-premises appliances verify the entire SSL certificate chain of the Cloud Service. As a result, when replacing the certificate with a valid CA-signed certificate, the paired on-premises appliances do not need re-pairing with the cloud site.
  • Tunnel Connectivity – The following new sections now are available for verifying the statuses of the connections from the local Tunnel Service to the following destinations: Local components connectivity to all the remaining services on the cloud appliances in the local cloud site; Remote cloud sites connectivity to the remote Tunnel Service instances in all paired remote cloud sites with the local cloud site; On-Prem Incoming connectivity to all paired on-premises appliances with the local cloud site.
  • Improved Replicating Workloads – Now on start virtual machine replication when VMware Cloud Director Availability encounters a virtual machine that is already configured for replication, possibly by another replication solution, the stale replication is automatically unconfigured first and then it is configured for replication.

VMware SASE

The VMware SASE Platform is the secure access service edge (SASE) platform that converges industry-leading cloud networking and cloud security to deliver flexibility, agility, security, and scale for enterprise of all sizes. The VMware SASE Platform is offered as-a-service, helping offload IT staff from deploying and maintaining WAN/security and saving enterprises operational costs.

Components

  • SD-WAN
  • Zero Trust Network Access
  • Cloud Web Security
  • AIOPs

VMware Products

  • VMware SASE Platform
  • VMware SD-WAN
  • VMware Secure Access
  • VMware Edge Network Intelligence
  • Workspace One

Benefits

SASE secures the newly distributed workforce and network edge so people, apps and devices can communicate from anywhere. The VMware SASE advantage is a unified edge and cloud service model with a single place to manage business policy, configuration, and monitoring.

  • Cloud-First – Simplifies and provides cost-effective connectivity to SaaS-based applications
  • Intrinsic Security – Unifies network and application security policies for branch and remote workers
  • Application Quality Assurance – Ensures availability and performance of mission critical applications
  • Operational Simplicity – Lowers operational expenses

vRealize Log Insight Cloud New Release

A new Log Insight Cloud has been released with the following new features:

  • Alerts and notifications – now it is possible to customize an alert definition to include extracted fields from logs in the alert title and description. When triggered, the alert sends out a notification to the configured endpoints (email and webhook).
  • Azure Network Watcher Content Pack – A Network Security Group (NSG) contains security rules that allow or deny inbound network traffic to, or outbound network traffic from several types of Azure resources. This content pack is enhanced to support NSG logs and include dashboards that provide insights around the network activity to and from your NSGs.

vRealize Log Insight Cloud is also now integrated with the VMware Subscription Manager, so it can be tried and bought within minutes.

If you didn’t get a chance to virtually attend VMworld 2021, please check these sessions:

  • Troubleshooting with vRealize Operations and vRealize Log Insight [MCL1286]
  • Log Insight Cloud – a SaaS version of Log Insight [ISM-HOL-2201-96-ISM]
  • vRealize Log Insight Cloud – A Year in Review [2824]

VMworld 2021 Key Announcements

It has been a very busy year and, sadly, I didn’t had lot of time to write here. But with VMworld 2021 recently finished, lot of new things have appeared and I will talk about the key announcements.

Project Arctic

Project Artic, currently on a Tech Preview, has the main goal to bring hybrid cloud to customers existing vSphere deployment model. It integrates cloud connectivity right into vSphere and establishes hybrid cloud as the default operating model for all customers infrastructures. They will be able to leverage unlimited cloud capacity on demand and access VMware cloud services through vCenter.

Project Cascade

Projects Cascade aims to provide a unified interface for on-demand infrastructure and containers across VMware Cloud platforms from a single API or GUI. It will address the needs of developers and DevOps in a multi-cloud world and will enable a true open multi-cloud with an industry standard programmatic interface that is powered by Kubernetes.

Project Capitola

Project Capitola is an exciting step in the evolution of vSphere to meet the growing memory needs of the next generation of applications. It is a software-defined memory implementation that will aggregate tiers of different memory types such as DRAM, PMEM, NVMe and other future technologies in a cost-effective manner, to deliver a uniform consumption model that is transparent to applications. With the growing need to process and consume massive amounts of data, the memory subsystem of the data center continues to be a bottleneck, impacting performance.

Project Ensemble

Another new project, another Tech Preview. Project Ensemble will simplify and accelerate your journey to multi-cloud by uniting the different personas in an application-centric collaborative user interface. Project Ensemble will unify and strengthen our best-in-class multi-cloud management capabilities and support a cloud operating model for customers at any stage of their cloud transformation.

A cloud operating model combines people, process and technology and provides an operational framework for key decisions on where your applications need to live, how to help them perform and be more secure, and how to optimize the efficiency of these environments and your overall cloud budget. This model allows for more easily adopting new clouds and managing existing clouds with the same staff, tools, and governance policies. vRealize Cloud Management supports the cloud operating model and support private, public, multi-, hybrid and edge clouds in any combination.

Project Ensemble takes an app-centric view of your clouds, but also focuses on how different personas, such as cloud providers and cloud consumers, in your organization interact with those applications. This will be driven by a user experience customized by learning users’ needs made possible with machine learning.

VMware Sovereign Cloud Iniciative

As organizations become increasingly global and interconnected, issues surrounding data privacy have become more complex. 

