Virtualisation | TheSaffaGeek

October 13, 2014
by Gregg Robertson Leave a comment

VMworld Day 0 – Partner Day

VMworld officially only starts tomorrow for most attendees but for those that are partners there is partner day where VMware done a number of sessions for their partners to allow them to understand the roadmap and the solutions on the roadmap.

I flew in yesterday so that I was ready for partner day and also to attend the vRockstar party which has become an annual event on the Sunday night at the hard rock cafe before VMworld and is the only party that really happens on Sunday. I have attended for the last two years and this year they got the upper section booked out which was certainly cooler on the much more humid and hot Barcelona nights (compared to the UK in my case). The vRockstar party was sponsored by Cisco , EMC , VMUG and Nutanix which enabled us to have some champagne on arrival and then beers for the remainder of the night, so a big thanks to all the sponsors and thanks to the organisers Patrick Redknap, Marco Broeken, Robert Payne and Hans De Leenheer.

The remainder of my day was spent chatting to fellow vExperts and bloggers at the bloggers table and providing moral support to the vBrownbag crew (Alastair had it all done before I arrived). The vBrownbag TechTalks kick off tomorrow and just like it was in San Francisco we will be streaming it live as well as recording them so please tune in and we promise to try get the audio clearer this time. If you are at the conference then come watch them as they are happening in hall 7 near the bloggers table and across from the general session hall.

My night will be spent at an exclusive VMworld drinks reception hosted by TD Azlan and then I will be attending the PernixData party held at an amazing venue on the Barcelona shorefront who are one of Xtravirt’s partners. I’m looking forward to all the announcements tomorrow and the reason i spent so much time at the bloggers table was scheduling a number of blogs around these announcements so keep an eye on my blog tomorrow.

Also don’t forget to sign up for the Xtravirt SONAR beta bit.ly/1sjutrX .

August 25, 2014
by Gregg Robertson 2 Comments

#VMworld Announcement #1 VMware EVO:RAIL – What is it?

At VMworld US this morning VMware will announce numerous new solutions and one of these will be VMware EVO: RAIL I mean MARVIN I mean VMware EVO: RAIL, but what is it and what does it do. Below is a high level overview of the solution. Make sure you also watch the live keynote to learn more.

Introducing VMware EVO: RAIL

VMware EVO: RAIL™ combines compute, networking, and storage resources into a hyper-converged infrastructure appliance to create a simple, easy to deploy, all-in-one solution offered by VMware qualified partners.

Simplicity Transformed

EVO: RAIL enables power-on to VM creation in minutes, radically easy VM deployment, one-click non-disruptive patch and upgrades, simplified management…you get the idea.

Software-Defined Building Block

EVO: RAIL is a scalable Software-Defined Data Center (SDDC) building block that delivers compute, networking, storage, and management to empower private/hybrid-cloud, end-user computing, test/dev, and branch office environments.

Trusted Foundation

Building on the proven technology of VMware vSphere®, vCenter Server™, and VMware Virtual SAN™, EVO: RAIL delivers the first hyper-converged infrastructure appliance 100% powered by VMware software.

Highly Resilient by Design

Resilient appliance design starting with four independent hosts and a distributed Virtual SAN datastore ensures zero application downtime during planned maintenance or during disk, network, or host failures.

Infrastructure at the Speed of Innovation

Meet accelerating business demands by simplifying infrastructure design with predictable sizing and scaling,by streamlining purchase and deployment with a single appliance SKU, and by reducing CapEx and OpEx.

Freedom of Choice

EVO: RAIL is delivered as a complete appliance solution with hardware, software, and support through leading
systems vendors; customers choose their preferred brand.

Hardware

VMware is not entering the hardware market. The EVO: RAIL software bundle is available to qualifying EVO:RAIL partners. The partner, in turn, sells the hardware with integrated EVO: RAIL software, and provides all hardware and software support to customers.

Appliance

Each EVO: RAIL appliance has four independent nodes with dedicated computer, network, and storage resources and dual, redundant power supplies.

Nodes

Each of the four EVO: RAIL nodes have:

Two Intel E5-2620v2 six-core CPUs
192GB of memory
One SLC SATADOM or SAS HDD for the ESXi™ boot device
Three SAS 10K RPM 1.2TB HDD for the VMware Virtual SAN™ datastore
One 400GB MLC enterprise-grade SSD for read/write cache
One Virtual SAN-certified pass-through disk controller
Two 10GbE NIC ports (configured for either 10GBase-T or SFP+ connections)
One 1GbE IPMI port for remote (out-of-band) management

Fault Tolerance and Reliability

Each EVO: RAIL appliance has the following hardware components and reliability features:

Four ESXi hosts in a single appliance enables resiliency for hardware failures or maintenance
Two fully redundant power supplies
Redundant 2 x 10GbE NIC ports per node for all communication
ESXi boot device, HDDs, and SSD are all enterprise-grade

Automatic Scale-Out

EVO: RAIL Version 1.0 can scale out to four appliances – for a total of 16 ESXi hosts, 1 Virtual SAN datastore backed by a single vCenter Server and EVO: RAIL instance. EVO: RAIL handles deployment, configuration, and management, allowing the compute capacity and the Virtual SAN datastore to grow automatically. New appliances are automatically discovered and easily added to an EVO: RAIL cluster with a few mouse clicks.

