When using the VMware NSX Distributed firewall, it’s common to use vRealize Log Insight for firewall rule analyses but there is a little problem with it, which I will try to explain and resolve. The great thing about the VMware NSX Distributed Firewall is that you can assign vSphere objects directly to the firewall rules. VMware NSX takes care of the translation of these objects … Lees verder Using PowerShell to enumerate Log Insight events
PowerNSX (for vSphere) is a great tool for SDN automation. I use it on a daily basis and helps me and my customers a lot! But with every good product, there is always room for improvement! One of my customers asked me to add descriptions to existing IpSet object, add services to existing DFW firewall rules and retrieve the DFW firewall rule stats.Unfortunately these functionalities … Lees verder PowerNSX: missing NSX Firewall rule functionality
A powershell module for NSX on vCloud Director Lees verder PowerShell: PS-Module for NSX on vCloud Director
Introduction During my career I’ve done quite some vSphere and VSAN implementations . The hardest part of implementing VSAN on a vSphere cluster is (usually) the network part. Especially in a stretched VSAN cluster configuration, there are some specific network requirements/best practices which should be followed, but because you don’t implement them on a daily basis you forgot some of the settings: you usually keep … Lees verder PowerCLI: Enable VSAN on existing (stretched) vSphere clusters as autonomously as possible
below a script which allows you to restart the hosts in a vSphere cluster sequentially. It prompts you to select a cluster and it begins the reboot each host sequentially in a safe manner. Lees verder PowerCLI: Restart ESXi hosts in a cluster sequentially
Good scripts are created out of frustration: And here’s a good example of this statement! I wasn’t able to find a script which was able to create a VMK-interface connected to a DVS, being a part of the vmotion netstack AND with a default gateway configured at the netstack-level (and not the VMK-if. The majority of the scripts (which I stole shameless from my collegeau … Lees verder PowerCli: Creating VMK-if on the vmotion netstack on a DVS (with the correct gateway IP configured)
When configuring a stretched VSAN cluster, the VSAN VMkernel interface is connected to the “default” netstack and manual routes must be added which point to VSAN subnet gateways, which enables VSAN communication in a stretched cluster configuration. Without the additional routes add to the ESXi-hosts, communication to the witness appliance and the remote site is not working. This script below shows the manual added routes … Lees verder PowerCLI: retrieve VMhost routes used for stretched VSAN clusters.