A company may be based in France, but it may leverage the tools of U.S.-based companies like Google or Amazon to store and transmit sensitive data. If that France-based company stores customer information on a server that happens to be based in the U.S., where does that data really reside, who owns it, and what regulations should it be subject to? 

Many countries and regions are taking a firm stance to create guidelines around those questions in order to protect private data. With regulations like the European Union’s General Data Protection Regulation (GDPR) setting the bar for data privacy protection, it’s more important than ever for companies to proactively safeguard their sensitive customer and employee data, everywhere it’s stored and shared.

VMware’s Sovereign Cloud initiative is a global collection of cloud provider partners who are addressing the ESG values in many ways, but particularly the “G” for Governance with their approach to sovereignty.  

Sovereign cloud providers are committed to ensuring data privacy and compliance, helping customers get the benefits of cloud whilst also meeting the rapidly growing and changing data privacy laws. These national or regional regulations and laws govern everything from where data resides geographically to cross-border data flow. Moreover, organizations need to protect data in the cloud against evolving cyberattacks. Sovereign cloud providers ensure that data sovereignty, data residency, data access, jurisdiction, control, and much more are met with the assurance that customer’s most sensitive data is managed securely. VMware Sovereign Cloud partners deliver Cloud Verified services and utilize architecture built on VMware Validated Designs (VVD) for Cloud Providers, this means they can design, architect and secure compliant clouds faster and efficiently.

VMware Flings – Horizon Session Recording

For my first post of 2021, I decided to talk about a very interesting fling, called Horizon Session Recording.

This fling allows administrators of a VMware Horizon environment to record their users activity in their Blast Extreme virtual desktop and application sessions. Recordings are uploaded from the agent devices to the central web service, for central storage and ease of viewing.

The Session Recordings are stored as MP4 files for watching via the web console or downloading to play in a local player.


VMware vCloud Usage Meter 4.3 Released!

vCloud Usage Meter version 4.3 has been released. Usage Meter has moved from a on-prem inly to a SaaS+Agent architecture.

VMware vCloud Usage Metere 4.3 is now available!

With this improvement, partners no longer need to update Usage Meter if program changes happen and also don’t need anymore to perform data retention for compliance purposes, because all usage data is stored in the SaaS service.

Usage Meter 4.3 now meets feature parity with UM 3.6.1, so partners can migrate to the latest version without issue! Partners will need to deploy a whole new appliance one last time, but once you are on UM 4.X you can do in-place upgrades going forward.

Now with that version, Usage Meter supports also the following products: NSX-T, vRealize Network Insight, vSphere with Kubernetes, SDDC Manager and VMware Cloud Foundation.

Download here!

VMware vSphere 7.0 Update 1 Released!

Today has been released the new version of vSphere, with a lot of bugs fixed and some new features:

  • More options of vSphere with Tanzu;
  • vSphere Lifecycle Operations – includes installation and configuration of NSX-T;
  • vCenter Connect;
  • vSphere ideas;
  • Cluster scale enhancements – up to 96 hosts per cluster;
  • New monster VMs limits – up to 768 vCPU and 24TB vRAM.

Please check Release Notes!

New VMware Flings

Horizon Reach is a web based, monitoring and alerting fling for VMware Horizon On Prem deployments. Horizon Reach is designed to tackle the disconnect in Enterprise environments wherein each Pod in a Cloud Pod Architecture is its own technology domain and fault domain, or a customer is running multiple, disconnected pods, outside of a Cloud Pod Architecture, but would still like to treat them all as one unit of compute.

The vCenter Plugin for vRealize Network Insight brings relevant information from Network Insight, directly into vCenter. It allows the virtual infrastructure admins to view networking focused data and statistics in the same interface as where they manage their workloads, without having to have 2 interfaces open. Additionally, this plugin also helps add vCenter as a data source to Network Insight and set up incoming network flows.

  • Summary view of vCenter activity: VMs, vMotions, and snapshots.
  • Bring in network information directly to vCenter, such as:
    • Summary view of how network traffic behaves; how much east-west and how much internet traffic there is.
    • Health check violation for the vCenter and attached NSX environments
    • Network top talkers, grouped by VMs, Cluster, L2 Network, Subnet, Security Group, Source-Destination Pair, Source & Destination Subnet, Source & Destination IPs.
    • Most used networks
    • New Virtual Machines that are accessing the internet
    • o Top 5 Hosts or Networks that are experiencing the most packet loss
  • Links to the vRealize Network Insight interface shows the source data and allows you to look closer, apply filters, export information, and more.
  • Configure vCenter as a data source and configure NetFlow on the available vSphere Distributed Switches.

Horizon Reach
vCenter Plugin for vRealize Network Insight

vSphere Assessment Tool

vSphere Assessment Tool, the new VMware Assessment tool has been released last year, to make vSphere upgrades easier.

This tool is made of two components, a desktop client which is responsible for collecting the vSphere data, and an online portal that provides the most up to date information on hardware compatibility, everything on a user-friendly format.

On the portal, the summary view provides a breakdown of the different editions of vSphere in your estate and provides insight into which hosts are at risk of unsupported versions of vSphere. The host details panel displays information on the current vSphere version, server model, network and storage adapters. Each vSphere version and hardware component indicates if support has been verified.

Check the vSAT walkthrough:

vSAT WalkThrough