Recent updates
-
L07 - SDDC Migration with HCX (Part 2)
Updated onArticleVMware Cloud on AWS provides a reliable, elastic, and highly scalable solution for customers who want to extend their workloads into the cloud.
However, when it comes to migration or bi-directional workload mobility, software and network incompatibilities between on-premises and cloud environments can complicate your migration process.
VMware Hybrid Cloud Extension (HCX) helps overcome those challenges by building an abstraction layer on top of existing site-specific implementations, allowing you to extend their networks and environments to the cloud seamlessly without the need for extensive reconfiguration and upgrades.
Here are some key benefits of HCX:
- Ability to migrate workloads across different versions of vSphere (6.0 or later).
- WAN optimization, compression, and de-duplication enable high throughput for faster migrations.
- Network extension enables stretching layer 2 networks between on-premises and VMware Cloud on AWS without the need for complex network reconfiguration. Virtual machines (VM) can be moved between on-premises and cloud environments with no need the change or re-assign IP addresses.
HCX is a software-as-a-service (SaaS) offering, available at no extra cost for VMware Cloud on AWS customers.
The HCX solution is built out of several component services, each supporting a specific function within the overall solution.
- HCX Enterprise Manager: System management component on the on-premises side, which is always deployed as a “source.”
- HCX Cloud Manager: System management component on the cloud side and is always deployed as “destination.”
- HCX-IX Interconnect Appliance: Provides replication and vMotion-based migration capabilities.
- HCX WAN Optimization Service: Provides improved network performance by using techniques such as de-duplication and compression to help speed up migrations.
- HCX Network Extension Service: Provides layer 2 extension capabilities, enabling VMs to migrate between on-premises and cloud without the need to re-IP.
VMC on AWS Labs VMware Cloud Expert: VMC on AWS (4-day) - VMCEXPERT2 Day 3
-
L07 - SDDC Migration with HCX - Configure HCX Connect & Service Mesh
Updated onArticleVMware Cloud on AWS provides a reliable, elastic, and highly scalable solution for customers who want to extend their workloads into the cloud.
However, when it comes to migration or bi-directional workload mobility, software and network incompatibilities between on-premises and cloud environments can complicate your migration process.
VMware Hybrid Cloud Extension (HCX) helps overcome those challenges by building an abstraction layer on top of existing site-specific implementations, allowing you to extend their networks and environments to the cloud seamlessly without the need for extensive reconfiguration and upgrades.
Here are some key benefits of HCX:
- Ability to migrate workloads across different versions of vSphere (6.0 or later).
- WAN optimization, compression, and de-duplication enable high throughput for faster migrations.
- Network extension enables stretching layer 2 networks between on-premises and VMware Cloud on AWS without the need for complex network reconfiguration. Virtual machines (VM) can be moved between on-premises and cloud environments with no need the change or re-assign IP addresses.
HCX is a software-as-a-service (SaaS) offering, available at no extra cost for VMware Cloud on AWS customers.
The HCX solution is built out of several component services, each supporting a specific function within the overall solution.
- HCX Enterprise Manager: System management component on the on-premises side, which is always deployed as a “source.”
- HCX Cloud Manager: System management component on the cloud side and is always deployed as “destination.”
- HCX-IX Interconnect Appliance: Provides replication and vMotion-based migration capabilities.
- HCX WAN Optimization Service: Provides improved network performance by using techniques such as de-duplication and compression to help speed up migrations.
- HCX Network Extension Service: Provides layer 2 extension capabilities, enabling VMs to migrate between on-premises and cloud without the need to re-IP.
VMC on AWS Labs VMware Cloud Expert: VMC on AWS (4-day) - VMCEXPERT2 Day 3
-
Lab 06 - Inter-SDDC and Native VPC Connectivity
Updated onArticleAn SDDC deployment group uses VMware Transit Connect to provide high-bandwidth, low-latency connections between SDDCs in the group and other VPCs in the same region. You can also add a Direct Connect Gateway (DXGW) to provide centralized connectivity to your on-premises SDDCs.