Software

EVO: RAIL delivers the first hyper-converged infrastructure appliance 100% powered by VMware’s proven suite of core products. The EVO: RAIL software bundle is fully loaded onto the EVO: RAIL qualified partner’s hardware.
This software bundle is comprised of:

EVO: RAIL Deployment, Configuration, and Management
VMware vSphere® Enterprise Plus, including ESXi for compute
Virtual SAN for storage
vCenter Server™
vCenter Log Insight™

EVO: RAIL is optimized for the new VMware user as well as for experienced administrators. Minimal IT experience is required to deploy, configure, and manage EVO: RAIL, allowing it to be used where there is limited or no IT staff on-site. As EVO: RAIL utilizes VMware’s core products, administrators can apply existing VMware knowledge,
best practices, and processes.

EVO: RAIL leverages the same database as vCenter Server, so any changes in EVO: RAIL configuration and management are also reflected in vCenter Server and vice-versa.

Compute, Networking, Storage, and Management

EVO: RAIL Compute

Virtual Machine Density

EVO: RAIL is sized to run approximately 100 average-sized, general-purpose, data center VMs. Actual capacity varies by VM size and workload. There are no restrictions on application type. EVO: RAIL supports any application that a customer would run on vSphere.
General-purpose VM profile: 2 vCPU, 4GB vMEM, 60GB of vDisk, with redundancy
EVO: RAIL is optimized for VMware Horizon® View with configuration options that allow up to 250 View VMs on a single EVO: RAIL appliance. Actual capacity varies by desktop size and workload.
Horizon View virtual desktop profile: 2vCPU, 2GB vMEM, 32GB vDisk linked clones

EVO: RAIL Network

Connections

Each node in EVO: RAIL has two 10GbE network ports. Each port must be connected to a 10GbE top-of-rack switch that has IPv4 and IPv6 multicast enabled.
Remote/lights out management is available on each node through a 1GbE IPMI port that can connect to a management network. NOTE: In some configurations, there may be additional 1GbE ports that are covered and disabled.

Traffic

EVO: RAIL supports four types of traffic: Management, vSphere vMotion®, Virtual SAN, and Virtual Machine.Traffic isolation on separate VLANs is recommended for vSphere vMotion, Virtual SAN, and VMs. EVO: RAIL
Version 1.0 does not put management traffic on a VLAN.
IPv4 and IPv6 multicast must be enabled on the top-of-rack switch(es). EVO: RAIL’s automated scale-out feature uses IPv6. (It is not required for your complete network to support IPv6.)
VLANs are not required when customizing a EVO: RAIL configuration; however, they are highly recommended.When using the Just Go! option, it is assumed VLANs are configured.

EVO: RAIL Storage

EVO: RAIL creates a single Virtual SAN datastore from all local HDDs on each ESXi host in a EVO: RAIL cluster. Virtual SAN read caching and write buffering uses SSD capacity. Total storage capacity is 16TB per EVO: RAIL appliance:

14.4TB HDD capacity (approximately 13TB usable) per appliance, allocated to the Virtual SAN datastore for virtual machines
1.6TB SSD capacity per appliance for read/write cache
Size of pre-provisioned management VM: 30GB

EVO: RAIL Management

EVO: RAIL enables deployment, configuration, and management through a new, intuitive HTML5-based user interface showcased in the next section. EVO: RAIL provides new non-disruptive updates for VMware software with zero downtime and automatic scale-out of EVO: RAIL appliances.

User Interface

Configuration Screenshots

Below are a few configuration screenshots showing how intuitive and easy it is to configure EVO:RAIL.

Use Cases

Below are some of the use cases for EVO:RAIL.

Make sure you watch the live VMworld keynote to learn more.

August 5, 2014
by Gregg Robertson Leave a comment

VCDX Spotlight: Joseph Griffiths

Name: Joseph Griffiths

Twitter Handle: @Gortees

Blog URL: http://blog.jgriffiths.org

Current Employer : IBM

VCDX #: 143

How did you get into using VMware?

I came into IT when virtualization was just getting started. The more time I spent on call in the middle of the night the more I became motivated to find solutions. Application clustering was too costly for the developers and no business unit would agreed to it. Then came VMware it provided a live solution to hardware failures and great manageability benefits. At first chance I encouraged a proof of concept using VMware. Within the next two years we were 90% virtualized.

What made you decide to do the VCDX?

At some point every technical person is faced with the choice to specialize in their field. When I looked at my possible options I was faced with some tough options. I have to choose between operating systems (Linux), Storage or virtualization. It was the same year I had the opportunity to attend my first VMworld (2012). While attending the conference I really enjoyed being surrounded by such a great eco system and company. I was able to have some great technical discussions with people and I love the conference. It became clear to me that I wanted to specialize in VMware. I needed to learn a lot more about VMware. I have always found that certifications make me learn with purpose so I started setting certification goals for myself. Since I had been in a technical role the VCAP-DCA made sense. Once I passed that test I just kept going.

How long did it take you to complete the whole VCDX journey?

I got a VCP5 on Feb 2012. The certification journey really started with VMworld 2013 when I passed the VCAP-DCA and IaaS exams. This was followed up by the VCAP-DCD in Oct. 2013. I started on the VCDX on January of 2014 and submitted the design May 2014. The VCDX is not really a destination it’s really about becoming something not achieving it. I feel that my life’s experiences from a young child are part of my VCDX journey. I spent two years as a missionary for my church knocking on doors in Michigan. I like to think that really prepared me to stand my ground in a design defence better than any mock defence ever could. At the same time I feel like I am still trying to become a VCDX, I have a lot to learn.

