What‟s New in vSphere 4.0: Technical Overview Tom MacKay VCP, CNE, Master ASE Senior Systems Engineer Strategic/SLED Accounts Ohio Valley South [email protected]Jeff Hunter VCP Senior Systems Engineer Enterprise Accounts Ohio Valley South [email protected]
114
Embed
What‟s New in vSphere 4.0: Technical Overviewx505.free.fr/esx4/vSphere.VMUG.Technical.presentation.pdf · DRS Hot Add Availability Security Scalability vCompute vStorage vNetwork
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
LSI 3442e-R and 3801e (1068 chip based) 3Gb SAS adapters
Each virtual machine can connect to up to two passthrough devices
Increases performance but trades off losing several virtualization features
VMotion, Hot add/remove of virtual devices, Suspend and Resume, Record and Replay, Fault Tolerance, High Availability, Memory Over-commitment and page sharing
I/O MMU
I/O Device
Virtualization
Layer
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Aggregated view of virtual networking
Datacenter level networking
(versus host level)
Policies, logs and statistics follow the VM
A unified infrastructure for networking
services (monitoring, filtering, mgmt)
Simplified setup and change; seamless
addition of capacity
Easy troubleshooting, monitoring and
debugging
Enables new security services
Pluggable for 3rd party integration
vNetwork Distributed Switch
vSwitch vSwitch vSwitch
App
OS
App
OS
App
OS
App
OS
App
OS
vNetwork Distributed Switch
vNetwork
Single logical virtual switch spanning
multiple ESX hosts
2Q/3Q 2009
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
An unified fabric to efficiently connect
users, compute and storage resources
Data, iSCSI, NFS and Fibre Channel all
concurrent on the same Converged
Network Adapters (CNA)
Simplify cable management in the data
center and reduce operational costs
Software FCoE Initiator (2010) to
preserve investments made on 10Gb
Ethernet NICs
Data Center Bridging native support
(2010+) to offer a lossless transport for
all traffic types.
vNetwork Unified Fabric
vNetwork Today 2Q/3Q 2009
App
OS
App
OS
App
OS
App
OS
App
OS
Unified IP and Fibre Channel storage
fabrics
Unified
Fabric
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Standard Switch Architecture
Service Console
Virtual
PhysicalPhysical NICs
Physical
Switches
vNICs
vSwitches
Port Groups VM Port GroupVMotion Port VM Port Group COS PortVMotion Port
ESXi Host 1 ESX Host 2
Network configuration at
the host level
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Virtual Machines Service ConsoleVMotion
Distributed Switch Architecture
Hidden
vSwitches
(IO plane)
Distributed
Switch
(Control Plane)
Distributed
Port Groups
Service Console
ESXi Host 1 ESX Host 2
Virtual
Physical
vCenter
Server
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
vSphere Client
Plug-In
DB Control Plane
vCenter Server
IO Plane
ESX
IO Plane
Virtual Control Plane
Appliance
Agent Agent
Third-Party Distributed Switches
vNetwork Appliance APIs allow
third-party developers to
create distributed switch
solutions.
ESX
vCenter Server
Extension
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.44
Benefits of Distributed Switches
vNetwork Distributed Switches…
Simplify datacenter administration
Enable networking statistics and policies to migrate with
virtual machines (Network VMotion)
Provide for customization and third-party development
VMware
Infrastructure 3
VMware
vSphere 4
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
2009 ESX/ESXi EnhancementsVirtual Machines
VMware ESX
CPU H/W AssistLeverage CPU virtualization assist,
multi-mode execution
HW assist &
memory efficiency
Nested paging (RVI/EPT), ballooning,
page sharing, large page support
Performance & efficiency
VMXNET Generation 3, VMDirectPath
(NIC), TCP/IP stack optimizations,
iSCSI improvements, 40Gb/s line rate
ESX Scalability64 core hosts, 1TB RAM, 512 VMs per
host, efficient memory utilization
VM scalability
vNetwork 2Q/3Q 2009
Networking
CPU
Memory
Storage
8-way vSMP and 255 GB of RAM,
multi-core vCPU, hot plug CPU and
memory
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Power Off
Distributed Power Management (DPM)
Right-size Capacity
Use fewer servers when demand low
Use more servers when demand high
Minimize Power Consumption
Power off inactive hosts
Bring capacity back online as
workload needs increase
Power-on via WoL, IPMI, iLO
Integrated with DRS
Works in concert with load balancing
Respects QoS policies
No disruption or downtime to VMs
DRS Cluster
vCompute Today 2Q/3Q 2009
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
vSphere 4.0 Application Services: Availability
Application
Services
VMware vSphere™ 4.0
CU
RR
EN
TN
EW
Enhanced VMotion compatibility
Storage VMotion enhancements
VMware HA enhancements
VMware Fault Tolerance
VMware Data Recovery
VMware HA
VMotion
Storage VMotion
NIC/HBA teaming
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Enhanced VMotion Compatibility
vCompute
G1 G2G1 G3
Enable Enhanced VMotion Compatibility
Today 2Q/3Q 2009
Protects your server investment
No complex compatibility rules
EVC allows VMotion between different server generations
HW is automatically configured
Incompatible HW is not allowed
Flexible baselines provide user control
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Enhanced VMotion Compatibility (EVC)
EVC Cluster
CPU Baseline Feature Set
EVC prevents migrations
with VMotion from failing
due to incompatible
CPUs.
