Book Image

Hyper-V Network Virtualization Cookbook

By : Ryan Boud
Book Image

Hyper-V Network Virtualization Cookbook

By: Ryan Boud

Overview of this book

Related Content you might be interested in

Current Title:

Small book image
Hyper-V Network Virtualization Cookbook
Ryan Boud
Nov, 2014 | 228 pages
No titles found
Table of Contents (16 chapters)
Hyper-V Network Virtualization Cookbook
Hyper-V Network Virtualization Cookbook
Credits
Credits
About the Author
About the Author
About the Reviewers
About the Reviewers
www.PacktPub.com
www.PacktPub.com
Preface
Preface
Free Chapter
1
Installing Virtual Machine Manager
Installing Virtual Machine Manager
Introduction
Deploying the required service accounts
Creating the distributed key management container in Active Directory
Installing Virtual Machine Manager on a single server
Installing a highly available Virtual Machine Manager server
2
Configuring Networks for Hyper-V Network Virtualization
Configuring Networks for Hyper-V Network Virtualization
Introduction
Creating the required Logical Networks in Virtual Machine Manager
Creating the required Port Profiles in Virtual Machine Manager
Creating and assigning Logical Switches to Hyper-V hosts
Creating the Virtual Machine Networks for Tenants
Testing the basic Virtual Machine Networks
3
Creating the Gateway for Virtual Machine Communications
Creating the Gateway for Virtual Machine Communications
Introduction
Creating a Logical Network, Port Profiles, and Logical Switches for external access
Creating a Hyper-V Network Virtualization gateway manually
Creating a Hyper-V Network Virtualization gateway with a Service Template
4
IP Address Management Integration with VMM for Hyper-V Network Virtualization
IP Address Management Integration with VMM for Hyper-V Network Virtualization
Introduction
Installing IPAM in Windows Server 2012 R2
Integrating IPAM into VMM
Using IPAM data for reporting
5
Windows Server Gateway Configuration
Windows Server Gateway Configuration
Introduction
Network Address Translation with the gateway
Direct Routing and how it is different from NAT
6
Implementing Network Isolation in Hyper-V
Implementing Network Isolation in Hyper-V
Introduction
Understanding VLANs in Hyper-V and VMM, including the PowerShell cmdlets
Understanding Private VLANs in Hyper-V and VMM, including the PowerShell cmdlets
7
Network Access Control Lists
Network Access Control Lists
Introduction
Locking down a VM for security access
Applying rules to a list of VMs
VM Templates
VM Templates
Configuration
Sysprep
Planning the Virtual Machine Manager
Planning the Virtual Machine Manager
Preparing
How to plan the Virtual Machine Manager
Index
Index

How to plan the Virtual Machine Manager

When planning the VMM, it is vital to understand the architecture of the network that VMM and Hyper-V will be operating on, the availability requirements for VMM, the types of storage infrastructure involved, and the technology involved (VMM and Hyper-V).

To understand the architecture of the network is to understand the scale of the solution required. If you have two host servers and some basic iSCSI storage infrastructure, then your challenges will be different compared to an organization with 200 host servers with complex Fibre Channel or Scale-Out File Server storage implementations. Typically, this will involve:

  • Architectural diagrams of the network

  • The VLANs in use

  • The IP subnets in use

  • The gateway infrastructure

  • The location of domain controllers

  • The storage architecture

If you have two servers or do not have a complication Hyper-V Network Virtualization, then VMM may not be a critical component. For enterprises implementing HNV, VMM becomes a critical application or for service providers implementing a multitenancy environment with the Windows Azure Pack. Typically, this will involve:

  • Documenting low-level requirements for the VMM implementation

  • Understanding the implications of a failure of VMM

  • Realizing the technologies available to your organization (SQL AlwaysOn High Availability Groups)

The storage you have may impact the architecture of the VMM and Hyper-V design. For example, if you have Fibre Channel or Fibre Channel over Ethernet storage, then you may be able to create Virtual SANs. If you are using Scale-Out File Servers, then you might be able to leverage SMB Direct. Typically, this will involve:

  • A deep understanding of the storage infrastructure in your enterprise

  • Realizing the options your storage presents to you (for example, shared VHDX, CSV caching, storage tiering, and so on)

Planning for the technology involved and where it will be deployed in your infrastructure will involve where VMM servers are to be located and the number and types of availability required:

  • All of the information gained in the previous steps will be used to determine the requirements of the deployment

The different deployment types are described in the following table:

Deployment type

Description

Single server

This has a single point of failure, all on one VM or physical server. This also has the test environment and demo lab. This is supported in production, but it is not scalable.