What advice would you give to people thinking of pursuing the VCDX accreditation?

I have lots of advice and there is a write up on my blog (poorly written). The three largest pieces of advice I can give are the following:

Don’t kill yourself, set goals and keep them but keep balance don’t sacrifice the world for a cert. Lots of people think they are going to get it done by pulling all nighters… don’t it’s not going to end well.
Your design does not have to be perfect.. it’s not about perfect, nothing is perfect.
The key to school is figuring out what the teacher wants… read the blue print figure out what the teacher wants and do it… don’t try to outsmart the teacher.
Find a format for your documentation and stick with it.

If you could do the whole VCDX journey again what would you do differently?

Spend less time trying to figure out the format and more time on content.

Life after the VCDX? How did your company respond? Was it worth it?

LOL… well I switched jobs the week before my VCDX defence so the new employer was happy. I am still getting used to life after and a new job. Was the VCDX worth it? Yes, in fact even if I had not got the VCDX it was worth it. I learned so much about design… preparing for the VCDX forced me to learn more in six months than the last two years. If your desire to become a VCDX is purely in order to get a new job or more money you may not be on the right path.

What is next for you?

Great question. More certifications just don’t tell my wife… I already have the VCP-Cloud and I just finished a massive vCloud project and I am moving into a VCAC and NSX project so VCDX-Cloud might be in the future. Short term I think it’s time for a CCNA to help smooth over a rough bit in my knowledge.

July 31, 2014
by Gregg Robertson Leave a comment

VMworld US 2014 – The Calm Before the vStorm

For several years I have been very fortunate to attend VMworld Europe either via my company paying for the trip or in the case of last year, being able to attend as part of the vBrownbag crew and I’m very pleased to say that I will be attending this years VMworld US via the welcomed sponsorships of the vBrownbag sponsors (VMTurbo , Cisco , Brocade ,Infinio and Coho Data) for the TechTalks. Due to going as part of the vBrownbag crew VMware were gracious enough to give me a bloggers pass to cover my conference entrance fee and when I am not helping with the TechTalks or the VMunderground Open Acts i plan to blogging and tweeting away. But I am not only looking forward to going just for these reasons (certainly they are amazing enough reasons) but for several others and so I thought I would put out the reasons I’m looking forward to VMworld US and why if you haven’t booked to attend yet then why I would HIGHLY encourage you to register.

Social

I know what you are thinking and yes there certainly are some amazing parties and there are people who sadly take it as a jolly rather than experiencing the conference but the social I am referring to is social media as well as actual human interaction with like minded people. I am sure a number of people are like me where we sit behind a computer for countless hours,then sit on our phone or tablet tweeting away to people about the latest virtualisation or related technology but have never actually met these people. In fact most of the people you tweet with are actually on the opposite side of the world but their blog posting/communities response/book/podcast/webinar or twitter response to a question you posted saved you countless hours of work or helped you get that new role or certification. Well VMworld is the perfect place to meet these people and thank them for their help, get your book signed by the author or throw the book at them if they were wrong (physical violence no matter how funny it may be from afar isn’t the answer…most of the time). This also allows you to talk about how cool the new features in vSphere 6.0 are and not get that placating nod your wife/girlfriend (husband/boyfriend for those super vWoman in the community) gives you when you get excited about it. For me the interaction and friendships I have had and made from VMworld conferences have sometimes been the best part as being able to chat to the person who wrote the book on VSAN/PowerCLI/VMware Networking for example is worth the conference fee in itself.

Sessions/Labs

The sessions,labs and announcements are brilliant and the only reason I chose social first is due to it being something not that many people think about. The sessions and labs are amazing and even though you can watch almost all the sessions (breakouts aren’t recorded) and do all the labs now via labs.hol.vmware.com ,being able to attend the sessions for the week and hear about all the great new features and how people have taken the solutions provided by VMware and met their companies or customers requirements with them without being bothered by home life or work is an amazing learning experience. The same applies to the Hands on Labs where you can take the labs and skill up on the most recent technologies or even older ones that you might not have had the time to learn up until now. There are sessions for everyone as there are sessions where they are entry level for those people just getting into VMware technologies to advanced sessions where it is VMware engineers or product teams talking about the knitty gritty of the solutions. There are also loads of panel sessions ranging from meet the vExpert bloggers panel sessions to VCDX panel sessions where you can ask questions and learn from top vBloggers and or ask all those questions about the VCDX or the pre-requisites exams from those who have done it. If you are working for a VMware partner there is a partner day where as you guessed it, it is exclusively for partners and VMware will do sessions covering all the technologies and how they are working to make it better for partners or those selling their solutions.

TechTalks

Ok I’m probably very biased but the vBrownbag crew along with the help of our sponsors run the TechTalks from the community area where people who may not have had their sessions accepted to present at VMworld (this is not a reflection on the quality I can assure you) present about numerous different topics (no sales pitches) for ten minutes and they are streamed as well as recorded. The TechTalks have been a major success with loads of people watching the live stream, a very large number of views of the recordings and we also have a very good amount of live audience watching them. The schedule for the TechTalks is due out imminently and from having seen some of the amazing names on the list it will not disappoint.

