VMware Refrence Cards
I just found these today. They are not new, but they are very useful and I wanted to share them:
They are basically an all-in-one reference cheat sheets for managing both VI3 and vSphere. I plan on getting one laminated for myself to keep around for a while. These will defiantly become part of my reference library and I will recommend them to my clients and contacts for sure. Thanks Forbes for spending time on those!
Date: Monday 28 Sep, 2009
First Look: VCP 4 (vSphere) Exam
As anyone that has taken any type of IT certification test knows, I cannot quote actual questions, but I wanted to write a post about what I used to prepare for the exam and offer some post exam guidance.
This exam differs from the VI3 test in a few ways. First off, it is now 85 questions versus the 60 of the VI3 test. It also seemed to ask for a more in-depth understanding of the software including some terminal commands (firewall related). I have updated my VCP page with the information below as well. Document titles are links (need to fix the CSS, apologies).
I would study the following documents from VMware:
Configuration Maximums for VMware vSphere – This is probably the most important document that you can commit to memory. Many of the questions will be indirectly asking questions about a maximum.
Basic System Administration- This is the VMWare document that talks about administration of a virtual infrastructure on a broad scale. It will help re-affirm what was taught in class about the administration of a virtual infrastructure.
ESX and vCenter Server Installation Guide- This guide covers the installation of ESX and vCenter. The partitioning section for ESX is of particular importance.
ESX Configuration Guide – This document covers the configuration of ESX. The sections of most importance are the networking and security sections.
Resource Management Guide - This guide offers in-depth discussion of resource management in vSphere.
I used the following additional resources:
Simon Long’s vSphere Study Notes – The most complete VCP study guide I have ever seen. It has direct links to each part of the exam blueprint.
Simon Long’s Practice Tests – These are great exams. The questions are in a format similar to the actual exam and he is adding questions all the time.
VMware Mock Exam – This is the sample test from VMware. In my opinion it is not as thorough as Simon’s, but it is another practice test none the less.
I hope that information helps. Simon’s blog is really an invaluable resource for preparing for this exam. Thanks Simon! As with any exam, go in with a strategy and take it slow. Good luck!
Date: Thursday 24 Sep, 2009
Tutorial: ESX 4.0 Syslog Configuration
This tutorial is intended to explain how to configure syslog on both ESX and ESXi to point to a remote syslog server (for this tutorial I will be using vSphere, but the concepts apply to earlier versions as well as many*nix distros). In both cases the configuration is fairly simple, but can be confusing. I also wanted to include a sample configuration that I use for syslog-ng which is an excellent logging platform for syslog.
ESX
First, I have a single host with ESX 4.0 installed and configured with a service console IP address. I have connected to this IP address with putty over SSH. Once logged in to the ESX server, there are just a few steps that need to be taken. Also, I use the VI editor – check on google for more information on VI and its commands. I am going to assume that readers posses a basic knowledge of this.
1. First, edit the syslog configuration file (/etc/syslog.conf) by typing:
vi /etc/syslog.conf
The display will look similar to the following:
Click To Enlarge
I added a line at the end of this file that has the following contents:
*.debug @<ip of syslog server>
What this will do is send syslog messages from all facilities and levels to the IP address of the server following the @ symbol. One caveat with this line is that the space between the *.debug and the @ symbol must be the tab character. If not the syslog daemon will simply drop the line. If you desire more than one destination, just add another line with a different host after the @ symbol.
2. Next we need to restart the syslog service, to do that enter one of the following:
service syslog restart
or
/etc/init.d/sysog restart
The display should look similar to the following:
Click To Enlarge
If there are any errors at this point, troubleshoot accordingly.
3. Next we need to open firewall ports for the syslog traffic. We are not able to do this through the service console, so we must do this at the command line. It is a pretty simple command and if it is successful, it won’t produce any output.
esxcfg-firewall –openPort 514,udp,out,”Syslog”
Click To Enlarge
4. Next we need to reload firewall rules on the server and then verify that the rule was added. For this, we need to type in two commands. The first one reloads the firewall (this will not produce any output if it is successful). The second one will query the firewall for all active rules and will produce a lot of output. The two commands are:
esxcfg-firewall -l
esxcfg-firewall -q
Click To Enlarge
The output outlined in red indicates the rule that we added. This change is not visible in the GUI – the only way to verify these changes is via the command line.
ESXi
This configuration is much simpler – you only need to change one variable in the advanced settings. One downside is that ESXi is limited to one destination server However, there are other ways to get around this (via syslog relays).
In ESXi the following configuration can be found by clicking on your server, then navigating to the configuration tab and then clicking on “Advanced Settings” under the Software Settings section. Once that window is open, there is a syslog section near the bottom. Expand that section and click on “Remote” and fill in an IP address or hostname in the box for the variable ‘Syslog.Remote.Hostname” and click save. Screenshot:
Click To Enlarge
Bonus
I wanted to include a sample syslog-ng config section for syslog-ng which is what I use to collect my syslogs and sort them accordingly. Syslog-ng is awesome because it allows much greater flexibility in the processing and archiving of logs. The extended configuration of syslog-ng is a topic for another post, but here is the configuration I use for most hosts:
Click To Enlarge
This configuration separates each server into an individual file by day according to the time from the source server (in this case the ESX server). This gives file names like “vm0.09.02.2009.log”, which is great for log rotation. Also note the “S_” infront of each macro; this tells syslog-ng to use the source information instead of re-writing the logs to the timezone of the syslog-ng server. It is also possible to filter based on syslog facility, but I will cover that in another post dealing with the analysis of ESX logs.
Update: Videos!
I am going to try and include videos of these tutorials, here is my first go at it so please be kind!
ESX:
Date: Monday 07 Sep, 2009
Microsoft Strikes Again
Today I was setting up Exchange 2007 on a VM in a test lab and I came across this when I was running the Best Practices Analyzer:
Click To Enlarge
The bit outlined in red shows a warning stating that “VMware Detected” which is ironic since VMware is a supported platform for exchange to run on and there are many resources on how to configure exchange on VMware. Just a funny find. Tutorial on configuring ESX and ESXi syslog coming up soon!
