Presenter Photo About the Author Ryan Johnson Ryan Johnson is a Staff Technical Marketing Architect at VMware. As an accomplished technologist his focus is enabling customers and community members to accelerate and simplify their infrastructure services and organizations through the Software-Defined Data Center. Ryan specializes in both the VMware Validated Designs and VMware Cloud Foundation Staff Technical Marketing Architect VCIX6-DCV, VCIX6-NV, VCAP7/6-CMA, VCP7-CMA, VCP6.5-DCV, VCP6*-* VMware Validated Designs @tenthirtyam vmware.com/go/vvd-community
vRealize Business 7.3 for Cloud vRealize Automation 7.3 vSphere 6.5 U1 vSAN 6.6.1 Site Recovery Manager 6.5.1 vRealize Log Insight 4.5 and Content Packs vRealize Operations 6.6.1 and Management Packs NSX 6.3.3 Bill of Materials What’s New in VMware Validated Design for SDDC 4.1? For a complete list refer to the release notes.
Bill of Materials What’s New in VMware Validated Design for SDDC 4.1? Product Group and Edition Product 4.0 4.1 VMware vSphere Enterprise Plus ESXi 6.5.0 a 6.5.0 Update 1 vSphere Data Protection 6.1.3 6.1.4 Update Manager 6.5.0 a 6.5.0 Update 1 VMware vCenter Server Standard vCenter Server 6.5.0 a 6.5.0 Update 1 VMware vSAN Standard or higher vSAN 6.5 a 6.6.1 VMware NSX Enterprise NSX 6.3 6.3.3 VMware vRealize Operations Advanced or higher vRealize Operations Manager 6.4 6.6.1 Management Pack for NSX for vSphere 3.5 3.5.1 Management Pack for Storage Devices 6.0.5 6.0.5
Product Group Product 4.0 4.1 VMware vRealize Log Insight vRealize Log Insight 4.0 4.5 Content Pack for NSX for vSphere 3.5 3.6 Content Pack for Linux - 1.0 Content Pack for vRealize Automation 7 1.0 1.5 Content Pack for vRealize Orchestrator 7.0.1+ 2.0 2.0 Content Pack for Microsoft SQL Server 3.0 3.0 VMware vRealize Automation Advanced or higher vRealize Automation 7.2 7.3 vRealize Orchestrator 7.2 7.3 vRealize Orchestrator Plug-in for NSX 1.0.4 1.0.4 VMware vRealize Business for Cloud Standard vRealize Business for Cloud 7.2 7.3 VMware Site Recovery Manager Enterprise Site Recovery Manager 6.5 6.5.1 Bill of Materials What’s New in VMware Validated Design for SDDC 4.1?
vSAN Optional for Management Pod Primary Storage § Previous releases required vSAN as primary storage in the management pod. This requirement has been relaxed in this release. § All functional testing and validation of the design is done using vSAN. § Although the VMware Validated Designs highly recommend the use of vSAN, in particular for the management pods, any supported storage solution may be used. § If a storage solution other than vSAN is selected: § You must appropriately adjust the design deployment and day-two operations guidance under the context of vSAN. § The storage design must match or exceed the capacity and performance capabilities of the vSAN configuration in the design. What’s New in VMware Validated Design for SDDC 4.1? 0% 50% 100% 25% 75% 0% 50% 100% 25% 75% vSAN Datastore Non-vSAN Datastore
L2 or L3 for Network Transport Services § The VMware Validated Designs now supports both L2 and L3 transport services. § For a scalable and vendor-neutral data center network, use an L3 transport. § When deciding to use L2 or L3, consider the following: § The NSX ECMP Edge devices establish L3 routing adjacency with the first upstream L3 device to provide equal cost routing for management and workload virtual machine traffic. § The investment you have today in your current physical network infrastructure. § All design documentation is provided for an L3 transport. You must appropriately adjust the design deployment and day-two operations guidance under the context of an L2 transport. Minimal Design Requirements § One 10 GbE port on each ToR for host uplinks. § Host uplinks are not configured in an ether-channel (LAG/vPC) § Layer 3 device that supports BGP § IGMP support required by NSX Hybrid Mode What’s New in VMware Validated Design for SDDC 4.1?
One Pod – Consolidated Management and Workload What’s New in VMware Validated Design for SDDC 4.1? § Consolidates Management, Edge, and Workload into a single pod. § Requires only a minimum of 4 ESXi hosts § All functional testing and validation of the design is done using vSAN. § Any supported storage may be used. Adjust the operations guidance. § Network Transport § Supports both L2 and L3 transport services. § Scalable and vendor-neutral network, use an L3 transport. § Ready for Scale § Expandable to a 32 ESXi host pod. § SDDC solutions easily scale – deployed w/ native or NSX load balancing in place. § Transitions to Two-Pod Distributed Management and Workload (Standard) § Some downtime required during a transition. § Single Region and Single Availability Zone § License Flexibility for NSX (No Universal Objects) External Connection WAN/LAN New in Version 4.1
Consolidated Management and Workload Cluster Design 14 What’s New in VMware Validated Design for SDDC 4.1? • The management virtual machines, NSX controllers and edges, and tenant workloads run on the ESXi hosts in the consolidated cluster. • The consolidated cluster design requires a minimum of 4 hosts: • Three hosts are used to provide n+1 redundancy for the vSAN cluster. • The fourth host is used to guarantee n+1 for vSAN redundancy during maintenance operations. • You can add ESXi hosts to the cluster as needed. • NSX deploys 3 Controllers with anti-affinity rules. the forth host is used to guarantee controller distribution across 3 hosts during maintenance operation. • ESXi hosts are limited to 200 virtual machines when using vSAN.
