Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Architecting vSphere 5.5

Architecting vSphere 5.5

Presented at Sydney vForum 2013

Nick Marshall

October 21, 2013
Tweet

More Decks by Nick Marshall

Other Decks in Technology

Transcript

  1. 2 Who is this guy? §  Nick Marshall •  VMware

    PSO Senior Consultant •  Blog: www.nickmarshall.com.au •  Twitter: @nickmarshall §  Mastering VMware vSphere 5.5 •  Book giveaway at the end of Q & A
  2. 3 Agenda - All you wanted to know? §  VMware

    vSphere 5.5 Overview §  vCenter •  vCenter 5.5 Single Sign-On •  Scale Up vs. Scale Out §  Storage •  Changes (maximums) •  vFlash Read Cache (vFRC) •  Virtual SAN (VSAN) §  Q & A
  3. 4 Application Services Infrastructure Services VMware vSphere 5.5: What’s different

    from 5.1? Automation VMware vSphere 5.5 Security •  Traffic Filtering •  vSphere Replication Interoperability •  vSphere DRS – Virtual Machine Affinity Rules Enhancements •  Support for Reliable Memory Technology •  vSphere App HA •  MSCS Updates Availability Network Storage •  16GB E2E support •  LACP Enhancements •  40GB NIC support •  QoS Tagging •  Enhanced Host-Level Packet Capture •  Support for 62TB VMDK •  vSphere Replication Multi-Point-in- Time Snapshot Retention •  Sphere Flash Read Cache •  PDL AutoRemove •  VMFS Heap Improvement •  VAAI UNMAP Improvement •  Enhancements for CPU C- States •  VM Hardware 10 •  Expanded vGPU Support •  SR-IOV Enhancements Compute •  vCenter Server Appliance vCenter Server 5.5 •  Enhanced Single Sign-On •  vSphere Big Data Extensions •  Enhanced vSphere Web Client
  4. 6 What is: vCenter Single Sign-On Server §  Provides Secure

    Token Exchange (SAML 2.0) between solutions §  When you access an SSO enabled solution the solution will request an extension to SAML 2.0 Token TTL §  First component to touch (regardless or install/upgrade) §  Design before implementing!! vCloud Director vCenter vCO vCenter Single Sign On (SSO) §  Authentication Services for the vSphere Platform §  A component of vCenter Server §  vCenter Single Sign-On creates an authentication domain where users are trusted to access available resources (vCenter etc) •  no longer log into vCenter directly §  Multiple identity sources (Active Directory, OpenLDAP etc)
  5. 7 What Components Have Integrated With SSO? Inventory Service Web

    Client vCenter SSO VCO Log Browser VSM VCD * SRM VCOPS VDP Others Partners 2013 2014 * VCD is partially integrated with SSO, only provider side logins can be integrated with SSO
  6. 8 What's New with vCenter Single Sign-On 5.5 (in short)

    §  Improved architecture •  Multi-master •  Built-in replication •  Site awareness •  Multi Tenant §  Database •  There is no Database! §  Installation •  One simplified deployment model •  Select vCenter Single Sign-On for the first or an additional vCenter Server §  Diagnostics •  Full suite of diagnostic / Troubleshooting tools vCenter Server vCenter Server vCenter Server vCenter Server vCenter Server vCenter Server Web Client Inventory Svc vCenter Single Sign-On 5.5 Web Client Inventory Svc Web Client Inventory Svc SSO  Site  1   SSO  Site  2  
  7. 9 Supports Upgrade of all vCenter 5.1 configurations Previous vCenter

    Single Sign-On 5.1 deployment models •  Fully Maintained via Upgrade •  Basic •  Single Sign-On High Availability •  Single Sign-On Multisite New recommendations with vSphere 5.5 •  Better use of new technology •  Single virtual machine for all vCenter components** •  Distributed virtual machines add complexity •  Availability •  Backup & Restore •  Easily migrate to new recommendations during upgrade ** Enterprise customers with 6 or more local vCenter servers can use a centralized instance
  8. 10 vCenter Single Sign-On High Availability (SSO HA) Shared Database

    Host or VM SSO Server (Primary) Load Balancer Host or VM SSO Server (HABackup) Host or VM Load Balancer Host or VM SSO Server SSO  HA   Now  supports  ac2ve  /  ac2ve   •  No  loss  of  admin  service   •  vCenter  restarts  possible   More  than  two  instances  supported       Requires:   •  Third  Party  Network  Load  Balancer   •  Upda2ng  of  cer2ficates   •  Reregistra2on  of  solu2ons   vSphere  5.1   vSphere  5.5  
  9. 11 vCenter Single Sign-On Multisite (Linked Mode) Web Client Inventory

