vs5icm m05 networking

© 2011 VMware Inc. All rights reserved

Configure and Manage Virtual Networks Module 5

5-2


You Are Here

VMware vSphere 5.0: Install, Configure, Manage – Revision A

Course Introduction

Introduction to Virtualization

Virtual Machines

VMware vCenter Server

Configure and Manage Virtual Networks

Configure and Manage Virtual Storage

Managing Virtual Machines

Data Protection

Access & Authentication Control

Resource Management and Monitoring

High Availability

Scalability

Patch Management

Installing vSphere Components

5-3


Importance

VMware® ESXi™ networking features allow virtual machines to communicate with other virtual and physical machines, allow management of the ESXi host, and allow the VMkernel to access IP-based storage and perform VMware vSphere® vMotion® migrations. Failure to properly configure ESXi networking can negatively affect virtual machine management and storage operation.


5-4


Module Lessons

Lesson 1: Introduction to vNetwork Standard Switches Lesson 2: Configuring Standard Virtual Switch Policies


5-5


Lesson 1: Introduction to vNetwork Standard

Switches


5-6


Learner Objectives

After this lesson, you should be able to do the following: Define a virtual network. Describe a virtual switch. Describe the virtual switch connection types. Describe the components of a vNetwork standard switch. Create a vNetwork standard switch.


5-7


What Is a Virtual Network? What Is a Virtual Switch?

A virtual switch: Directs network traffic between

virtual machines and links to external networks.

Combines the bandwidth of multiple network adapters and balances traffic among them. It can also handle physical network interface card (NIC) failover.

Models a physical Ethernet switch: • A virtual machine’s NIC can

connect to a port. • Each uplink adapter uses one

port. External World

Physical Switch

operating system

application

Virtual NIC

Ports

operating system

application

Virtual NIC

operating system

application

Virtual NIC

Physical NIC

A virtual network provides the networking for hosts and virtual machines that use virtual switches.


5-8


Types of Virtual Switch Connections

A virtual switch allows the following connection types: VMkernel port:

• For example, for IP storage or vMotion migration • For the ESXi management network One or more virtual machine port groups


5-9


Virtual Switch Connection Examples

More than one network can coexist on the same virtual switch, or networks can exist on separate virtual switches.


5-10


Types of Virtual Switches

A virtual network supports two types of virtual switches: vNetwork standard switches:

• Virtual switch configuration for a single host • Discussed in this module vNetwork distributed switches:

• Virtual switches that provide a consistent network configuration for virtual machines as they migrate across multiple hosts


5-11


Standard Virtual Switch Components


5-12


Default Standard Virtual Switch Configuration

Display standard virtual switches.

Delete the virtual switch. Display virtual

switch properties.

Display port group properties.

Display Cisco Discovery Protocol

information.

Enable IPv6 on ESXi host.


5-13


Standard Virtual Switch Ports

You can change the number of ports on a standard virtual switch.


5-14


Network Adapter Properties

For each physical adapter, speed and duplex can be changed. You might need to set the speed and duplex for certain NIC and switch combinations.


5-15


VLANs

ESXi supports 802.1Q VLAN tagging. Virtual switch tagging is one of three tagging policies supported. Packets from a virtual machine are

tagged as they exit the virtual switch. Packets are untagged as they return

to the virtual machine. Affect on performance is minimal.

ESXi provides VLAN support by giving a port group a VLAN ID


5-16


Physical Network Considerations

Discuss VMware vSphere® networking needs with your network administration team. Discuss the following issues: Number of physical switches Network bandwidth required Physical switch support for 802.3AD (for NIC teaming) Physical switch support for 802.1Q (for VLAN trunking) Network port security Cisco Discovery Protocol (CDP) and its operational modes: listen,

broadcast, listen and broadcast, and disabled.


5-17


Lab 6

In this lab, you will create a standard virtual switch and port group. 1. View the current standard virtual switch configuration. 2. Create a standard virtual switch with a virtual machine port group. 3. Attach your virtual machine to a virtual switch port group.


5-18


Review of Learner Objectives

You should be able to do the following: Define a virtual network. Describe a virtual switch. Describe the virtual switch connection types. Describe the components of a vNetwork standard switch. Create a vNetwork standard switch.


5-19


Lesson 2: Configuring Standard Virtual Switch

Policies


5-20


Learner Objectives

After this lesson, you should be able to do the following: Describe the security properties of a standard virtual switch port

group: • VLANs • Security, traffic-shaping, and NIC teaming policies


5-21


Network Policies

Three network policies: Security Traffic shaping NIC teaming

Policies are defined: At the standard virtual switch level:

• Default policies for all the ports on the standard virtual switch At the port or port group level:

• Effective policies: Policies defined at this level override the default policies set at the standard virtual switch level.


5-22


Security Policy

Administrators can configure layer 2 Ethernet security options at the standard virtual switch and at the port groups.


5-23


Traffic-Shaping Policy

Network traffic shaping is a mechanism for controlling a virtual machine’s network bandwidth.

Average rate, peak rate, and burst size are configurable.


5-24


Configuring Traffic Shaping

Traffic shaping is disabled by default. Parameters apply to each virtual NIC in the standard virtual switch. On a standard switch, traffic shaping controls outbound traffic only.


5-25


NIC Teaming Policy

NIC Teaming settings: Load Balancing

(outbound only) Network Failure

Detection Notify Switches Failback Failover Order


5-26


Load-Balancing Method: Originating Port ID

Virtual NICs

Physical NICs

Virtual switch


5-27


Load-Balancing Method: Source MAC Hash

Virtual NICs

Physical NICs

Virtual switch

Internet

Physical switch


5-28


Load-Balancing Method: IP-Hash

Virtual NICs

Physical NICs

Virtual switch

Internet

Physical switch


5-29


Detecting and Handling Network Failure

Network failure is detected by the VMkernel, which monitors: Link state only Link state plus beaconing

Switches can be notified whenever: There is a failover event A new virtual NIC is connected to the

virtual switch Failover implemented by the VMkernel based on configurable parameters: Failback: How a physical adapter is

returned to active duty after recovering from a failure Load-balancing option: Use explicit

failover order. Always use the highest order uplink from the list of active adapters that pass failover detection criteria.


5-30


Review of Learner Objectives

You should be able to do the following: Describe the security properties of a standard virtual switch port

group: • VLANs • Security, traffic-shaping, and NIC teaming policies


5-31


Key Points

There are two connection types on a virtual switch: virtual machine and VMkernel. A standard virtual switch is a virtual switch configuration for a single

host. Network policies set at the standard virtual switch level can be

overridden at the port group level.


vs5icm m05 networking

Documents

virtual storage

virtual machines nic

virtual machine management

virtual networks module

separate virtual switches

application virtual

rights reserved lesson

physical ethernet switch