Category Archives: vmware blog

Vmware blog

By | 13.07.2020

Mar 10 Your complete guide to all the essential vSphere 7. Bookmark this page and keep checking back as it will continue to grow as new links are added everyday. Also be sure and check out the Planet vSphere-land feed for all the latest blog posts from the Top vBloggers. VMware announces vSphere 7. Introduction to vSphere 7 VMware.

VMware vSphere 7. Yellow Bricks. Virtualization Is Life! Leave comment. VMware just announced the latest release of vSphere, 7. Note this is just the announcement, VMware typically does the announcement first and the GA is usually about 30 days later. If I had to guess I would say the longer delay between major releases was caused by the native Kubernetes integration that is a big part of vSphere 7. There is a lot in this release but the centerpiece is undoubtedly the new native support for Kubernetes that VMware announced back at VMworld as Project Pacific.

I asked why this was the case and was told that it is dependent on NSX-T and to set customers up for success VCF provides the best on-boarding experience. The support for Kubernetes is being sold under the name, vSphere with Kubernetes and will come in Standard, Advanced and Enterprise editions.

Look for VMware to publish what you get with each edition and what each edition will cost you. From what I heard at launch only vSAN will be supported as storage for vSphere with Kubernetes, as VCF does not yet support vVols as primary storage in workload domains this is in the works though. However VASA 1. To get all this Kubernetes in vSphere goodness you will need to be running all the newest versions of VMware products which are part of the VCF 4.

The full BOM is listed below:. Besides Kubernetes support there is a lot more in vSphere 7. As far as storage goes most of the enhancements in vSphere 7. The biggest one being that SRM 8. With this new support hopefully more vendors support it as well, I know at least one who is just about to support it and another that will be coming soon as well.

In addition vVols is also supported with vROPs 8. Now they will be visible inside vROPs. So there are a lot of great things in this release and a lot of changes as well which begs the question, how fast will users migrate to vSphere 7. I still know customers that are running vSphere 5. I suspect only customers that are interested in the new Kubernetes support will migrate to vSphere 7. I think the migration to vSphere 7. In addition I think the native Kubernetes integration may intimidate the traditional vSphere admin who is not used to dealing with containers and wants to avoid the complication that this introduces into their core products.

Whether you plan on upgrading to vSphere 7. At some point you will have to migrate to vSphere 7. Be sure and check out my vSphere 7. Mar 04 The most recent version of VMware Tools 11 is available for download.

The good news is that it supports Mac OS! However, the bad news is that the development of novel Linux functions has seemingly stopped. The more elaborate your infrastructure is, the harder it is to maintain. Any admin knows that even such action as mere traffic distribution can become quite a headache. Well, not for long. Find out about different types of load balancing with vSwitch! If you have worked with the virtualized infrastructure for a while now, you probably know too well that VMs inevitably start to have performance issues.

A decent file server is a must-have for any more or less successful business venture.

vmware blog

However, it has to correspond to the specific basic requirements, which is most commonly not taking to many resources and offering easy and efficient access control management.

Wondering how to build such a file server on ESXi? Look it up here! Network traffic is one of those things that are vital for your workflow in all ways. Every admin knows a few tricks to find a short way when testing your VMs. The perfect infrastructure could never exist, but our goal is to move towards one. My beginner colleagues are often wondering what virtual disk is preferable to choose. As the title is speaking for itself, it is quite clear that today, I am going to discuss various methods to open and close firewall ports on ESXi hosts.

It is useless to consider whether configuring firewall rules is harmful or not since every admin once in a while meets the necessity of fine-tuning network to distribute access rights. So, you ought to know all the tools at your disposal one way or another. Last year, my colleague asked me for advice. So, initially, this material was intended to serve as a manual. However, since I got a similar question once more just recently, I realized that this topic could be interesting to the others as well, which is why I decided to share this guide, hoping it will be useful.

Skip to content. Read More.And if you want to take full advantage of the elasticity, economics and innovation of the cloud, you usually have to write a new application.