Solutions Exchange

The solutions exchange is where all the vendors including sponsors have their stalls/booths where you can talk to them about their latest release, speak to some of their top people around possibly solutions you are looking to implement or need help fixing and even go to the VMware Expert bar. The Expert bar allows you to talk to the best people for each VMware technology and hear and see what all the new solutions from VMware can do for your business. As you would expect there are loads of freebies and competitions from all the vendors and this is the place where you can hear about that new technology and then be able to drop it in a conversation with your boss to show how on the ball you really are.

vmworld12-solutions exchange.png

General

There are also numerous activities that fall under the general banner like the VMworld party which last year had Train and Imagine dragons performing at the AT&T Park and three years ago were the Killers. There are also a number of vendor parties, parties exclusively for VCDX/vExperts and vendor excursions (brewery tours etc.) . The parties and meet ups in the evenings are amazing and if you have some self restraint and make sure you answer your phone when the wife calls, you can have an amazing time and still get the most out of the conference during the day. These are also a really great place to make new friends and even speak to some of the top names in the industry and realise they are 9 out of ten times really humble and friendly people.

If your significant other wishes to join you then there is spousetivities run by Crystal Lowe where vWidows/ partners of conference attendees can do day excursions.

Register Now!

If you haven’t registered for VMworld then I would highly recommend doing so here as it is well worth attending and if you need to justify it to your boss then why not use the VMworld letter for that. If you are attending then I would love to meet you and have a beverage with you or just chat tech. I will most likely be wearing one of my vExpert shirts or hanging around with the vBrownbag crew.

I am also planning to blog about a number of the announcements from VMworld so keep an eye out on my blog for those Smile

Gregg

June 30, 2014
by Gregg Robertson Leave a comment

VCAP-CID Objective 1.5 – Determine Security and Compliance Requirements for a Conceptual Design

Knowledge

Identify relevant industry security standards.

For security standards there are a few and for these they are normally for government,finance,military and telecommunications. There are a few standards each of these keep to and they largely overlap into the next point of compliancy. For example here in the United Kingdom there are a few cloud vendors who run community clouds where they assure they meet business impact levels and each of these levels determines the requirements for protection. A really good article straight from the UK government is here where information security is defined based on a number of criteria. A lot of government and military companies keep data in IL2 or IL3 and vSphere 4.0 and 4.1 were actually verified to meet IL3 compliancy. Recently they are still EAL4+ and FISMA certified.
For your conceptual design you will need to know what abstraction is required based on whatever the relevant security standard is and most likely have to sit down with the compliancy officer and determine what they feel is required for them to approve your solution meets their security standards.

Identify relevant industry compliance standards.

There are a number of compliance standards that are used from various companies who process credit cards, hospitals who keep peoples personal data to companies who have to keep to specific regulations. There are a number of these and some are only applicable in specific countries but the ones I think are the most likely to be seen in a vCloud environment are:
- Sarbanes-Oxley
- Health Insurance Portability and Accountability Act (HIPAA)
- Federal Financial Institutions Examination Council (FFIEC)
- Payment Card Industry Data Security Standard (PCI DSS)
- International Organization for Standardization (ISO) 17799
- National Institute of Standards and Technology (NIST)
- International Organization for Standardization (ISO) 27001
A really great example of this is the Architecture Design Guide for Payment Card Industry (PCI) document by VMware. This is PERFECT in showing the kinds of things you need to keep in mind and the varying mechanisms to achieve this. The document goes much deeper than conceptual but seeing as you will have to go from conceptual to logical and then to physical it makes sense to learn it now.
Another great document by VMware that is mentioned on the blueprint is the Infrastructure Security: Getting to the Bottom of Compliance in the Cloud document.

Explain vCloud security capabilities.

This along with the two points above are covered perfectly in appendix B of the vCAT Architecting a VMware vCloud pdf. For the conceptual design this is more around isolation and multi-tenancy but the whole of appendix B gives a great break down of the kinds of security that is possible within vCloud and the mechanisms and products that can be used to achieve this.

Identify the auditing capabilities of vCloud technologies.

This is the vast mechanisms such as logging,log retention, syslog shipping and firewall logging via vCNS to name but a few that are possible via vCloud. Appendix B of the vCAT covers these off really well and the retention policies mentioned in the Architecture Design Guide for Payment Card Industry (PCI) document cover off the kinds of auditing you may be requested to do. For conceptual this isn’t very applicable and I’m amazed it is actually mentioned here.

Skills and Abilities

Based on customer requirements, determine auditing requirements for a vCloud conceptual design.

These would be determined in design workshops and discussions with different subject matter experts within the customer around what they are looking to audit/log and if there are any compliancy standards they needs to meet. If they are a service provider who provides public cloud to the general public then there is a very good chance they have to meet PCI compliancy for example and so retain logs and do auditing to ensure security and allow retrospective inspection. For a conceptual design auditing isn’t something you would put in your “napkin” design but knowing if you need additional auditing does mean you have to design to be prepared for this in the logical and physical designs.

Based on customer requirements, determine security requirements for a vCloud conceptual design.

A large portion of this is the same as above as with security requirements around compliancy includes auditing also. For example if it is a private cloud that is being designed but it is for a hospital, then HIPAA standards need to be met and so certain security measures need to be applied. For conceptual this is mainly around separation, defence in depth and usage of two factor authentication to name a few off my head. How different zones within the cloud offering are separated and secured also need to be planned for and conceptually designed.

