VMworld – On demand video recommendations 2

This is part two of recommendations from the VMworld on-demand library. Applying Software Design Patterns and Methodologies to Your IT Services (CNA2141BE) SRE is the practice of leveraging software development principles for running and managing infrastructure, operations, and applications.  Super interesting concept session that covers methodologies that originated with google to ensure site or service …

VMworld Sessions – Practical NSX Distributed Firewall Policy Creation

Ron Fuller, double CCIE, co-author of NSX Fundamentals Live Lessons and NSX Essentials book, dives into one really powerful aspect of NSX, the distributed firewall and how policies can be created. The separation of network traffic has been fundamental to security compliance, for years we have been achieving this primarily through vlans and portgroups, switching …

VMware NSX Security Features – Who should pay for them?

One of the typical questions when considering NSX deployments is who should be the administrator?  However this is often a two horse race, between Network and Virtualization Systems Administrators. Although NSX is SDN (software defined networking), the driver behind much of what it does is due to security requirements, using vlans to segregate layer two networks, …

Security Audit – Syslog Collector

Centralized logging will can be done by deploying a syslog server and using this to collect and manage logs.  An easy option is to install the syslog server bundled with the vCenter installation, in this post I’ll walk through configuration on a Windows box, an discuss some of the caveats of this approach. This install …

Security Audit – ESXi Persistent logging Overview

By default, the logs on VMware ESXi are stored only in the in-memory file system [scratch file], and are lost upon reboot. There are two options to save logs so that a dedicated record of server activity is available for each host. Persistent logging to local or shared storage (datastore) Configure the syslog service to …

Security Audit – ESXi log retention

Hypervisor Retention of Logs on Disk Logs are not saved according to a period of time, but according to size, so once the log gets to X size a number is appended and a new log created.  The number of logs saved is the rotation – 16 rotation = 16 logs saved. For hypervisor logs …