VRealize ACI Plugin.

Slides:



Advertisements
Similar presentations
Service Manager 2012 Overview
Advertisements

Cisco Confidential © 2013 Cisco and/or its affiliates. All rights reserved. 1 Unity Connection Qualification for Prime Collaboration Development Release.
Module 5: Configuring Access for Remote Clients and Networks.
© 2010 VMware Inc. All rights reserved Cloud Andy Steven: Enterprise Cloud Architect Northern EMEA
“It’s going to take a month to get a proof of concept going.” “I know VMM, but don’t know how it works with SPF and the Portal” “I know Azure, but.
14.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft Windows Server 2003 Active Directory Infrastructure.
IT:Network:Applications VIRTUAL DESKTOP INFRASTRUCTURE.
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment Chapter 8: Implementing and Managing Printers.
Introduction to XTMv WatchGuard Training.
NETOP ONDEMAND What’s new in version 2.1? DECEMBER 09 NETOP ONDEMAND1.
1 Chapter Overview Introduction to Windows XP Professional Printing Setting Up Network Printers Connecting to Network Printers Configuring Network Printers.
© 2010 VMware Inc. All rights reserved VMware ESX and ESXi Module 3.
Microsoft Load Balancing and Clustering. Outline Introduction Load balancing Clustering.
VMware vCenter Server Module 4.
Network discovery Multi- server mgmt (MSM) Visibility & audit.. Automatic discovery of DC, DHCP and DNS servers, and dynamic IP addresses.
Additional SugarCRM details for complete, functional, and portable deployment.
System Center 2012 Setup The components of system center App Controller Data Protection Manager Operations Manager Orchestrator Service.
Microsoft Windows 2003 Server. Client/Server Environment Many client computers connect to a server.
Data Center Network Redesign using SDN
1 ISA Server 2004 Installation & Configuration Overview By Nicholas Quinn.
Migration XenDesktop 7. © 2013 Citrix | Confidential – Do Not Distribute Migration prerequisites Set up a XenDesktop 7 Site, including the site database.
Configuring Routing and Remote Access(RRAS) and Wireless Networking

