This is not my normal blog post, but.. a while back someone from Synology contacted me and asked if I’d be interested in reviewing one of their devices. Having never used one before I asked a few questions about running virtual machines on it and was sent a 1621+ which could run a small VM as it only has 4GB RAM. I wasn’t sure what I could do with this for what I was looking to test (backup/DR, running Cloudbuilder and a virtual router), but I was given a promise of something larger in a few months time where I could run multiple larger VMs. That was last summer and the person who sent the device has left Synology and now I’ve gotten a follow up from another person looking for my review. I did use the 1621+ for a few things while I was waiting for something that, unfortunately never materialized. I’ll detail those here.Continue reading Synology 1621+ Review
For quite awhile I’ve been challenged to find a small Linux VM to do small tasks like demonstrating connectivity (ping) between a couple of *magic* SDN segments, or running an application that’s only available on, or well… just better on Linux. Here we’ll go through a quick run down on how you can build these easily and quickly. Future posts will build on this lab VM idea and we’ll add more functionality.Continue reading Easy lab VMs with Photon on VCF
By now, I’m sure you’ve heard about the latest security vulnerability with Log4J. This is certainly something that you should address immediately! Today I’ll quickly cover what the vulnerability is and how you can address the issue within a VMware Cloud Foundation environment…Continue reading Log4J Workarounds for VCF
The API for VCF is hands down, one of the most powerful in the industry. Allowing you to accomplish everything from scheduling backups, to rotating certificates and passwords across the deployment, to deploying an NSX Edge Cluster complete with Tier-0 and Tier-1 routers configured!
While the Developer Center is a great place to start and try out API’s, making it part of your enterprise automation/orchestration systems should be the goal. For that you’ll want the VCF API swagger file to import into your API Orchestration engine. While this isn’t able to happen straightaway, it’s easy to complete with just a few simple tweaks.Continue reading Adjusting the VCF API Swagger
Keystores contain certificates used by Java-based applications to authenticate and encrypt HTTPS traffic. VMware Cloud Foundation (VCF) leverages a keystore and automates a significant part of the interaction with it. As a result, management of the keystore is often overlooked.
In this article, I’ll discuss the keystore used by VCF, why you would need to manage it, and demonstrate some of the commands you might use.Continue reading Keystore Management with VCF
Most platforms today implement a password aging system that requires a user to change the passwords used within a specific interval or have access automatically disabled. VMware is no different. By default, password aging is enabled on most VMware products, including vCenter, NSX, and so on.
In this article, I’ll discuss what can happen when passwords expire within a VMware Cloud Foundation (VCF) environment and demonstrate how you can avoid issues.Continue reading When passwords expire…
During VCF 4.2 deployment I ran into a new error that I hadn’t see previously. Usually I am using VLC and all the pre-reqs have been taken care of for me. However in this instance I needed to deploy VCF in a nested environment under vCloud Director where VLC wouldn’t work. I loaded up my ESXi hosts and configured their IP/DNS/NTP settings, enabled ntp and ssh, and setup their networks and disks etc. Deployed Cloud Builder and populated my deployment spreadsheet. When I got to the validations after submitting my spreadsheet I ran into the following error:Continue reading Deployment or Host Commissioning Certificate Error
Securing a VMware Cloud Foundation (VCF) environment can be a daunting task at times. There are several products that can be deployed, and each has specific things that need to be looked at. It’s especially important to think of VCF as a solution though, as actions that you may take on an individual product can impact the functionality of the solution as a whole. Today, however, this just got a bit easier…Continue reading VMware Cloud Foundation Security
Part 3: Deploying VCF
In the previous parts of this series, I discussed the architecture of the environment and we went through the configuration of pfSense. Now it’s time to get our SDDC deployed in our home lab, using VLC to drive VMware Cloud Foundation.Continue reading Building a VCF lab with pfSense (Part 3)
Part 2: Configuring pfSense
In the last article, I explained the environment that we would work towards building out. Now that we have the plan down, let’s get started by getting pfSense configured.Continue reading Building a VCF lab with pfSense (Part 2)