    Svc Web Client Inventory Svc Web Client Inventory Svc Local Databases vCenter Server vCenter Server vCenter Server vCenter Server Inventory Svc vCenter Server vCenter Server New York Los Angeles Miami Multi Site SSO Server Multi Site SSO Server Primary SSO Server Web Client Inventory Svc Web Client Inventory Svc Web Client Inventory Svc vCenter Server vCenter Server vCenter Server vCenter Server Inventory Svc vCenter Server vCenter Server New York Los Angeles Miami SSO Server SSO Server SSO Server Automa2c  Replica2on   Iden2ty  Sources   SSO  Users/Groups/Policies   Solu2ons   NOTE:  When  Upgrading/Deploying,  only  one  first  server  selec2on  is  required  to  setup   authen2ca2on  domain  otherwise  you  will  have  mul2ple  duplicate  vsphere.local  domains  
  10. 13 Single vCenter Server 5.5 Design Recommendation VC Database vCenter

    Server Host or VM vCenter Server SSO Server Web Client Inventory Svc Use Simple Installer Installs / Upgrades core components with a single virtual machine 1.  vCenter Single Sign-On 2.  vSphere Web Client 3.  vCenter Inventory Service 4.  vCenter Server §  No change to architecture §  All services are local •  Reduced complexity §  Supports 1-1000 Hosts / 1-10,000 Virtual Machines
  11. 14 Multiple Remote vCenter Server Design Recommendation By Default § 

    Each site is independent §  Does not provide a single pane of glass view §  SSO automated replication §  SSO Users & Groups §  SSO Policies §  Identity sources §  Site awareness §  Linked Mode §  Maintains single pane of glass §  Replicates Licenses, permissions and roles §  Availability §  vSphere HA §  vCenter Heartbeat vCenter Server vCenter Server New York vCenter Server vCenter Server Miami vCenter Server vCenter Server Web Client Inventory Svc SSO Server – vsphere.local Los Angeles Web Client Inventory Svc Web Client Inventory Svc SSO  Site  1   SSO  Site  2   SSO  Site  3   Single  SSO  Authen2ca2on  Domain  
  12. 15 SSO Server Web Client Multiple Local vCenter Server 5.5

    Design Recommendations A Datacenter with more than 5 vCenter Servers §  Centralized SSO authentication •  Same Physical location §  Single Centralized vSphere Web Client §  Availability (Required) •  vSphere HA •  vCenter Heartbeat •  Network Load Balancer 15 vCenter Server 2 vCenter Server 5.5 Inventory Svc SSO Server 5.5 Web Client 5.5 Database Server VCDB1,VCDB2,VCDB3 vCenter Server 3 vCenter Server 5.5 Inventory Svc vCenter Server 1 vCenter Server 5.1 Inventory Svc Backwards  compa2ble  to  vCenter  Server  5.1   to  support  staged  upgrades  
  13. 18 §  62TB VMDK • Supported on VMFS5 & NFS • No

    specific virtual hardware requirement • Requires ESXi 5.5 • 62TB Virtual Mode RDMs also supported Support for Larger VMDK & vRDMs
  14. 19 Support for Larger VMDK & vRDMs §  Supported • 

    NFS & VMFS •  Offline extension of 2TB+ VMDK •  vMotion •  Storage vMotion •  SRM/vSphere Replication •  vFlash •  Snapshots •  Linked Clones •  SE Sparse Disks §  Not Supported •  Online/hot extension of 2TB+ VMDK •  BusLogic Virtual SCSI Adapters •  Virtual SAN (VSAN) •  Fault Tolerance •  VI (C#) Client •  MBR Partitioned Disks •  vmfsSparse Disks •  vSphere 5.5 introduces support for 62TB VMDKs & Virtual RDMs
  15. 20 VMFS Heap Improvements §  An issue with previous versions

    of VMFS heap meant that there were concerns when accessing above 30TB of open files from a single ESXi host. §  ESXi 5.0p5 & 5.1U1 introduced a larger heap size to deal with this. §  vSphere 5.5 introduces a much improved heap eviction process, meaning that there is no need for the larger heap size, which consumes memory. §  vSphere 5.5 with a maximum of 256MB of heap allows ESXi hosts to access all address space of a 64TB VMFS. §  Theoretically possible to have a VM with 3720TB (60 VMDKs) / 7440TB (120 VMDKs)
  16. 21 16GB E2E Support (1 of 2) •  VMware introduced

    support for 16Gb FC HBA with vSphere 5.0 •  16Gb HBA had to be throttled to work at 8Gb •  vSphere 5.1 introduced support for 16Gb FC HBAs running at 16Gb •  No 16GB end-to-end support for FC in vSphere 5.1 •  Full bandwidth required multiple 8Gb FC array ports 16Gb 8Gb
  17. 22 16GB E2E Support (2 of 2) §  With the

    release of vSphere 5.5, VMware now supports 16Gb E2E (end- to-end) Fibre Channel 16Gb 16Gb
  18. 23 MSCS - Microsoft Cluster Services Enhancements MSCS Node A