Google Cloud VMware Engine is a first-party offering, fully owned, operated and supported by Google Cloud, that lets you seamlessly migrate to the cloud, without the cost or complexity of refactoring applications, and manage workloads consistently with your on-prem environment. You reduce your operational burden by moving to an on-demand, self-service model, while maintaining continuity with your existing tools, processes and skill sets, while also taking advantage of Google Cloud services to supercharge your VMware environment.

Google Cloud VMware Engine is a unique solution for running VMware environments in the cloud, with four areas that provide a differentiated experience: a user experience, b enterprise-grade infrastructure, c integrated networking and d a rich services ecosystem. Within a few minutes, you get a new environment, ready to consume.

VMware Carbon Black TAU Threat Analysis: The Evolution of Lazarus

Compare that to the days and weeks it takes to design a new on-prem data center, ordering hardware and software, racking, stacking, cabling and infrastructure configuration.

Not only that, but once the environment is live, you can expand or shrink it at the click of a button. To further simplify the experience, you can provision VMware environments using your existing Google Cloud identities.

Consumption associated with the service is available in the standard billing views in the Google Cloud Console. And when you need to use native VMware tools, simply log into the familiar vCenter interface and manage and monitor VMware environment as you normally would.

Compounding the challenge of rewriting those applications for the cloud is how you manage the application after you rebuild it—how you protect it from failures, monitor it, secure it, and so on. With this service, you can extend or bring your on-premises workloads to Google Cloud in minutes—and without changes—by connecting to a dedicated VMware environment. You also receive integrated support from Google Cloud—a one-stop shop for all support issues, whether in VMware or the rest of Google Cloud.

Google Cloud VMware Engine is built on high-performance, reliable and high-capacity infrastructure, giving you a fast and highly available VMware experience, at a low cost. The environment includes:. Fully redundant and dedicated Gbps networking, providing This enables blazing fast performance with the scale, availability, reliability and redundancy of a distributed storage system. Since VMware allows compute over-provisioning, many workloads in existing environments are often memory- or storage-constrained.

The larger memory and storage capacity in Google Cloud VMware Engine nodes enables more workload VMs to be deployed per node, lowering your overall cost. The networking bandwidth to other hosts in a VMware vSphere cluster is also dedicated. This means that you get not only the privacy and security of a dedicated environment, but also highly predictable levels of performance.

This means you can use standard mechanisms such as Cloud Interconnect and Cloud VPN to connect to the service, as you would to any other service in Google Cloud. This eliminates the need to establish additional, expensive, bandwidth-limited connectivity.

You also get direct, private, layer 3 networking access to workloads and services running on Google Cloud. You can connect between workloads in VMware and other services in Google Cloud with high-speed, low-latency connectionsusing private addresses. This provides faster access and higher levels of security for a wide variety of use cases such as hybrid applications, backup and centralized performance management.

By eliminating a lot of networking complexity, you get a seamless, secure experience that is integrated with Google Cloud. The compute and storage infrastructure is single tenant —not shared by any other customer. Since the service provides a native VMware platform, you can continue to use those tools, with no changes.

By elevating system privileges, you can install and configure third-party tools as you would on-prem. Third parties such as Zerto are taking advantage of this integration for mission-critical use cases such as disaster recovery.

You can also benefit from native Google Cloud services and our ecosystem partners alongside your VMware-based applications. For instance, you can use Cloud Storage with a third-party data protection tool offered by companies such as VeeamDell, Cohesityand Actifio to get a variety of availability and cost options for your backups.On February 14, the U.

This group, also known as the Lazarus Group, continues to be very active. On startup, it decodes the address of its C2 server and then attempts to connect to it. If it is successful then it will send out basic host information to the C2 and await further commands. During this research we were able to find samples with compilation timestamps dating back to as well as a newer sample with a compilation timestamp of HotCroissant samples with a compilation timestamp older than the one listed in the DHS report are all almost identical.

The main difference in samples is the C2 server IP address. There are a few interesting differences that are worth mentioning.

vmware blog

One of the samples appeared to have the basic string obfuscation disabled and in turn the C2 server IP address is easily identifiable. Another of the samples had a C2 server IP address in the reserved private IP address range along with a few additional debug messages. This appears to be a testing version of the trojan.