Microsoft Internet Security and Acceleration (ISA) Server 2004 is an advanced packet checking and application-layer firewall, virtual private network.
Home Media Network Hard Drive Training for Update to 2.0 By Erik Collett Revised for Firmware Update.
5 Chapter Five Web Servers. 5 Chapter Objectives Learn about the Microsoft Personal Web Server Software Learn how to improve Web site performance Learn.
VMware + Chef A VMworld Workshop.
1 Chapter Overview Using the New Connection Wizard to configure network and Internet connections Using the New Connection Wizard to configure outbound.
MDC-B350: Part 1 Room: You are in it Time: Now What we introduced in SP1 recap How to setup your datacenter networking from scratch What’s new in R2.
MDC417 Follow me on Working as Practice Manager for Insight, he is a subject matter expert in cloud, virtualization and management.
MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Four Windows Server 2008 Remote Desktop Services,
Cloud Scale Performance & Diagnosability Comprehensive SDN Core Infrastructure Enhancements vRSS Remote Live Monitoring NIC Teaming Hyper-V Network.
Cisco ASA 5505 Joseph Cicero Northeast Wisconsin Technical College.
MCTS Guide to Microsoft Windows Server 2008 Applications Infrastructure Configuration (Exam # ) Chapter Five Windows Server 2008 Remote Desktop Services,
SC2012 Infrastructure Components Management Justin Cook (Data # 3) Principal Consultant, Systems Management Noel Fairclough (Data # 3) Consultant, Systems.
Microsoft Virtual Academy. STANDARDIZATION SELF SERVICEAUTOMATION Give Customers of IT services the ability to identify, access and request services.
Core 3: Communication Systems. Network software includes the Network Operating Software (NOS) and also network based applications such as those running.
VApp Product Support Engineering Rev E VMware Confidential.
VMware vSphere Configuration and Management v6
How to Deploy and Configure the Smart Net Total Care CSPC Collector
System Center Lesson 4: Overview of System Center 2012 Components System Center 2012 Private Cloud Components VMM Overview App Controller Overview.
Microsoft Virtual Academy. System Center 2012 Virtual Machine Manager SQL Server Windows Server Manages Microsoft Hyper-V Server 2008 R2 Windows Server.
20409A 7: Installing and Configuring System Center 2012 R2 Virtual Machine Manager Module 7 Installing and Configuring System Center 2012 R2 Virtual.
WEEK 11 – TOPOLOGIES, TCP/IP, SHARING & SECURITY IT1001- Personal Computer Hardware System & Operations.
Linux Operations and Administration
FTP COMMANDS OBJECTIVES. General overview. Introduction to FTP server. Types of FTP users. FTP commands examples. FTP commands in action (example of use).
Panasonic UC Pro - UC Pro Server setup with Active Directory -
| Basel Fabric Management with Virtual Machine Manager Philipp Witschi – Cloud Architect & Microsoft vTSP Thomas Maurer – Cloud Architect & Microsoft MVP.
VMware Certified Professional 6-Data Center Virtualization Beta 2V0-621Exam.
© ExplorNet’s Centers for Quality Teaching and Learning 1 Describe applications and services. Objective Course Weight 5%
L4 – L7 Services Network Stitching Only Mode. Why do we need this feature and where is it used?
Shared Layer 3 Outside. Agenda – Shared Layer3 Outside Overview & Description Configuration Troubleshooting Other Related Documents.
APIC NXOS CLI – Vlan Domains
1 Remote Installation Service Windows 2003 Server Prof. Abdul Hameed.
Windows 2012R2 Hyper-V and System Center 2012
VMware ESX and ESXi Module 3.
Essentials of UrbanCode Deploy v6.1 QQ147
UCS Director: Tenant Onboarding
Enterprise Hybrid Cloud
UCS Director: Tenant Onboarding
Real VMware 2V0-731 Exam Questions and Answers
Download dumps - Microsoft Real Exam Questions Dumps4download
Cisco Hybrid Cloud Infrastructure
Unit 27: Network Operating Systems
Managing Clouds with VMM
20409A 7: Installing and Configuring System Center 2012 R2 Virtual Machine Manager Module 7 Installing and Configuring System Center 2012 R2 Virtual.
HC Hyper-V Module GUI Portal VPS Templates Web Console
Managing Services with VMM and App Controller
* Introduction to Cloud computing * Introduction to OpenStack * OpenStack Design & Architecture * Demonstration of OpenStack Cloud.
Presentation transcript:

vRealize ACI Plugin

Provision Network and VMWare Compute resources simultaneously

Bringing the Compute (VMWare) team closer to the Network (ACI) team

Value For Customers Integrate with existing vRealize installs Speed up deployment time of ACI network Offer tiered service levels Faster application deployment times Consistent, orchestrator driven policy Compute provision networking dynamically

What Is vRealize?

What Is vRealize? Two products bundled together in a suite vRealize Orchestrator vRealize Automation

vRealize Orchestrator (vRO) The work horse of the suite Plugins integrate 3rd party devices No tenancy model Terminology: Workflows Similar to Cisco UCSD

vRealize Automation (vRA) Catalog service layered over vRO workflows Provides Multi-Tenancy Previously known as vCAC Terminology: Blueprints Similar to Prime Services Catalog

vRO workflows work without vRA vRealize Orchestrator provides a workflow that vRealize Automation consumes vRA Blueprint vRO Workflow

vRealize Suite vRealize Automation (vRA 6.x) vRealize Orchestrator (vRO 6.x) Level Of Abstraction vCenter Plugin APIC Plugin vSphere SDK APIC REST API Compute Network & Services