Multiserver

In this type of deployment, the components of VMM are installed on separate servers that could be highly available.

The minimum requirements for each component of VMM 2012 R2 are covered in the following table:

Component

Minimum requirements

VirtualManagerDB

Software:

  • SQL Server 2008 R2 SP2 (Standard, Enterprise, or Datacenter) or later, with the Database Engine Services and Management Tools (complete features)

Hardware:

  • Dual-core, 64-bit, 2 GHz CPU processor

  • 4 GB RAM

  • 150 GB of HDD space on which the operating system is installed

  • 50 GB of HDD space on which the database is stored

Management Server

Software:

  • Windows Server 2012 or higher (Standard or Datacenter)

  • .NET Framework 4.5 or 4.5.1

  • Windows Remote Management (WinRM) service

  • Windows ADK (Deployment tools and Windows preinstallation environment)

  • SQL Server 2008 R2 Command Line Utilities or SQL Server 2012 Command Line Utilities, depending on which version of SQL Server you install

Hardware:

  • Pentium 4, 64-bit, 2 GHz CPU processor

  • 4 GB RAM

  • 2 GB of HDD space (without a local SQL install)

  • 80 GB of HDD space (with a local SQL install)

VMM Console

Software:

  • Any x86 or x64 version of Windows 7 SP1 (Professional, Enterprise, or Ultimate editions), or Windows 8/8.1 (Professional or Enterprise)

  • Windows Server 2008 R2 SP1 (Standard, Enterprise, or Datacenter), Windows Server 2012 (Standard or Datacenter), or Windows Server 2012 R2 (Standard or Datacenter)

  • Windows PowerShell 3.0 (included in Windows 8 and Windows Server 2012 and higher)

  • .NET Framework 4, 4.5, or 4.5.1

  • The console must be installed on an active directory domain joined computer

Hardware:

  • Pentium 4, 2 GHz CPU processor

  • 2 GB RAM

  • 2 GB of HDD

VMM Library

Software:

  • Windows Server 2008 R2 SP1 (Standard, Enterprise, or Datacenter), Windows Server 2012 (Standard or Datacenter), or Windows Server 2012 R2 (Standard or Datacenter)

  • WinRM 2.0 or higher

Hardware:

  • Pentium 4, 2.8 GHz CPU processor

  • 2 GB RAM

  • The amount of HDD space varies on the content to be stored but 50 GB as minimum is recommended

PXE Server

Software:

  • Windows Server 2008 R2 SP1 (Standard, Enterprise, or Datacenter), Windows Server 2012 (Standard or Datacenter), or Windows Server 2012 R2 (Standard or Datacenter)

  • The Windows Deployment Services Role must be installed

  • WinRM 2.0 or higher

Please note that configuration of the WDS role is not required as VMM uses its own PXE provider.

Hardware:

  • Pentium 4, 2.8 GHz CPU processor

  • 2 GB RAM

  • The amount of HDD space varies on the content to be stored but 10 GB as minimum is recommend

Update Server

Software:

  • A 64-bit edition of Windows Server Update Services (WSUS) 3.0 Service Pack 2

  • A 64-bit edition of WSUS server role on Windows Server 2012 or Windows Server 2012 R2

  • VMM can use either a WSUS root server or a downstream WSUS server; it does not support the use of a WSUS replica server

  • VMM supports using a WSUS server that is part of a Configuration Manager 2007 R2 or System Center 2012 Configuration Manager environment, but additional configuration steps are required

  • If you do not install WSUS server on the same computer as the VMM management server, you must install a WSUS Administrator Console on the VMM management server

Hardware:

  • Windows Server 2008 R2: 1.4 GHz (x64 processor), 512 MB RAM, 20 GB HDD space

  • Windows Server 2012 and higher: 1.4 GHz (x64 processor), 512 MB RAM, 32 GB HDD space

The required service accounts are as follows:

Account name

Used for

Description

VMM service account

Running VMM services and accessing resources

This is a domain account that requires local administrator privileges on VMM servers.