    MSCS Node B Microsoft Windows 2012 Clustering supported Round Robin Path Policy Supported Round Robin Path Policy Supported FCoE & iSCSI protocols supported
  19. 25 vSphere Flash Read Cache: Server Based Flash Tier • 

    vSphere Flash Read Cache Infrastructure •  Pools local flash devices •  Provide flash based resource management •  Cache Software: •  Uses VFFS •  vSphere hosts based caching •  Provides per-VMDK caching Key Features vSphere Flash Read Cache Infrastructure SAN/NAS CPU Pool Memory Pool Flash Pool vSphere Flash Read Cache Software vSphere
  20. 26 What is vSphere Flash Read Cache? Key Features • Hypervisor-based

    software-defined flash storage tier solution. • Aggregates local flash devices to provide a clustered flash resource for VM and vSphere hosts consumption (Virtual Flash Host Swap Cache) • Leverages local flash devices as a cache • Integrated with vCenter, HA, DRS, vMotion • Scale-Out Storage Capability: 32 nodes SSD SSD SSD SSD vSphere Flash Read Cache Infrastructure vSphere Flash Read Cache vSphere Flash Read Cache vSphere Flash Read Cache vSphere SSD Flash as a New Storage Tier in vSphere
  21. 27 Why vSphere Flash Read Cache? •  Cache is a

    high-speed memory that can be either a reserved section of main memory or a storage device. •  Supports Write Through Cache Mode •  Improve virtual machines performance by leveraging local flash devices •  Ability to virtualize suitable business critical applications Write Commit Ack 3 2 Write Through 1 Cache
  22. 28 vSphere Flash Read Cache - Primary Use-Cases SSD SSD

    SSD SSD vSphere Flash Read Cache Infrastructure vSphere Flash Read Cache vSphere Flash Read Cache vSphere Flash Read Cache vSphere SSD Flash as a New Tier in vSphere ü  Collaboration Applications ü  Databases ü  Middleware Applications Read Intensive Operation Workloads
  23. 29 vSphere Flash Read Cache Requirements •  vCenter server version

    5.5 •  Central point of management •  vSphere Web Client •  1 vSphere Hosts minimum •  Running ESXi version 5.5 or later •  Maximum of 32 nodes in a cluster • Virtual Machines Hardware •  Virtual Machine Version 10 •  vSphere 5.5 or later •  User Privileges: •  Host.Config.Storage •  Host.Config.AdvancedConfig (for vFC configuration)
  24. 31 VMware Virtual SAN VMware Virtual SAN •  Redefines the

    hypervisor to cluster compute and storage •  Pools locally attached SSDs and HDDs to create shared distributed storage •  Based on scale-out architecture with built-in SSD read/write caching •  Leverages VM-centric storage policy-based management for automation and self-tuning •  Managed directly from vCenter Server ……………. vSphere VSAN VMware vCenter Server Hard disks SSD Hard disks SSD Hard disks SSD Hard disks SSD Clustered VSAN Datastore
  25. 32 VMware Virtual SAN - VM Storage Policy Number of

    Disk Stripes per Object - The number of HDDs across which each replica of a storage object is striped. Max value: 12 Flash Read Cache Reservation (%) - Flash capacity reserved as read cache for the storage object. Max value: 100% Number of Failures to Tolerate - Defines the number of host, disk or network failures a storage object can tolerate. Max value: 3 Force Provisioning - The object will be provisioned even if the storage policy can not be satisfied. Object space reservation (%) - Percentage of the logical size of the storage object that will be reserved (thick provisioned) upon VM provisioning. Max value: 100%
  26. 33 •  Handle peak performance such as boot, login, read/

    write storms •  Seamless granular scaling from POC to deployment without huge upfront investments •  Support high VDI density •  Rapid storage provisioning and complete automation •  Ideal price/performance •  Minimizes data center footprint •  Integrated with vSphere Replication and VMware SRM •  Reduces cost of storage •  Minimizes data center footprint VMware Virtual SAN - Use Cases Virtual Desktop (VDI) Tier 2 / Tier 3 Test and Dev DR Target Site A Site B