An SDDC deployment group (SDDC Group) is a logical entity designed to simplify the management of your organization's VMware Cloud on AWS resources at scale. Collecting SDDCs into an SDDC Group provides several benefits to an organization with multiple SDDCs whose workloads need a high-bandwidth, low-latency connection to each other. All network traffic between group members travels over a VMware Transit Connect network. Routing between compute networks of all SDDCs in a group is managed automatically by VMware Transit Connect as subnets are added and deleted. You control network traffic among group member workloads with compute gateway firewall rules.
VMC on AWS Labs VMware Cloud Expert: VMC on AWS (4-day) - VMCEXPERT2 Day 2
-
Lab 04b - ABX Actions
Updated onArticleThis lab demonstrates how to leverage an ABX action to conditionally set the name of the Virtual Machine which Aria Automation will provision.
The code uses a property that the cloud template provides, to calculate a new Virtual Machine name.
Multi-Cloud Management Multi-Cloud Management Expert - VMCEXPERT3 Day 2
-
Lab 05 - L7 Security - L7 FW, FQDN Filtering & IDPS
Updated onArticleVMware Cloud on AWS provides VMware’s enterprise-class SDDC software on AWS cloud. It includes a robust set of networking and security capabilities that enable customers to run production applications in the cloud. Every SDDC is provisioned with the Gateway Firewall to protect the perimeter of the SDDC, and the Distributed Firewall to secure lateral communication across workloads inside the SDDC. Powered by the proven security capabilities of VMware NSX-T, Gateway and Distributed Firewall provide enterprise-class Layer 4 security for applications in VMware Cloud on AWS:
- Gateway Firewall enables customers to selectively allow and deny traffic from and to applications deployed in the SDDC. It also controls access to management infrastructure, such as vCenter and NSX manager
- Distributed Firewall is built into the hypervisor and automatically scales across every host in the SDDC. Enabling micro-segmentation at the workload level, Distributed Firewall policies migrate with the VM when they move from host to host in the SDDC.
NSX Advanced Firewall features take the network security capabilities of VMware Cloud on AWS SDDC to the next level, allowing customers to define security policies at Layer 7 and enabling deep packet inspection across all vNICs within the SDDC.
VMC on AWS Labs VMware Cloud Expert: VMC on AWS (4-day) - VMCEXPERT2 Day 2
-
Lab 04 - Advanced Cloud Templates
Updated onArticleYou use the design page to create Aria Automation Assembler template specifications for the machines and applications that you want to provision.
The code editor allows you to type, cut, copy, and paste code directly. If you're uncomfortable editing code, you can click a resource that's already in the design canvas, click the code editor Properties tab, and enter values there. Property values that you enter appear in the code as if you had typed them directly.
Multi-Cloud Management Multi-Cloud Management Expert - VMCEXPERT3 Day 2
-
Lab 04 - On-Premises integration with VMC on AWS
Updated onArticleVMware Cloud on AWS enables customers to have a hybrid cloud platform by running their VMware workloads in the cloud while having seamless connectivity to on-premises and Amazon Web Services (AWS) native services.
Customers can use their existing AWS Direct Connect (DX) or Virtual Private Network (VPN) solutions to connect to their VMware Software-Defined Data Center (SDDC) clusters.
VMware Cloud on AWS uses NSX to control access to this network as part of the SDDC management model, and limits access to only remote traffic required to support features like cross-cluster vMotion. On top of the underlay, NSX builds overlay networks for logical VMware connectivity. Each SDDC has two types of overlay networks:
- Appliance Subnet is used to provide connectivity to SDDC management components like vCenter. This network is created during cluster provisioning with a carved-out network range from the Infrastructure or Management subnet. Customers can optionally specify the network range of the Management subnet during cluster creation for the purpose of avoiding conflicts with other networks that will need to connect to the SDDC. Access to this network is controlled by the NSX Management Gateway (MGW) through firewall rules and IPsec tunnels.
