Distributed Virtual Port-Groups (dvPGs) in vSphere are a powerful tool for controlling network traffic behavior. vSphere Distributed Switches (vDS) are non-transitive Layer 2 proxies and provide us the ability to modify packets in-flight in a variety of complex ways. Note: Cisco UCS implements something similar with …

Read More

Reliably executing repetitive tasks with automation is easy (after the work is done) Given enough work, self-built automation can be easy to consume. Non-consumers (engineers) need to focus on reliability and repeatability, but occasionally there's an opportunity to save time and simplify lives directly. Information …

Read More

VMware introduced the ability to double-encapsulate layer 2 frames in via the "Access VLAN" option for VRF instances in NSX Data Center: https://docs.vmware.com/en/VMware-NSX-T-Data-Center/3.2/administration/GUID-4CB5796A-1CED-4F0E-ADE0-72BF7B3F762C.html Q-in-VNI provides a capable infrastructure engineer the …

Read More

VMware's vDS is a bit of a misnomer In a previous post, I covered the concept of transitivity in networking - but in Layer 2 (Ethernet) land, transitivity is critically important to understanding how VMware's Virtual Distributed Switch (vDS) works. The statement "VMware's Virtual Distributed Switch is not a …

Read More

Cisco Modeling Labs (CML) has turned out to be a great tool for deploying virtual network resources, but the "only Cisco VNFs" limitation is a bit much. Let's use this opportunity to really take advantage of the capabilities that NSX-T has for virtual network labs! Overview For the purpose of lab …

Read More

Spanning Tree is the all-important loop prevention method for Layer 2 topologies and source of ire to network engineers worldwide. Usually IT engineers list the Dunning-Kruger Effect in a negative context, depicting an oblivious junior or an unaware manager, but I like to focus on the opposite end of the curve with …

Read More

Ever wonder what it would be like to have a platform dedicated to Continuous Improvement / Testing / Labbing? Cisco's put a lot of thought into good ways to do that, and Cisco Modeling Labs(CML) is the latest iteration of their solutions to provide this as a service to enterprises and casual users alike. CML is the …

Read More

VMware's NSX Datacenter product is designed for a bit more than single enterprise virtual networking and security. When reviewing platform maximums (NSX-T 3.2 ConfigMax), the listed maximum number of Tier-1 routers is 4,000 logical routers. Achieving that number takes a degree of intentional design, however. When …

Read More

Have you ever wondered what happened to all the privately-addressed traffic coming from any home network? Well, if it isn't explicitly blocked by the business, it's routed, and this is not good. Imagine what data leakage can occur when a user mistypes a destination IP - the traffic goes out to the Service Provider, who …

Read More

**Note: This feature has been deprecated by VMware The Jetstreams Cloud operators now provide two completely different classes of service to customers: Self-Service, VMs, Operating System Templates Generally mature, some private cloud operators are smoothing out CMPs or such, but work as intended from a customer …

Read More