Based on customer requirements and vShield Edge security capabilities, determine the impact to a vCloud conceptual design.

For this you need to know what vShield Edge is capable of doing and in what use cases each of these would be used. A perfect document that describes this is the vShield Edge Design Guide Whitepaper. The actual impact to a conceptual design is mainly that vShield Edge allows isolated virtual datacentre’s hosted on a common physical infrastructure instead of needing siloed physical infrastructures. The separation via the vShield Edge firewall is in most cases more than sufficient but knowing where physical separation is required (PCI for example) is also very important.
vShield Edge also provides IPSec VPN capabilities which are very important for the security of your cloud infrastructure. Knowing that the vShield edge can provide this along with NAT,Load balancing and most importantly for this section firewall capabilities via one device means you don’t need multiple devices like in a traditional multitenant design.

Explain the logging capabilities of the various VMware products.

There are numerous products within the VMware product set that enable logging capabilities. The main ones that will apply to the vCloud infrastructure are:

vCloud Director: kb.vmware.com/kb/2021435
vCloud Director Cells: kb.vmware.com/kb/1026815
vCenter: kb.vmware.com/kb/1011641
vCloud Director Diagnostic and Audit Logs: http://download3.vmware.com/vcat/documentation-center/index.html#page/Operating%2520a%2520vCloud/3b%2520Operating%2520a%2520VMware%2520vCloud.2.139.html
vShield: kb.vmware.com/kb/1026255
A brilliant blog article by Tom Fojta about Centralized Logging in vCloud Director Environments which covers all of the above and some more

If you feel I have covered something incorrectly please let me know as I’m learning like everyone else and I certainly don’t claim to be perfect (near it but not perfect Winking smile ). Also the vBrownbag covered the whole of objective 1 here.

Gregg

June 10, 2014
by Gregg Robertson Leave a comment

VCAP-CID Objective 1.4 – Determine Availability Requirements for a Conceptual Design

Knowledge

Identify availability options for management components.

Availability can achieved within the vCloud architecture in a number of different ways and via differing methods. I’m going to break them up into different categories and i’m not going to cover each one but if you understand the different methods I think when you are reading the vCAT or any other kind of design book you’ll be able to identify them with ease.

Redundancy: This is simply creating multiple instances of an important service to ensure that if one or more fail that the solution isn’t impacted by this. There are multiple examples of this but the most simple but one of the most important in my opinion is the creation and usage of multiple vCloud cells to ensure load balancing but more importantly redundancy in the event of a loss of a vCloud cell. You can also cover this further down the stack with Heartbeat in the vSphere layer(even though this has now been made end of life) ,multiple network cards from the physical networking and multiple redundant switches to multiple redundant storage processors.
Disaster Recovery/Failover: This is covered in a whole section in the vCAT which goes over methods of utilising products like SRM to configure disaster recovery of the management layer. For conceptual this is more about knowing what is and isn’t possible but also taking the availability requirements of the customer from a business impact analysis where it is deemed the amount of money a customer is willing to lose due to downtime and then equate this to a number of nines. The table below gives an example of the number of times compared to amount of downtime and with the larger the number of nines this will then mean more expensive solutions which you will need to advise your customer about (99.9 can be met by HA for example but 99.99 will require heartbeat and synchronise replication with QoS). For conceptual you don’t cover specific products but knowing that you will need a DR site with fast links between will cover this for example.

Differentiate between management components and resource components.

This is simply determining what should be part of your management cluster and what should be part of your resource cluster. I think this is really straight forward as anything in your management cluster is used to provide services to you the vCloud administrator and the resource cluster/s are for your customers to provision to and is the pools of resources you configure as your provider virtual datacentres. The below image is a great example of a conceptual diagram of the management and resource clusters.

Skills and Abilities

Explain compatibility of various vSphere high availability features with a vCloud design.

This is covered perfectly in appendix A of the vCAT Architecting a VMware vCloud pdf so I don’t see the need to explain it here and i think it is better if you go through that instead. The link to the online documentation centre is here

Given customer requirements and constraints, determine appropriate customer Service Level Agreements (SLAs) for the conceptual design.

This is covered in more depth within objective 1.6 so we will cover this in that section.

Determine how given SLAs impact availability design decisions.

This is covered in more depth within objective 1.6 so we will cover this in that section.

Given customer requirements and constraints, determine how to achieve desired availability.

From the design workshops and requirements collecting you will have worked out what the customers requirements and constraints are and will then have to work with these to try meet them all. For this it is their availability requirements which will be as I mentioned above their permitted amount of downtime per year along with their RPO’s ,RTO’s , MTD’s and WRT’s. From this you will have to work with their constraints to design a solution that meets their requirements so for example if they have an RPO of 5 minutes for critical systems within the management cluster in the event of a site failure this cannot be achieved via SRM with vSphere replication. For the conceptual design my example isn’t applicable but knowing this kind of limitation will then mean you know conceptually what needs to be created (multiple sites with fast links that have near zero latency for multiple data service providers and storage that can achieve this)

Given customer requirements and VMware technologies, determine availability impact to the conceptual design.

I feel this is largely what i have mentioned above but now you are including VMware technologies limitations/capabilities into your thinking which I actually did above. You will need to know what is and isn’t possible with HA for example and how it’s can only provide a certain level of availability and is limited by the amount of restarts it can achieve at once whilst being possibly limited by priority groups.