- One or more customer-managed logical networks for VM traffic. Those can be either routed locally within the cluster or stretched from remote on-premises clusters with a remote gateway for L3 routing. Access to this network is controlled by the NSX Compute Gateway (CGW) through firewall rules and IPsec capabilities to enable customers to connect securely to their remote workloads and the Internet.
VMC on AWS Labs VMware Cloud Expert: VMC on AWS (4-day) - VMCEXPERT2 Day 2
-
Lab 02 - Cloud Operations Automation (PowerCLI, APIs)
Updated onArticleWith diverse applications deployed across multiple clouds, your IT portfolio is becoming increasingly complicated. Simplify your multi-cloud operations with VMware.
The VMware Cloud Operating Model is a framework that binds your business, application, and cloud strategies together to accelerate agility, optimize performance, and control your multi-cloud environment. It brings people, process, and technology together for consistent service delivery, operations, and governance wherever workloads reside, for today and the future by:
- Transforming IT Ops by delivering self-service clouds, with rapid elasticity and a full set of consumable APIs.
- Align to CloudOps and embrace your existing clouds to optimize your investments, strengthen security and governance, and deliver a framework for accountability and clarity.
- Efficiently extend cloud management processes and capabilities to new public cloud services and environments through a repeatable on boarding process.
Multi-Cloud Management Day 1
-
Lab 03 - SDDC Networking & Native AWS Integration
Updated onArticleOne of the most compelling reasons to adopt VMware Cloud on AWS is to integrate your existing systems which sit in your VMware Cloud environment, with application platforms that reside in your AWS Virtual Private Cloud (VPC) environment. The integration which VMware and AWS have created allows for these services to communicate, for free, across a private network address space for services such as EC2 instances, which connect into subnets within a native AWS VPC, or with platform services that have the ability to connect to a VPC Endpoint, such as S3 Storage.
VMC on AWS Labs VMware Cloud Expert: VMC on AWS (4-day) - VMCEXPERT2 Day 1
-
Lab 03 - Provisioning Automation and Day-2 Operations with Aria Automation Cloud
Updated onArticleBig enterprises are heterogeneous and different teams use different tools. The skills and knowledge required to manage each ‘toolset silo’ are very different. And while each team should be allowed to choose the tools that make them the most productive, every additional cloud account becomes an extra challenge for the IT operations team. Complexity increases exponentially, the cloud bill sky-rockets and the company finds itself exposed to security and operational risks. Someone needs to keep tabs and establish the guardrails that will get this situation under control.
VMware Aria Automation Cloud consists of Assembler, Service Broker and Pipelines. Aria Automation Cloud makes it easy and efficient for IT developers to get what they need to build and deploy applications.
It provides a unified management solution across clouds, whether VMware powered or public. Based on modern Infrastructure-as-Code (IaC) and DevOps principles, it empowers agility and collaboration across tenant teams and functions while supplying providers with checks and controls to contain cost and risk exposure. It offers capabilities on service brokerage, cloud governance, workload orchestration, topology composition, workflow automation and CI/CD pipelines for infrastructure and application delivery
Aria Assembler
Aria Assembler is VMware’s approach to building a declarative blueprinting and automation solution-enabling, Infrastructure-as-Code first experience between public (AWS / VMware Cloud on AWS, Azure, GCP) and private (vSphere) cloud endpoints. It is designed to act as a conduit to consuming services from multiple cloud environments, with public cloud given more priority within the platform. The interface for Assembler is primarily focused on providing an ‘administrator’ view of the platformService Broker
It enables providers to aggregate native content from multiple clouds and platforms into a single catalog with role-based policies. It is focused on exposing service provisioning to end users: primarily cloud templates from Assembler and Amazon Cloud Formation templates. Its interface is focused on the ‘User’ view of the platformPipelines
It allows providers to help tenants speed software delivery and streamline troubleshooting with release pipelines and analytics. They can integrate development tools and automate code release. There are many possibilities to interact with virtually any system to make advanced pipelines for application and infrastructure delivery. Pipelines is mainly focused on the SRE/DevOps lead use cases.Multi-Cloud Management Multi-Cloud Management Expert - VMCEXPERT3 Day 2