Consolidated Management and Workload Logical and Physical Design of vRealize Operations Manager 15 What’s New in VMware Validated Design for SDDC 4.1? In the consolidated SDDC, you deploy a vRealize Operations Manager configuration that consists of the following entities. • 1-node (medium-size) vRealize Operations Manager analytics cluster. This topology provides the ability to add high availability, scale-out capacity up to sixteen nodes, and failover. • 1 standard remote collector node. The remote collectors communicate directly with the vRealize Operations Manager analytics cluster. The design uses remote collectors whose role is to ease scalability by performing the data collection for localized applications and periodically sending collected data to the analytics cluster.
Consolidated Management and Workload Logical Design and Data Sources of vRealize Log Insight 16 What’s New in VMware Validated Design for SDDC 4.1? • In the Consolidated SDDC, deploy a single vRealize Log Insight instance that consists of a single master node. • This configuration allows for the required functionality and the log ingestion rates generated from the management components
High-Level Deployment Architecture Objectives 18 What’s New in VMware Validated Design for SDDC 4.1? Two-Pod / Standard Architecture One-Pod / Consolidated Architecture Minimum Hosts 8 4 Management VMs 420 GB vRAM, 2TB VSAN, 6 TB NFS 50% - 70% less Recoverability Dual Region Single Region (DR to cloud) Scale (VMs) Up to 10,000 Up to 1,500 Churn Medium (up to 150/hr) Low (up to 50/hr) Availability 99% 95% Modularity Foundation Cloud Operations Cloud Management Foundation Cloud Operations Cloud Management Expansion options Additional Compute Pods (Up to 32 Hosts Each) Expand Pod to 32 Hosts or Grow to 2-Pod
Licensing Options 19 What’s New in VMware Validated Design for SDDC 4.1? Two-Pod / Standard Architecture One-Pod / Consolidated Architecture Individual vSphere Enterprise + vCenter Sever Standard * vSAN Standard NSX for vSphere Enterprise vRealize Operations Advanced vRealize Log Insight vRealize Automation Advanced vRealize Business for Cloud Standard Site Recovery Manager Enterprise (dual region) vSphere Enterprise + vCenter Server Standard * vSAN Standard NSX for vSphere Advanced vRealize Operations Advanced vRealize Log Insight vRealize Automation Advanced vRealize Business for Cloud Standard Bundling vCloud Suite with vRealize Suite Advanced * vSAN Standard NSX for vSphere Enterprise Site Recovery Manager Enterprise (dual region) vCloud Suite with vRealize Suite Advanced * vSAN Standard NSX for vSphere Advanced * Preferred storage option
Management Packs and Content Packs What’s New in VMware Validated Design for SDDC 4.1? Now Included by default with product deployment. § Management Pack for vCenter Server § Management Pack for vRealize Log Insight § Management Pack for vSAN (New in v6.6) § Management Pack for vRealize Automation (New in v6.6) § Management Pack for vRealize Business for Cloud (New in v6.6) Installed post-deployment. § Management Pack for NSX for vSphere § Management Pack for Storage Devices Now Included by default with product deployment. § General § Content Pack for vSphere § Content Pack for vSAN (New in v4.5) § Content Pack for vRealize Operations Installed post-deployment. § Content Pack for NSX for vSphere § Content Pack for vRealize Automation 7 § Content Pack for vRealize Orchestrator 7.0.1+ § Content Pack for Linux (Added to the Architecture) § Content Pack for Microsoft SQL Server vRealize Operations 6.6.1 Management Packs vRealize Log Insight 4.5 Content Packs
Two-Layer Certificate Authority + Certificate Replacement CertGenVVD tool saves you time when creating signed certificates. See VMware Knowledge Base article 2146215. Certificate Mode § VMCA Hybrid Mode § All user-facing certificates are signed by a certificate authority (CA). § All virtual infrastructure management components use TLS/SSL certificates that are signed by the VMware Certificate Authority (VMCA). § Now supports a Two-Layer CA environment. Certificate Replacement § If the CA-signed certificates expire after you deploy the SDDC, you must replace them individually on each affected component. § Now provides guidance for replacing all CA-signed certificates that are expiring. * What’s New in VMware Validated Design for SDDC 4.1? *Added Post-GA of 4.0
Additional Resources What’s New in VMware Validated Design for SDDC 4.1 Resource URL Main Site vmware.com/go/vvd Documentation vmware.com/go/vvd-docs Poster vmware.com/go/vvd-sddc-poster Community vmware.com/go/vvd-community Videos and Demos vmware.com/go/vvd-videos Certified Partner Architectures vmware.com/go/vvd-cpa vExpert Slack vexpert.slack.com > #vvd … and more! vmwa.re/vvd