Gregg

May 27, 2014
by Gregg Robertson 1 Comment

VCDX Preparation Special

On Thursday the 22nd May the EMEA #vBrownbag which I co-host weekly, ran a VCDX Special with Rene Van Den Bedem (VCDX 133) , Craig Kilborn , Bobby Stampfle and I. The special was an expansion of the London VMUG lightning talk that both Craig and I did on the 15th of May. The #vBrownbag session was recorded (after some early audio problems which meant we had to restart it) and the recording of the session is embedded below.

The session proved a major success and we may run another one as the amount of questions we received during and have been receiving post the session is really positive.

Gregg

April 28, 2014
by Gregg Robertson 14 Comments

VCDX Prep Round 2

As some people may or may not know I attempted to defend my VCDX design two and a half weeks ago at the Frimley UK defences. Unfortunately I was lacking in certain areas as well as I let stress cloud my mind temporarily in my design scenario but I really enjoyed the experience and blogged about this in my Extra VCDX Experience achievement unlocked posting which received an unexpected amount of attention and even caused current VCDX Michael Webster to put out a blog posting around VCDX Candidate Tips.

As a child of the 80’s and 90’s I spent untold amounts of my time playing street fighter two, honing my skills and continually getting killed in the second round by M Bison. Now this posting isn’t about my misspent youth but very much like then, after loads of practice and hours spent in front of a screen I became quite the fighter on SF2 so I see how my VCDX prep has been battle hardening me for my second round against my equal (in this analogy Ken) and all those hours spent practicing will hopefully make me have the knowledge and skills to “defeat” the VCDX this time.

So I have started listing all the books,podcasts,videos and labs I feel I need to do to obtain it this time. I received a really good amount of feedback last week from my defence , although the “We urge all reapplying candidates either to submit a new design or to substantially enhance the previously submitted design” portion certainly needs a rewrite or review as it does make you question if you ever had a chance. Anyhow here is my list so far and my plan is to change my VCDX-DCV page to include these and it will allow me to continually update it very much like I did for my VCP and VCAP resources pages. *Warning* I am going all in this time so this is going to be a serious amount of stuff but it will be everything I think is necessary and hence why I’m also going to be doing this over time as I am taking this as a steep but very necessary learning curve and I don’t want to reach near burn out like I did a few times during my last attempt.

Reading:

Mastering VMware vSphere 5 and Mastering VMware vSphere 5.5 . I have read both of these already but i will be doing it again as even though my design is based on 5.0 you have to understand future compatibility and what features in the future may make your design even better or possibly impact it.
VMware vSphere Design and VMware vSphere Design 2nd Edition. This is the same as above, I’m going to go through both again to strengthen portions but also understand future impacts and hopefully be able to apply that to my reworked (should I say substantially enhanced rather?) design.
Storage Implementation in vSphere 5.0. I bought this book and read certain sections of it before my defence but I knew and it was also pointed out to me that my in depth knowledge of storage needs strengthening as 9/10 times in my work engagements the storage is done by a storage vendor who designs and delivers the physical storage so I don’t get to dive in depth into storage which is something that is required for the VCDX. I will list more physical storage resources in the sections below.
Networking for VMware Administrators. I’ve only bought this very recently due to it only being released recently. Very much like storage I felt I knew and understood the impacts of all the networking that was implemented in my VCDX design but when it came to it I felt and it was pointed out that my in depth knowledge of all the switching mechanisms and networking constructs wasn’t strong enough. I’ve never done any networking courses or exams either so I think learning more around this will certainly be beneficial and i will list more physical networking resources in the sections below.
vSphere 5 Clustering Tech Deepdive and VMware vSphere 5.1 Clustering Deepdive. I’ve read both of these books quite a few times and read them again before my defence as I needed a refresher on all the mechanisms and timings that you forget after some time. I plan to read these again and try apply more of it to my design as well.
VMware vSphere 5.x Datacenter Design Cookbook. I haven’t read this book as yet but I’m hoping it can add additional information into my head and hopefully cement some things that I keep forgetting.
Building a Virtual Datacenter. I read this book for my VCAP5-DCD and it was highly beneficial so I am going to read this again and hopefully learn even more from it.
Managing and Optimizing VMware vSphere Deployments. Another book I read for my VCAP-DCD prep and one that I will be reading again as it was a really great book and gave a different viewpoint around designing for ease of management and performance.
VMware VCloud Architecture Toolkit (vCAT): Technical and Operational Guidance for Cloud Success. I’ve read this before although it was for vCloud work as I’m sure you can imagine but it actually covers a substantial amount of really great tips for vSphere designs and due to it having been created by a team with a large amount of VCDX’s in it there are some really great portions in it.
Virtualizing Microsoft Business Critical Applications on VMware vSphere. This will be a first time read for me but is one I have been meaning to read for quite a while as not matter what your VCDX design is for there will always be business critical applications and if there are none in your design then I don’t think it will be accepted for VCDX.
VMware vSphere Resource Management Essentials. Another first time read that I have been meaning to read and now have a good reason to It is an essentials book so I’m not expecting massively in depth information all the time but i think it will still provide additional information for me.
vSphere High Performance Cookbook. A new book to me that I am hoping will cover off loads of the performance portions required from the VCDX blueprint. Prasenjit was on one of my mocks and asked loads of performance portions I was unsure of so i’m looking forward to learning these even deeper now.
Administering VMware Site Recovery Manager 5.0. This may be very specific to certain people who used or are looking to use SRM in their design
VMware vCenter Operations Manager Essentials. This is also very specific as it depends on if you are using vC Ops or not. It is an essentials book so if you have used Operations manager before then most of this should be known by you already.
Software Defined Storage for Dummies. An ebook by Nutanix.
White Papers. I read through quite a fair amount of guides when installing new products but I have to be honest I haven’t read as many as I probably should have so I’m going to try read through all of the below papers and then apply that knowledge to my defence