Workflow Trace – APIC Plugin INPUT – Create Network Network Name Subnet DVS/VMM-Domain Name

Workflow Trace – APIC Policies APIC Plugin INPUT – Create Network Network Name Subnet DVS/VMM-Domain Name APIC POLICIES CREATED in APIC by plugin Tenant Application Profile (AP) End Point Group (EPG) L3 Context/VRF (CTX) L2 Bridge Domain (BD) Association of EPG to DVS/VMM-Domain

Workflow Trace – APIC Policies APIC Plugin INPUT – Create Network Network Name Subnet DVS/VMM-Domain Name APIC POLICIES CREATED in APIC by plugin Tenant Application Profile (AP) End Point Group (EPG) L3 Context/VRF (CTX) L2 Bridge Domain (BD) Association of EPG to DVS/VMM-Domain vCenter Resources created by APIC PortGroup for Tenant Network/EPG in specified DVS

Network Plans

Similar to Amazon VPC Bring your own IP address space Extend your private cloud to public Similar to Default Plan in Amazon You need network service but don’t care about what IP addresses.

Features Shared Network Virtual Private Network Isolated Networks ✓ Firewall Shared Load Balancer Shared Services Public Internet Access Private Address Space

In Practice Shared Bridge Domain is in common VPC Bridge Domain is in Tenant

Shared Network Plan vRealize Tenant user can create EPG(Network) and Security Policy (Contract). All EPGs are in the BD default in common tenant. VRF: default (in common tenant) Tenant-Pepsi Tenant-Coke Tenant-Common L3out: default BD1 192.168.100.1/24 App DB Web C App DB Web C BD: default 192.168.1.1/24

Virtual Private Network Plan vRealize Tenant user can create Bridge Domain in addition to EPG and Contract. For L3out connectivity, the EPG needs to be leaked into the common BD. Tenant-Coke Tenant-Pepsi Tenant-Common VRF VRF VRF: vpcDefault BD-Coke 192.168.101.1/24 BD: vpcDefault 192.168.1.1/24 BD-Pepsi 192.168.101.1/24 Web App DB Web App DB C L3out: vpcDefault C C C C

Service Blueprints Service Blueprints act on the Network (ACI) only

Service Blueprints Admin: Tenant: Create APIC Handles Create VMM Domains Create Tenants Create Subnets in Common Create L4-7 Devices Create EPGs Create Contracts Provide Contracts Consume Contracts Consume L3Outs Consume L4-7 Devices

Example logical topology Create Network - Shared Example logical topology Bridge Domain: default Primary Gateway 10.100.1.1/24 web-host1 EPG: web-hosts 10.100.1.75 ANP: default VRF: default Tenant: coke Tenant: Common

Attach L3 Example logical toplogy Outside EPG: defaultInstP External Host 10.100.100.1/24 Outside Node-101/eth1/5 Node-102/eth1/5 EPG: defaultInstP Bridge Domain: default web-host1 EPG: web-hosts 10.100.1.75 Contract = Allow Communication Primary Gateway 10.100.1.1/24 ANP: default VRF: default Tenant: coke Tenant: Common

Machine Blueprints create Compute and Network resources simultaneously

No more placing the NIC into the right portgroup

Admin: Tenant: Create Machine Blueprint Web Create Machine Blueprint App Create Machine Blueprint DB Deploy Machine Web Deploy Machine App Deploy Machine DB Deploy Multi-Machine Web-App-DB

Single Machine – Web Tier Example logical topology Bridge Domain: default Primary Gateway 10.2.0.1/24 web-XX EPG: web-XX 10.2.0.XX ANP: default VRF: default Tenant: green Tenant: Common