Welcome to the Tech Zone Blog

The most recent HotCroissant sample found, while almost functionally equivalent to the DHS sample, is far more obfuscated. First, the sample is UPX packed. Next, in addition to the basic string obfuscation of earlier samples, this newer sample has a second string obfuscation technique used. FInally, the newest sample uses dynamic API lookups to attempt to make static disassembly harder to understand.

The most recent sample does have some new functionality as well. There are also a handful of new C2 commands not seen in earlier versions. The C2 protocol is fairly robust. Requests from the C2 server and responses from the trojan make use of a specific command format as seen below:. Opcode uint The Opcode field indicates the action the C2 server is requesting or information the trojan is sending back to the C2.

TxnID is a transaction number sent from the C2 server that is echoed back in some responses from the trojan. Opt1 and Opt2 get used in commands as additional parameters.

The Size field indicates how many bytes are expected in the Data field. The Data field is used for string parameters for the commands to be executed. The entire command structure gets compressed with zlib and then encrypted using a custom stream cipher. This encoded information then gets an additional header added and sent across the network.With the explosion of data stores and cloud services, data now resides across many disparate systems and in a variety of formats.

When multiple datasets exist in external systems, it is often necessary to perform a lengthy ETL extract, transform, load operation to get data into the database.

But what if we only need a small subset of the data? What if we only want to query the data to answer a specific question or to create a specific visualization? In this case, it's often more efficient to join datasets remotely and return only the results, rather than negotiate the time and storage requirements of a full data load operation.

Enterprises have moved away from the traditional approach of storing all data in a centralized data warehouse. Consider a data source tracking monthly sales across many years shown in Figure 1 below. This operational data is stored in MySQL.

vLaunchPad

It becomes cost prohibitive to re-architect and migrate these data stores. Yet, the business still needs to query hot, warm, and cold data from time to time. Consider skipping the pain of a full ETL operation. Just join the remote datasets, and then return only the results. Instead, use a federated query! A federated query joins different data sources, and returns only a copy of the data we need. The original dataset remains stored in its source system. PXF is designed to make it easy for Greenplum to query data in external data sources.

PXF speeds retrieval of data with parallel, high-throughput access. When a Greenplum user runs a query against a PXF external table, the query plan is generated, and then dispatched from the Greenplum master host to the Greenplum segments.

A PXF Server receives at least as many requests as the number of segment processes running on the host, and potentially more if the query is complex and contains multiple processing slices. Each such request gets a PXF Server thread assigned to it. It enables you to perform actions like starting and stopping the server, checking the server's status, and other administrative tasks.

For more details on the architecture, watch our PXF overview. PXF has three interfaces to read and write data from external data sources: the FragmenterAccessorand Resolver. Fragmenter is a functional interface that splits the overall dataset from an external data source into a list of independent fragments that can be read in parallel.

The Fragmenter does not retrieve the actual data; it works only with metadata. It also converts data into individual records. Resolver is a functional interface that decodes when reading or encodes when writing. It then maps field data types and values into a format that Greenplum or the external system understands.

PXF supplies multiple implementations for these interfaces that utilize different communication protocols and support multiple formats of data.While writing my previous articleI remembered the days when I was only building my first lab.

It was a bit tough, you know, as vSphere yet was a black box for me. Those thoughts brought me to the idea of writing this article. The article in which I share my know-how of building a minimalistic lab using… only a PC, switch, and laptop. I hope that both of them will be really handy for you!

vmware blog

As it comes from the article title, today, I take a closer look at building a minimalistic environment. And, since it is just your starting point, you may not be ready yet to invest tons of money and time in the lab. Well, then what about a free setup? The setup that I use today is conditionally free.

It is running on ESXi Evaluation since, for my money60 days trial period is enough to enjoy vSphere advantages and get used to its quirks. This article can be handy for guys who have just started with virtualization or work indirectly with it.

I know that these guys are often short on resources and do not want to purchase expensive equipment and licenses therefor. Yet, everybody who reads this scribbling has a PC!

So, why not use it to build a home lab? Running a PC-based lab has several drawbacks and limitations. But, there are workarounds that I am happy to share with you here.