Podcasts

vBrownbag. I’m probably biased but the vBrownbag’s are amazing and we have covered all the VCAP-DCA and DCD objectives which I will be watching again to freshen my mind as well as having covered the VCDX with John Arrasjid. All of these have video so you can watch them on your tablet of choice or just listen to the audio on your way to work and back.
VMware Communities Roundtable. The roundtable runs every week and always has amazing information in it. I listened to loads around SIOC,SDRS,HA+DRS, vSphere networking and clustering to name but a few before my VCDX and i’m going to be listening to a lot more of them and also going to try stay up to date with them.
Packet Pushers. I have to be honest I have never listened to this podcast before but I recognise I need to strengthen my networking knowledge a fair amount and this podcast was recommended to me for this exact reason.

Videos

For videos I’m actually astounded how many there are and actually even more so how many have been added since I did my DCA and DCD. It looks like i’m going to get my full value out my vExpert access to the Pluralsight videos!

Pluralsight.
Pluralsight third-party videos
VMworld
- There are so many that I couldn’t possibly list all of the ones. What i’m going to do is for each section i feel weaker in, like i did for my VCDX attempt #1 I’m going to look for older VMworld sessions around the topic. Here’s a list of the 2013 sessions which just shows the amount of content you can use and which I will be using.
YouTube
- VMware have their own YouTube channel and they are continually adding more great content. Just like the VMworld sessions I will be watching videos off the channel around content I need more information around.

Well that’s my list so far and when i find the time i’ll update my VCDX page to have this listed. If you feel i’m missing things then do let me know please.

Gregg

April 14, 2014
by Gregg Robertson 2 Comments

VCDX Spotlight : Rene Van Den Bedem

Name: Rene Van Den Bedem

Twitter Handle: @VCDX133

Blog URL: http://www.vcdx133.com

Current Employer: Bank AlBilad, Riyadh, KSA

VCDX #: 133

How did you get into using VMware?

When I joined Bank AlBilad in 2009, we had a fledgling ESX 4.0 environment that was running some test workloads. Our Data Center was bursting at the seams with 200+ physical servers and the CIO agreed on the strategy to virtualise all physical workloads where possible, instead of expanding the Data Center and continuing down the physical server path. So someone had to own it and that person was me.

What made you decide to do the VCDX?

In 2012, I convinced the Bank that a major investment in vSphere training (ICM, VSOS, Design Workshop) was required since vSphere was a critical platform for delivering infrastructure services. During that training sequence, I decided to lead by example and took the VCP and VCAP-DCA/DCD exams. From there I figured, “Is the design I implemented at the Bank good enough for VCDX? Let me find out.” Little did I know the time and effort it would take to get there, but I am glad I did it.

How long did it take you to complete the whole VCDX journey?

vSphere Training started in September 2012, final VCAP exam in December 2012 -> 18 months to VCDX.

What advice would you give to people thinking of pursuing the VCDX accreditation?

Do it, but give yourself time to develop the skills necessary to succeed. If you want to evolve as an architect and be the best that you can be, DO IT. However, it is tougher for people who are non-native English speakers, use a fictitious design and have poor documentation skills. If you hate documentation, then VCDX may not be for you.

If you could do the whole VCDX journey again what would you do differently?

Yes, during my first attempt, the biggest mistake I made was to not join a study group of VCDX-level candidates. Join a study group to push yourself and convince a VCDX to mentor you. Otherwise your chances of success will diminish to zero.

Life after the VCDX? How did your company respond? Was it worth it?

Too soon to tell. But personally, it feels great. I have two years of blog posts that I have been saving up to distribute online.

April 10, 2014
by Gregg Robertson 24 Comments

Extra VCDX Experience achievement unlocked

Yesterday after ~450 hours of blood,sweat and daily mock panels I defended my VCDX design at the Frimley United Kingdom defences. The experience was much more pleasurable than I thought it would be and my panel were all really nice guys and I could tell they were asking me questions to try help me show my knowledge and strengthen portions where possibly my design was weak. Unfortunately when I woke this morning and checked my emails and after asking my wife to open the attachment due to being too nervous myself to do it ,it stated I was unsuccessful in my attempt.

I was certainly hoping I would crack it first time and be able to prance around like a pony at the next London VMUG with my VCDX shirts,caps,blazers and new tattoo (I’m joking on the tattoo but the rest I can’t deny I may have done Winking smile ) But all jokes aside I really learnt a substantial amount and can say without a doubt that I’m a much better architect than when I started the journey and it showed me where my knowledge needs strengthening for my resubmission in the future. I don’t think i’m going to resubmit this year for a few reasons, one being that you have to pay the entire submission fee again and I just don’t have $1200 lying around to do this but more importantly I am just looking forward to spending time with my family as I’ve been spending all my evenings and weekends for the past 6 months working on my VCDX. I will however resubmit and give it another go as I didn’t think i was miles and miles off and with more prep and strengthening in certain areas I could get it the second time around and there are numerous super intelligent current VCDX’s who only passed the second time.