CPUI
DCPUI
DCPUI
D
CPUI
D
X… X… X…
K…
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
EVC Cluster Requirements
Hosts
CPUs from a single vendor, either Intel or AMD
Running ESX Server 3.5 Update 2 or later
Connected to vCenter Server
Hardware virtualization support (AMD‐V or Intel VT) enabled
AMD No eXecute (NX) or Intel eXecute Disable (XD) technology
enabled
Support hardware live migration (AMD-V Extended Migration or
Intel FlexMigration) or have baseline processor of intended feature
set
Virtual Machines
Powered off or migrated out of cluster when EVC is enabled
Applications on virtual machines must use CPUID instructions
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Storage VMotion in vSphere 4
Enhancements
Can administer via vSphere Client
Supports NFS, Fibre Channel, and iSCSI
No longer requires 2 x memory
Supports moving VMDKs from thick to thin
formats
Can migrate RDMs to RDMs and RDMs to
VMDKs (non-passthrough)
Leverages new vSphere 4 features to speed
migration
Limitations
Virtual machine cannot include snapshots
VM must be powered off to simultaneously
migrate both host and datastore
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Storage VMotion in vSphere 4
Source Destination
12 3
4
5
1. Copy virtual machine files except
disks to new datastore
2. Enable changed block tracking on
the virtual machine‟s disk
3. “Pre-copy” virtual machine‟s
disk and swap file from source
to destination
4. Invoke fast suspend/resume on
virtual machine
5. Remove source home and disks
of virtual machine
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
New HA Cluster Settings
Ability to
suspend host
monitoring
Choice of three
admission
control
strategies
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
VM Monitoring
Enable automatic
restart due to failure
of guest operating
system
Determine how
quickly failures are
detected
Set monitoring sensitivity
for individual virtual
machines
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
SecondaryPrimary
VMware Fault Tolerance (FT)
vLockstep Technology
New
Secondary
vLockstep Technology
VMware FT provides zero-downtime, zero-data-
loss protection to virtual machines in an HA
cluster.
New
Primary
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
How VMware FT Works
VMkernel
Log Buffer
VMkernelVMM VMM
Primary
Virtual Machine
Secondary
Virtual Machine
Log Buffer
Heartbeat?
Record Logs
Read/Write Read
Single Copy of Disks on Shared Storage
Log Update? Log Read?
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Enable Fault Tolerance with a Single Click
Primary Virtual Machine >
Summary Tab
After you turn on Fault
Tolerance, the Status tab on the
primary virtual machine shows
Fault Tolerance information.
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Requirements for VMware FT
vSphere
Configuration
VMs on hosts in HA cluster
Host certificate checking enabled on all hosts
Storage VMs stored on shared storage
VMs provisioned with thick virtual disks
VMs not stored on physical RDMs
Networking Minimum of two VMkernel gigabit NICs for VMotion and
two for FT logging
Additional gigabit NICs for normal network traffic
Processor Uniprocessor VMs on uniprocessor or SMP systems
Hosts from same CPU model family
See KB/1008027 at http: //kb.vmware.com
Host BIOS Turn on Hardware Virtualization (HV)
Apply same instruction set extension configuration
Turn off hyperthreading
58
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
FT Interoperability
Fault-tolerant virtual machines do not support:
59
SMP
Non-replayable devices such as
USB, physical floppy, and sound
Paravirtualized guests
Taking snapshots
Hot adding virtual devices, memory,
and CPU
Nested Page Tables/Extended Page
Tables (NPT/EPT)
Microsoft Cluster Services
(MSCS)
NPIV
Some network interfaces for
legacy network hardware
Automatic DRS recommendation
application
Storage VMotion
VMDirectPath I/O
For details, see the vSphere Availability Guide
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.60
VMware Data Recovery
VMware‟s Backup/Recovery
Solution based on APIs for
Data Protection
Agentless disk-based backup
and recovery
De-duplication and incremental
backups to save disk space
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
VMware Data Recovery Key Components
Storage
Servers
VMware ESX/ESXi
Virtual Machines
vCenter ServerData
Recovery
vCenter Plug-in
> With vSphere Client plug-in, allows
configuration and management of
backup/recovery appliance
> Wizard driven backup and restore job creation
> Storage of backup configuration in vCenter
Server database and awareness of
HA/VMotion/DRS
VMware ESX/ESXi
> Provides VSS support
> Change block tracking functionality allows backups to
be more efficient
Storage
