Loading

12, Aug 2024
The Tanzu Kubernetes Grid managed service – Exploring Integrated Services Configuration

The Tanzu Kubernetes Grid (TKG) managed service is included as part of the basic offering of VMware Cloud on AWS. Users can run, deploy, manage, and operate Kubernetes clusters on top of VMware Cloud on AWS, like they can with on-premises vSphere. The SDDC console provides a mechanism to enable…

30, Jun 2024
The VMware HCX service – Exploring Integrated Services Configuration-3

Figure 7.32 – HCX compute profile resource activation Figure 7.33 – Select Deployment Resources and Reservations Figure 7.34 – Select Management Network Profile Figure 7.35 – Select a vSphere replication profileNOTEIt’s possible to pair HCX appliances either using the internet or DX. If you would like to leverage DX for…

12, Dec 2023
Port mirroring – Understanding Networking and Security Configurations

Port mirroring allows us to copy and redirect packets to a destination monitoring device. This is useful for monitoring and analyzing specific traffic in use cases such as the following: Port mirroring configuration includes specifying the traffic to be monitored (referred to as the source) and determining the direction in…

3, Jun 2023
Domain Name System (DNS) – Understanding Networking and Security Configurations

VMware Cloud on AWS provides DNS services for the Management Gateway (MGW), Compute Gateway (CGW), and custom Tier-1 CGWs. Within the SDDC, default DNS zones are integrated for both the Management Gateway and Compute Gateway. Each zone is equipped with a preconfigured DNS forwarding service. The DNS servers set up…

1, May 2023
Policy-based VPN – Understanding Networking and Security Configurations

With a policy-based VPN, there is no routing protocol such as BGP, so the initial setup of the VPN connection is easier. However, administrators must manually update the routing tables on both ends of the network when new routes are added. From the VMware Cloud Console, navigate to Inventory >…

22, Mar 2023
Transit Connect – Understanding Networking and Security Configurations

VMware Transit Connect is a VMware Managed Transit Gateway (vTGW), which enables complex network topology, including inter- and intra-Region SDDC connectivity, AWS VPC connection, and much more. You deploy vTGW from the SDDC console through the SDDC groups feature, which lets customers manage multiple SDDCs and external AWS connectivity from…

2, Nov 2022
VMware Cloud on AWS NSX configuration overview – Understanding Networking and Security Configurations

This chapter focuses on the practical basics of SDDC networking and security functionality, starting from basic networking and security features, including NSX Micro-Segmentation, and Day 2 operations. You will learn the networking and security configuration essentials required for day-to-day work. The following topics are covered in this chapter: Before moving…

3, Sep 2022
Maintenance model – Configuring vCenter, vSAN, and VMware Cloud Console

VMware Cloud on AWS regularly updates customers’ SDDCs to deliver new features and bug fixes. These updates ensure that all SDDCs in the fleet have the same software versions. When an SDDC upgrade is scheduled, VMware will send customers an email notification. Typically, this email is sent 7 days prior…

12, Aug 2022
Contacting VMware for support assistance – Configuring vCenter, vSAN, and VMware Cloud Console

VMware Cloud on AWS is a service provided by VMware, which means that VMware offers direct support and manages the VMware infrastructure. In cases where a Managed Service Provider (MSP) delivers the service, the MSP takes ownership of the customer relationship and provides Tier-1 support. However, VMware remains responsible for…

2, Jun 2022
Compute Policies – Configuring vCenter, vSAN, and VMware Cloud Console

VMware Cloud on AWS comes with DRS automatically enabled. The DRS parameters at the cluster level are controlled by VMware and cannot be adjusted by the cloudadmin role. However, customers have the ability to create compute policies that incorporate affinity or anti-affinity rules using vSphere categories and tags within the…