Pages

Tuesday, March 6, 2018

catatan vmware workshop @trainocate jakarta

global knowledge 2017 ->   trainocate


100% training.


cisco ibm netapp vmware citrix.


asia 13 negara. setaun 1-2 negara.
2013 philiphine, hongkong.
HQ di sg sama japan.




===============
training microsoft.
lab bisa dipake 6bln.

-trendmicro : security buat virtualisasi. ( partner vmware ).
-netAPP     : storage.
-fortinet   : firewall.

brocade.



==============
softskill
pmp
itil  ( foundation , sampe intermediate  9 chapter/lv -> 5 ujian - 4 ujian, diatasnya ada expert ).


isaca
apmg/agilepm
======================

selain end user, principle.


=====================
testing center

pearson VUE
criterian
castle

admin fee 100.000 ditempat lain. tp di gk ga ada.
daftar sendiri ke pearson vue.
daftarin hari jumat jam 10. klo available. done. credit card.



=======================
aktifitas:

bisa liad d fb. ada workshop apa.





======================

vmware.

vsphere.
server virtualization.

sesi 1 vmware 6.5.
sesi 2 nsx.
sesi 3 vsan.
======================================

yang membedakan 6.5 dengan 6.0.




vsphere : inti teknologi vmware.


VI vmware infrastructure 3 - june 2006   ( software switch - dalam 1 platform ada 2:
esx version 3 , vCenter version 2 , virtual SMP. )


-vCenter -> buat manage esx





-> server fisik.
space:  3 server fisik 2u -> jadi 6u
listrik, dll



-> virtualisasi
cukup 1 mesin.
1 kernel.esx






VI 3.5 - februaryy 2008
esx version 3.5, esxi version 3.5 


3gbram (minimal)    -> esx
200-300mb ram ( minimal )  -> esxi


exscli
powercli
gui
vsphereClient

^4 ini di cut di esxi.



vSphere 4.0   - may 2009
esxi 4.0, support windows 2008 r2, windows7



vSphere 5  agustus 2012
auto deplay, usb

vsphere5.1  sept 2013
vdp -> backup
vsphere replication
vshield endpoint ( firewall)
web client




vsphere 5.5
VSAN -> storage area network

vsphere 6.0   feb 2015
VSAN ditambahin batas max
VVOL  virtual volume



vsphere 6.5  oct 2016  - belanda
HTML 5 web client,
embedded vSUM  ( harus install sndiri plugin sebelumnya ) ??
migration tool  -> vcenter diinstal di windows  -> bisa diupgrade pk vsphere ga perlu dari windows lg.



=======================


vsphere:

-esxi  ( hypervisor type 1 )  -> kernel / software untuk menjalankan beberapa os di 1 komponen fisik.


hypervisor type 1 -> install diatas os kosong   ( punya akses langsung ke server fisik, resource )
esx
xenserver ( citrix )
hyper-V ( windows )



hypervisor type 2 -> install diatas os
windows, unix, linux


windows -> workstation, virtualbox, GNs3
linux   -> kvm. virtualbox



-vCenter



====================


16gb  -> jadiin 4 vm. bisa

5gb 5gb 5gb 5gb-

memory over commitment.


solusi : bikin esxi di server fisik baru.

tp butuh management?!


==============
migrate vm yang lagi nyala tanpa vm mati.

== vMotion


klo kita ga pake vCenter ga bisa vMotion.


DRS 
VSAN
CLONE
TEMPLATE


^ butuh vCenter.

tanpa vcenter bisa. tp harus matiin server
convert > ova

=================
-cara install vcenter

VCSA vCenter -> VM  -> deploy di esxi.
VCFW -> service for windows  ( min 2008 r2 ).




esxi1   esxi2   esxi3  -> diregister ke VCSA.



esxi1   esxi2   esxi3  ->  install windows  -> install vcfw -> registerin.



============

vsphere di upgrade -> esxi sama vcenter pasti di upgrade.

1server fisik = 1 esxi.