> Any VMFS storage: DAS, iSCSI or Fibre
Channel storage plus NFS and CIFS shares as
target
> All backed up virtual machines are stored on
disk in a deduplicated datastore
Backup and Recovery Appliance
> OVF appliance
> Leverages vStorage APIs for Data Protection to
discover, manage backup and restore
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
vSphere 4.0 Application Services: Security
Application
Services
VMware vSphere™ 4.0
CU
RR
EN
TN
EW VMware VMsafe
VMware vShield Zones
Thin ESXi hypervisor with locked-down interfaces
No dependence on general-purpose OS
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Protection Engine
VMware vSphere™
VMware VMsafe
API that enables protection of VMs
by inspection of virtual components
in conjunction with hypervisor
Isolation of protection engine from
malware
Broad ranging coverage of virtual
machine CPU, memory, storage and
network
Application
Operating System
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
Capabilities
Bridge, firewall, or isolate VM zones based
on familiar VI containers
Monitor allowed and disallowed activity by
application-based protocols
One-click flow-to-firewall blocks precise
network traffic
Benefits
Well-defined security posture within
virtual environment
Monitoring and assured policies, even
through Vmotion and VM lifecycle events
Simple zone-based rules reduces policy
errors
vShield Zones
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
VMware vShield Zones Architecture
vShield Host Gateway
Virtual Network Monitoring
Virtual Network Firewall
Transparently Managed
vShield Manager
Centralized Monitoring
Centralized Policy Assignment
Web-based interface
VMware ESX VMware ESX
vShieldvShield
VMware ESX
vShieldVMware
vCenter
VMware
vShield
Manager
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
vSphere 4.0 Application Services: Scalability
Application
Services
VMware vSphere™ 4.0
CU
RR
EN
TN
EW
Increased host scalability
8-way SMP and 255 GB of virtual machine RAM
Hot add of virtual CPU and memory
Hot plug devices
Hot extend of virtual disks
DRS shares and reservations allow apps to shrink and grow based on priority
Availability Security Scalability
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
% o
f A
pplic
ations
Application’s Performance Requirements
IOPS
Network
Memory
CPU
95% of applications
< 100
< 300 KB/s
< 4 GB
1 to 2 CPUs
1. Source: VMware Capacity Planner assessments
ESX 3.5 capabilities
100,000
9 Gb/s
64 GB per VM
4 VCPUs
vSphere (2009)
capabilities
364,000*
30 Gb/s
255 GB per VM
8 VCPUs
Very Large VMs, Powerful Performance
Scalability Today 2Q/3Q 2009
*As of 5/18/09 - http://www.stockhouse.com/News/USReleasesDetail.aspx?n=7319264
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
VMware vSphere: The Virtual Datacenter OS from VMware
vCloud
vCenter
Management
VServices
On-premise Infrastructure
SaaSLinux GridWindows J2EE.Net
VMware Infrastructure -> virtual datacenter OS
Application vServices
Scalability
Infrastructure vServices
SecurityAvailability
vNetworkvStoragevComputeCloud
vServices
…….
Web 2.0
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.
VMware vSphere: The Virtual Datacenter OS from VMware
vCloud
vCenter
Management
VServices
On-premise Infrastructure
SaaSLinux GridWindows J2EE.Net
VMware Infrastructure -> virtual datacenter OS
Application vServices
Scalability
Infrastructure vServices
SecurityAvailability
vNetworkvStoragevComputeCloud
vServices
…….
Web 2.0
Need a Break
here???
Evolution of Virtualization Management
Element management of
hypervisors and VMs
Management of a distributed,
dynamic, shared infrastructure
Management of
private cloud
Transition physical to virtual
Convert to virtual, Inventory mgmt,
planning, provisioning, patching
Converter, CapacityPlanner,
vCenter, Update Manager
Manage large & complex virtual
datacenters w/ tier 1 workloads
Scalability, configuration automation
and compliance, operations mgmt
Linked VC, ConfigControl, Operations
mgmt, CapacityIQ, AppSpeed
Utility computing -policy driven lights-out
automation
Self service,policy driven automation, IT
service costing, SLA based mgmt
Lifecycle Manager, Access Point,
Chargeback Manager
Phase 1 Phase 2 Phase 3
Management benefits in a private cloud…
• reduced opex, dynamic & responsive IT
• high management efficiency
• Centralized mgmt via end user empowerment
• SLA based IT services subscription
• hidden complex configuration & operational
plumbing
• standardize & scale management tasks easily
& on demand
These features are representative of feature areas under development. Feature commitments must not be included in contracts,
purchase orders, or sales agreements of any kind. Technical feasibility and market demand will affect final delivery.71