For UEFI-based PCs, you need to look through the motherboard documentation as a way to enable processor virtualization may be different for each case. You need just these 4 small things:. HCL might be a problem.

The thing is, there may be some hardware components in your setup that officially do not support ESXi i. Such strict HCL may be a good reason to consider building a virtual setup. It is just cheaper and provides you the room for playing around with configurations. I told you at the beginning that I am going to use only my computer, remember? Why did I miss ESXi hardware requirements? Well, I am sure that your hardware fits them.

So, yes, I do not see any problems to build a home lab using more or less modern PC! I also used here the laptop on Windows 10 The hardware configuration of the former does not matter for this study. The latter is used to let the PC and laptop talk to each other.

For building the lab, you need ESXi 6. They are available once you register at the official VMware website. It should be noted that the connection between Layer 2 VMs is disabled by default. Well, this is a Nested Virtualization quirk. Also, note that you need to assign some resources to vCenter Server in advance to avoid it altering the performance of VMs from Layer 2.

Trust me, taking a just a tiny fraction of resources available for both ESXi hosts is the only thing you can do to make sure that everything runs smoothly at the end. I have distributed the resources across the Layer 1 VMs. Well, I think it is enough for this study.On Monday at VMworld, we put a name to that strategy—VMware Tanzu is our portfolio of products and services to transform the way the world builds software on Kubernetes. And now I get to spell all that out here as a complete picture:.

The acquisition of Bitnami and pending acquisition of Pivotal super-charge the products and services we can bring to market through VMware Tanzu. VMware now has a far deeper connection to the developer community and can offer developers a complete modern application supply chain.

Bitnami packages and delivers applications for Kubernetes—with incredible reach. Today, the Bitnami Community Catalog offers applications and components that are installed more than 1 million times every month.

What is VMware vSphere ESXi and vCenter?

We announced Project Galleon to bring Bitnami capabilities to the enterprise to offer customized application stacks to their end developers. Pivotal is a strong steward of one of the most popular application frameworks in the world Spring and offers customers a leading commercial application platform Pivotal Application Service. Collectively, Bitnami and Pivotal reach nearly 5 million developers. VMware intends to be the leading enabler of Kubernetes for our customers and a safe haven for ecosystem partners in the challenging landscape of public cloud.

Project Pacific will put Kubernetes capabilities at the fingertips of hundreds of thousands of vSphere customers and potentially millions of administrators. But importantly, it will also make our flagship vSphere product better—uniting VMs and containers to offer a single application platform for the future.

Operators will gain access to Kubernetes capabilities through a familiar set of tools and scripts, while developers will be able to access cloud resources using Kubernetes APIs. As we make Kubernetes more available across environments and development teams begin to leverage the service to support their modern application development, your footprint will become more complicated to manage.

We want to give our customers a way to operate Kubernetes consistently across clouds, clusters and teams to provide maximum operational efficiency matched with an enterprise toolkit. They will provision new Kubernetes clusters in these environments from VMware Tanzu Mission Control and leverage a policy engine to establish guardrails. Specifically, operators will apply policies for access, quotas, back-up, security and more to individual clusters or groups of clusters.

Meanwhile, developer teams will have access to workspaces in which they can freely consume resources and collaborate. It has been a wild week heck, not even a full weekand VMware has announced a significant plan to acquire Pivotal AND introduced the VMware Tanzu portfolio of products and services.

We have combined developer tools and a modern application supply chain with long-standing infrastructure leadership. There is so much energy and innovation to harness here—this is only the beginning.

The VMware Tanzu portfolio will continue to grow and reinforce our ability to lead customers to build modern applications, run Kubernetes with consistency across environments, and manage their entire Kubernetes estate with total control and confidence. Well, in Swahili the word Tanzu refers to a branch. These forward-looking statements are subject to applicable safe harbor provisions under federal securities laws. VMware assumes no obligation to, and does not currently intend to, update any such forward-looking statements after the date of this release.

This communication does not constitute an offer to sell or the solicitation of an offer to buy VMware securities or the solicitation of any vote or approval.


thoughts on “Vmware blog

Leave a Reply

Your email address will not be published. Required fields are marked *