=============



SDDC -> SOFTWARE DEFINE DATA CENTER.

3 komponen utama dc fisik.
compute / server
storage
network

^ dimanage secara terpisah. computer sendiri, network sndiri, server sndiri.
cpi -> network
spectrum control (IBM) -> storage
onCommand insight   -> storage



solarwind     ->  compute




SDDC -> tiga komponen jadi 1.

server virt  -> diconvert ke vm jadiin esxi.
network virt -> diconvert ke NSX
storage virt -> VSAN

server fisik tgl jadiin 3 esxi.



bisa bikin virtual router.


===================================
vSphere  trainocate.  ( indepth kelas 5 hari )

iCM -> nsx



======================
datacenter berbeda?

live migration?

syarat? vsphere beda versi?
hardware fisik?

================
exclusive feature di -> vsphere6.5
20.000 vm
builtin migration tool. migrate dari vmware windows ke vm.
improved appliance management ( pake html5 bukan flash lg ).
native HA
native backup restore
VAMI (5480) -> buat nyalain service.







vsphere 6.0
redundancy ->  fault tolerance?!  ( lebih powerful daripada FT ).

ft = fitur d vCenter

VCSA -> manage esxi1,   ( replikasi )
esxi2,
esxi3.

sblm 6.0  bisa pake vsphere replication+  license.
atau
Fault tolerance.

masalah di FT ->  jumlah vm.
klo lebih dari 4vCPU. perVM  ->   1000esxi -> 32 vCPu.




10.000 vm -> windows


==========================

vmware vsphere 6.5 instalation

-install
-upgrade
-migrate
-restore



========================

-VAMI -> appliance management. di improve di vsphere 6.5.

-Native HA.
active   - replikasi konfigurasi
passive  -
witness  -> ngecek network failure?

basic / advanced.

intra-cluster, auto cloning
inter-cluster ha, manual cloning  -> bisa milih sembarang cluster mana.


=================

native backup restore.

vami -> summary -> backup

- http scp ftp

bisa di password backupannya.


kasih ip, directory.
==================
masuk vsphere bisa 2

- web based client
6.0 -> flash
6.5 -> html5 ( lebih cepet ).


- vsphere client
program diinstall di windows buat msk ke vsphere kita.
- harus nginstall dulu
- gmn klo dari linux / unix.


-udah ga pake cip client integration plugin.
plugin di browser. klo mo export file lgsung file dari pc kita ke dalem.


=================

related object.

di grouping.
host, vm, datastore, networks.


vm 20.000
host 1500



==================
improvement. vsphere 6.5

ga perlu vsphere client
ga perlu cip

vmfs6 -> ?

virtual machine file system.
format buat datastore storage.



==================
vm -> sekumpulan dari beberapa file dalam directory.

vmx
vmdk
vmsw 


^ butuh tempat buat naro file2.  ->  disebut data store.


1 VMFS  (3.5)
2 NFS   (4.0)
3 VSAN (5.5)
4 VVOL (6.0)


local disk server tempat esxi dibangun. ( hardisk )

500gb diformat sbg VMFS. KLO dah jadi datastore baru bisa dijadiin VM.

VMFS v3
VMFS v5
VMFS v6  -> baru di vsphere 6.5


support HD -> 512e



hardisk -> ada sector2.
   sector -> unit terkecil tempat kita bisa nyimpen data ke disk kita.
   1 sector = 512bytes.



10bytes  -       DATA      -   20 bytes ecc 
header    482byte          ECC

ecc brubah -> pasti data berubah.



data -> 1024 byte -> butuh 2 sector?







ada 2 tipe hardisk
512e
4kn ( 4k native )


1 sector 4096 byte

10   4046byte       30     
header    data ecc






------------
SAS
SATA
AHCI
IDE



==========================

AHCI  512e
nvmE  4096

ketika ada data nvmE bs lgsung diconvert ke 512 emulated.