VMM Agent run as account

Managing Hyper-V hosts

This is a domain account that requires local administrator privileges on VMM servers. This account also requires delegated rights in the domain to Create Computer Objects and Read All Properties to allow new Hyper-V hosts to be joined to the existing cluster.

VMM SQL Server account

Running VMM SQL Server Instance

This is a domain account.

VM SQL Server account

SQL Service account when installing SQL from Service Template

This is a domain account.

Local administrator run as account

Setting the Local Administrator name and password during a build

This is a local account.

VM Domain Join run as account

Joining new VMs to the domain

This is a domain account with delegated rights to Add Computer to Domain.

IPMI account

Controlling the lights out card during a bare metal build

This account needs the ability to connect to a server and also power on and off the server.

Network Communication Ports are as follows:

Purpose

Protocol

Port number(s)

Where to change

VMM management server to WSUS server (data channel)

HTTP/HTTPS

80/8530 (non-SSL), 443/8531 (with SSL)

These ports are the IIS port binding with WSUS. They cannot be changed from VMM.

VMM management server to WSUS server (control channel)

HTTP/HTTPS

80/8530 (non-SSL), 443/8531 (with SSL)

These ports are the IIS port binding with WSUS. They cannot be changed from VMM.

BITS port for VMM transfers (data channel)

BITS

443

This port is changed when the VMM is set up.

VMM library server to hosts file transfer

BITS

443 (maximum value: 32768)

This port is changed when the VMM is set up.

VMM host-to-host file transfer

BITS

443 (maximum value: 32768)

 

VMM management server to in-guest agent (VMM to virtual machine data channel)

HTTPS

443 (maximum value: 32768)

This port is changed using BITS.

VMM management server to VMM agent on Windows server-based host (data channel for file transfers)

HTTPS

443 (maximum value: 32768)

This port is changed using BITS.

VMM management server to remote Microsoft SQL Server database

TDS

1433

 

Console connections (RDP) to virtual machines through Hyper-V hosts (VMConnect)

RDP

2179

This port is changed using the VMM console.

Remote Desktop to virtual machines

RDP

3389

This port is changed on the virtual machine.

VMM management server to VMM agent on Windows server-based host (control channel)

WS-Management

5985

This port is changed when the VMM is set up.

VMM management server to in-guest agent (VMM to virtual machine control channel)

WS-Management

5985

 

VMM management server to VMM agent on Windows server–based host (control channel—SSL)

WS-Management

5986

 

VMM console to VMM management server

WCF

8100

This port is changed when the VMM is set up.

VMM console to VMM management server (HTTPS)

WCF

8101

This port is changed when the VMM is set up.

Windows PE agent to VMM management server (control channel)

WCF

8101

This port is changed when the VMM is set up.

VMM console to VMM management server (NET.TCP)

WCF

8102

This port is changed when the VMM is set up.

WDS provider to VMM management server

WCF

8102

This port is changed when the VMM is set up.

VMM console to VMM management server (HTTP)

WCF

8103

This port is changed when VMM is set up.

Windows PE agent to VMM management server (time sync)

WCF

8103

This port is changed when the VMM is set up.

VMM management server to Cluster PowerShell interface

PowerShell

  

The most critical elements in these tables are the networking layouts. For Hyper-V Network Virtualization, you need to ensure the VLANs and subnets in use are large enough to cope with the required workloads for your environment.

It is absolutely critical that all the information is collated and the scope and purpose of the installation is formalized and agreed upon. This ensures that all involved parties can understand their required work items and participation in the project.

Previous Section
End of Chapter
Next Chapter