There’s loads of great advice out there but i felt there wasn’t a large amount of portions from people who have failed and I can certainly understand the desire to crawl under a rock after finding out your result but i wanted to put out something around what I felt helped me for the defence yesterday as well as what I’m going to be starting to slowly go through in the next few months for my resubmit next year. However Rene van den Bedem one of my study group buddies and a newly minted VCDX #133 from the Frimley defences (without a doubt deserved) beat me to the punch on most of them in his posting this morning. So I’m going to list additional portions and complimentary portions around resources and things i felt are needed:

Try put in a design that is as real world as possible. I know this isn’t easy, especially as most companies are now 100% virtualised but there are loads of projects around creating a new environment for a new exchange environment or a new department in your company and how you designed it which i’m certain can meet most of the VCDX blueprint requirements. Also if you are going to fictionalise portions don’t try and put in too much as real world customers need to operationally maintain this after you leave and if you have done some no doubt amazing custom configurations but they mean when an upgrade is due you have to change half the environment then you will be called up on this.
Eat,sleep ,VCDX ,repeat. As you can tell by the hours I estimate I put into my submission ~450 and the hours Rene put into his two submissions ~1000, the VCDX is an all encompassing goal where you have to be willing to spend your evenings and weekends for months and months working on the design and there will be loads of points where you feel like giving up and you question why you decided to do this (mine normally came when it was warm weather outside and I was sat trying to decide on VMware security settings). BUT the amount I have learnt from it I fully believe and have already noticed tangibly has made me a better architect and forced me to gain new skills.
Join a study group ASAP. For this submission I had it planned in my head from almost the middle of last year when i passed my VCAP-DCD that i was going to go for the VCDX. I coaxed a whole bunch of guys I know from the London VMUG to put in their interest to defend this year at Frimley which partially resulted in there being two defences in the UK this year Unfortunately due to time blurring by I ended up being the only one to submit for the April defence but I created the EMEA VCDX Study Group after getting the idea from the guys who defended at PEX and was able to gain loads of feedback around my design from people with various backgrounds and thereby strengths in different areas and had a few trial by fire mock defences. I also had a core study group of Rene and Bobby Stampfle who were both also defending at Frimley and so we worked together and did webexs almost daily for three weeks and really learnt a substantial amount from each other and even did a face to face practice this past weekend to calm our nerves and try make the defence not as scary.
Gain help from the best. I’m fortunate enough to know quite a few current VCDX’s and as is the case with the VMware community everyone is really happy to help out where they can. I got a few current VCDX’s to review my design and not hold back on the feedback as what these guys will find you can bet the panellists will find also.I know there is a plan by John Arrasjid around the academy X program and how this will help people nearing the end stages of their VCDX designs to gain some 1 on 1 help from current VCDX’s and I was getting ahead of myself and planning to ask to be part of this when I passed my VCDX as I knew the sheer benefits this has. I will certainly be working with as many top people as possible as well as my EMEA VCDX Study group.
Go to a VCDX bootcamp and watch the online videos and the vBrownbag VCDX videos. These are really helpful and I attended the bootcamps at VMworld Europe last year and the one last week here in the UK. the one at VMworld was certainly a lot better possibly due to the amount of VCDX’s in the room and so the role playing for the two scenarios was much more beneficial than the one I had last week. I’ve refrained from ranting about why as I don’t think it was as helpful but I would encourage the time keeping of the VCAP bootcamp prior to be much better so that it doesn’t severely impact the VCDX bootcamp.
Keep your knowledge up to date and start your design right now. For the VCDX i submitted a design I worked on over two years ago and so with a lot of my current work being around vCloud and vCAC I was rusty on some areas and needed to refresh them. Rene listed loads of top books and I did a selective few of these due to time constraints to refresh my memory on advanced HA and DRS portions and storage. I think if I had slowly kept my skills up around reading tech books like I used to the sheer amount of things I had to refresh on wouldn’t have been as much and possibly made a lot easier. Also I got asked by quite a few people about if their older designs were good enough. I’m certainly not the expert around what is and isn’t VCDX level but what I would highly recommend is getting started on your design even if you still have VCAP’s to finish as it is a very long process and the more you spread it out over time and the amount of times you go through the better design you will have in my opinion.
It isn’t as scary as you think. I was a bundle of nerves for weeks before my defence but once I got in and met the moderator (i’m not sure if i’m allowed to make public the names of my panel etc so I’ll refrain from it in case) who I knew very well as well as almost my whole panel so it really felt like another VMUG or customer meeting but in front of my peers who were all really friendly rather than these levitating vBrains who sit on great thrones. The panel are there to tests your skills and will ask questions to try help you to prove your skills where maybe you haven’t scored very well and are certainly rooting for you to pass whilst being very professional. They will challenge your knowledge but the thought that they are out to catch you out with crazy abstract questions is a total myth (maybe it’s just something I had in my mind)
I’m disappointed without a shadow of a doubt that I didn’t pass it this time but I’m certainly glad I did it and I would recommend the journey to anyone looking to try force themselves to the next level. As I’ve stated I’m going to take a breather to recharge and spend time with the family but I will give it another go and fully believe that with more planning I can do it next time.