==========================

UNMAP -> automatic space reclamation

SAN
esxi ---- ds1 ----- storage controller   -------> LUM



SAN
NAS


direct dari local / remote??
direct = disk local
remote = storage controller
a.SAN -> block level storage (LUN -> logical unit number ) -> harus di format sbg
VMFS ( virtual machine file system )

b.NAS -> File level storage ( volume dengan fileSystem -> kyk usb ).

hardisk tambah ke laptop> harus di format.


esxi ----- switch ------- ibm/netapp/HDS


thin provisioning.
thick provisioning.

VM ---> VMDK ( hd virtual VM )

thin  -> minta space ke data store pada saat kita tulis data ke VMDK.
thick -> minta space ke data store langsung pada saat kita buat VMDK.

vm(vmdk -> 10g ) ------ ds(50g)
thin provisioning -------- 50gb
thick provisioning -------- 40gb





SC -> LUN available -> 49gb, 1 gb dikasih ke VM
--- ketika file A didelete
klo pake LUN di controller ( etc: netAPP )  tetep terisi 1gb. ( idle )


-automatic space reclamation:
alokasi 1gb si LUN akan di unmap pada storage controller.


^ fitur 6.5. di 6.0 gada.


=====================
-enable vm encryption

bisa di encrypt. apapun guest OSnya.

key di encrypt via KMS. ( kms server tergantung vendor).



======================


server / computing
networking / nsx
storage /  vsan




vm
   networking -
esxi

===================================
NSX

ESXI -> CM BISA BIKIN VIrtual switch.

vmport group -
vmnic        - port yg merepresentasikan physical.


1vmnic - 1 virtualswitch
1virtualswitch - bisa beberapa port group. per vlan


6 vm

3 vm vlan 10
2 vm vlan 20



===================

virtual switch             -management port -> khusus service tertentu
uplink port





==================


overlay network
underlay network


ngeping antar 1 subnet -> tanpa nsx
bisa bikin topology    -> dengan nsx





============
nsx do?

network decoupling
network overlay
distributed function


management plane, control plane, data plane.


management plane = manage si router. telnet,ssh, console, gui.
control plane = service2 yang mempengaruhi decision process.  routing table, ospf, arp cache
data plane   =  port


(router)

10.1.1.1/24 10.1.2.1/24



routing table =>

10.1.1.0/24      portA
10.1.2.0/24      portB




pc A ping ke pc B
source 10.1.1.1 -> 10.1.2.1   ( router liad ke control plane dulu )


port A / B   -> data plane



data plan
actual path untuk forward data

routing table -> control plane



** network overlay.
bisa bikin load balancer, firewall, etc


** distribution function
router, firewall yg kita punya bisa didistribusikan  ke beberapa ESXI lgsng.

klo esxi cm bisa distribute switch saja. klo nsx bisa sampe routing vpn switch firewall, etc.


=================
NSX SERVICES

-logical switching
-logical routing  - distributed, 8 gateway: vpn firewall nat
distributed: routing biasa eigrp dkk

-logical firewall
-logical loadbalancer
-logical API





=============
CARA INSTALL NSX

nsx manager install ke esxi -> trs deplay ke vcenter server.

bikin nsx controller ( control plane )  bikin yg banyak, distribusiin.

nsx bisa dimanage  via orcestration

>openstack mirantis
>openstack neutron
>openstack cinder



==========

1. NSX MANAGER?!

bentuknya hampir sama kyk esxi            format:vsf.
register/deploy ke vCenter
dapet menu cloud networking.

baru deploy nsx controller -> dikaitkan ke vsphere cluster yg kita punya.