Multi-Machine – 3 Tier Example logical topology Outside Node-101/eth1/5 EPG: defaultInstP Bridge Domain: default Contract = Allow Communication Contract = Allow Communication Contract = Allow Communication EPG: db-xx EPG: app-xx EPG: web-xx ANP: default Primary Gateway 10.100.1.1/24 VRF: default Tenant: green Tenant: Common

vRA IPAM

vRealize Can Provide IPAM Using Network Profiles

Installation

Prerequisites ie. Day 0 Operations Fabric bring-up Access Policies L3 Out Configuration Service Graph Templates/Devices Security Domains/Tenant User AEP

Fabric Bring-Up and Access Policies Brazos based image required (1.2+) Bring up the fabric as usual – all topologies are supported Configure access policies between Leaf switches and ESXi Hosts – as usual ensure there is CDP/LLDP enabled between leaf and host.

L3 Out Configuration Create any L3 Out configurations in the Common Tenant that you wish to be consumed in User Tenants Name the L3 Out policy anything you like Critical: External EPG must be named “[L3OutName]InstP” Create two policies “default” for shared plan, “vpcDefault” for VPC plan

Security Domains / Users vRealize plugin will require TWO user accounts Account ONE needs administrative privileges i.e. can create/read/update/destroy objects in the Common Tenant, Access Policies, and VMM Domains. Account TWO needs restricted Tenant privileges i.e. can only read Common Tenant and VMM Domains, but can CRUD objects in their own tenant. RBAC rules are enforced through APIC not the Plugin

The Plugin Package vRealize Automation (vRA) Plugin vRealize Orchestrator (vRO) Plugin

Utils Gets Troubleshooting logs Installs restart/rmapic on Automation Appliance

Builds setup specific Templates Services Builds setup specific Templates Push templates to APIC

vRO Plugin - Install Follow the install guide in the documentation Tips: Make sure services are all running on vRealize appliance Enabling vco configuration server By default the server is stopped – SSH to application VM and ‘service vco-configurator start’ Plugin Upload Browser issues: Chrome and Safari won’t allow upload of .dar Does plugin say “Installation ok” Version Mismatch: Need to reset plugin numbering Corrupted Installation: Full plugin removal using script

vRO Plugin – Install (cont.) Verification Cisco APIC Plugin appears on left hand tab Orchestrator Client Switch to Design mode Under packages check com.cisco.apic package is present Under workflows check Cisco APIC workflows folder and workflows are present

Troubleshooting

vRO Troubleshooting - Running Must add at least TWO APIC handles vRO Inventory View ONLY Tenants that have been “Added” via vRO will show in the inventory – even if they already exist on APIC you need to add them again Inventory is collected using permissions of APIC handle – if you can’t see it on APIC then vRO can’t see it Run Workflow by Clicking green arrow String inputs are case sensitive (e.g. make sure to spell VMM domain correctly) Logs are available for each run APIC exceptions are passed up to vRO (e.g. user does not have RBAC permission)

vRO Troubleshooting – Running (cont.) Collecting Logs: Handy script included with package apic-vrealize-1.0.1.<build>/utilsl/get_logs.sh Collects /var/lib/vco/configuration/logs/catalina.out /var/lib/vco/app-server/logs/catalina.out /var/lib/vco/app-server/logs/server.log

vRA Troubleshooting – Running Must add at least TWO APIC handles (can be done in vRO) Must add at least one Tenant (can be done in vRO) Request Blueprint: String text boxes are case sensitive again View Request state via “Requests” Click view details to see parameters Status should read “Successful” – if it says “Failed” check out the vRO logs

vRA Troubleshooting – Running (cont.) The vRA blueprint calls a vRO workflow If the vRA blueprint fails check the corresponding workflow Connection between vRA – vRO can fail “Failed to retrieve form from provider” – refresh connection between vRA and vRO using Advanced Services

vRA Troubleshooting – Running (cont.) Machine Prefixes: These MUST be equal for the multi-machine workflow to work If you provision a single machine it will increment and cause an issue Go to Infrastructure > Blueprints > Machine Prefixes

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.