2.  management cluster


manage via vSphere web client
configure vDS dengan mtu lebih dari 1600.
sync with dns and ntp server. ( klo tanpa dns pastiin bisa ping )
meet cpu and memory req


6.1  vcpu 4    12gb memory           60gb
6 default 4 12gb 60gb bisa 128 logical router


==================
default cli pass
privilege cli




admin password


==================

dari fisik ke virtual=
export ke ovf dulu.

vmware punya network virtualization sendiri. ospf.  klo propietarynya cisco kyk eigrp ga bisa.

klo mo virtual cisco pake openstack!


vmware workstation versi 12 -> khusus 12 ga bs diconvert ke esxi.
klo mau pake yg versi 10/11.
ato downgrade dulu export ke ovf.

vmware 10/11 -> bs ke esxi 6


ketika fisik -> vm  lisensi ilang.
tgl di upload ke datacenter nanti. mo dcnya dmn aj ga masalah.


=====================

NSX NODE CONTROLLER.

provide control plane to nsx

mac address table
arp table
vtep table


1vm butuh resource d esxi:

controller vm    vcpu  reservation memory os disk
   3 4         2048MHz 4GB 20gb


=========================

vsphere web > instalation > nsx edges > masukin.

========================

^management + control


data plane:


vmware instalation bundle  (VIB)

install 1 jenis vm kernel port.
vtab.


overlay   -> topologi dibikin di nsx
underlay  -> topologi fisik


vxlan  -> layer 2 domain.

esxi 1
esxi 2

esxi 3


1 vxlan id sama -> 1 address.
vtep -> interface ngubungin vmware interface 1 dgn lain lewat port fisik.



vtep / vxlan minim harus ada 1.
=======================
nsx:
mtu minimum 1600

karena encap / tunneling.

klo ga frame vxlan ga bisa diforward ke router fisik yg biasa.



=======================
VIB -

HOST PREPARATION.

4096 vlan
vxlan bisa lebih banyak.


=======================

1 create vmtep
2 create segment id   ( vxlan id yg bisa digunain di cluster  5000 - 16000000)
3
4 create transport zone   ( vxlan id mana yg di cantolin ke esxi cluster mana ).
5 create logical switch


local vtep   -> 1 subnet
remote vtep  -> beda subnet

unicast mode:  esx1  ->    esx 2
        esx1   ->   esx 3



hybrid mode:   replicate menggunakan multicast buat yg local dan unicast ke remote vtep.


multicast mode:


224 - 239 multicast.



================================
** inter vxlan routing.


1esxi 2 vxlan. routing? tanpa keluar ke router fisik.


1  bikin router

DLR = distributed logical router ( ROUTER INFRA )
ESG = edge service gateway ( VPN NAT LOAD BALANCER )  -> l3 switch.  lebih berat tp fitur lbh bnyk.



deploy dlr
- add ndx edge
- select the type
- select on which host
-
-




=================================

esxi
nsx

throughput router fisik > virtual

banyak vSwitch -> dicantolin ke 1 NIC -> throughput turun.








=========================
vsan -

bikin cluster dulu.


minim 3-64.


VSAN datastore -> 1


======================
esxi harus terdaftar di vsphere HCL ( hardware spec yg support vsan ).

NIC harus 1gb / 10gb

controller SAS/SATA.

CACHE   PCI/SAS/SATA  SSD   ->  MINIM 1 MAX 35.  / node.
DATA    PCI/SAS/SATA HD/SSD



=====================
BIKIN CLUSTER, ENABLE vsan.


cek lwt console:
vmcapping ip-address sourceport port


====================
tambah space ke vsan.

create diskgroup.



====================

manage > settings > disk management -> liad diskgroup per cluster esxi.


===================

UCS
1u -> setiap disk ada led -> bs dinyalain lednya. baru dicabut.



===================

summary vsan -> elligible.



raid 0 -> vsan storage policy.


===================
vsan datastore-

Vsan -> object level storage.   -> namespaces(konfig vm), virtualdisk (vmdk), snapshot, swap files.
        block level storage.


==================
remove disk dari diskgroup.

evacuate data? -> data taro di disk lain.

raid hrs sama hardisknya -
klo vm size sama rpm ga perlu sama. nanti ditotal.



kelas lbh lanjut :
ICM 6.5           -5hari
vsan intro class  -5hari

Posted by at
Labels:

1 comment:

Subscribe to: Post Comments (Atom)