Most of you probably knew that it is impossible to snapshot an independent/persistent disk. And if you didn’t, in short: a disk that is in “independent/persistent” mode can’t be snapshot because it needs to write it’s changes immediately to the virtual harddisk. When using a snapshot(nonpersistent) writes go to a delta file.

So as I said in this article, using this mode on a specific disk is a nice way to get the full image VM without for instance that gigantic data disk. But some of you might need the snapshot functionality, and it’s not possible to change the disk state from the VirtualCenter client when the VM is up and running.

But it is possible to change the state via the command-line when the VM is running. So if you want to change the state in a VCB script for a specific disk, or want to change the state for a VM without shutting it down here you go:

Find out what the current mode is from the command line:

vmware-cmd <path to vmx file.vmx> getconfig scsi0:0.mode

Set the new mode from the command line:

vmware-cmd <path to vmx file.vmx> setconfig scsi0:0.mode “persistent”

Keep in mind that this is, as far as I know, not supported and should be tested thoroughly before using. I would prefer doing it manually and keeping it that way. Or you could always use the script that I blogged about a while back, it makes it possible to dump specific disks without having to resort to unsupported methods.

By the way, with the setconfig option you can set most vmx options!

A friend of mine asked me if there was a way to find out which VM’s were connected to a certain RDM disk. I’ve been looking all over but couldn’t find a simple command to do this. So I ended up on the forums and found a powershell script which creates a list with all the necessary info one would like to have:

$report = @()
$vms = Get-VM | Get-View
foreach($vm in $vms){
foreach($dev in $vm.Config.Hardware.Device){
if(($dev.gettype()).Name -eq “VirtualDisk”){
if(($dev.Backing.CompatibilityMode -eq “physicalMode”) -or
($dev.Backing.CompatibilityMode -eq “virtualMode”)){
$row = “” | select VMName, HDDeviceName, HDFileName, HDMode
$row.VMName = $vm.Name
$row.HDDeviceName = $dev.Backing.DeviceName
$row.HDFileName = $dev.Backing.FileName
$row.HDMode = $dev.Backing.CompatibilityMode
$report += $row
}
}
}
}
$report

All credits for this great script go to LucD!

Team Fusion wrote a great post on “defragging” vm’s and why you shouldn’t do it. Or at least be very careful about it. Make sure to read it!

Before we begin, it’s important to note that defragmentation isn’t a necessary task - your virtual machine will still work just fine even if you never defrag, and the effects of fragmentation are usually not noticeable. Personally, I’ve never feel the need to defrag. However, if for some reason you do feel the need to defrag, here’s how to do it. Note that snapshots get in the way of proper defragmenting.

I’ve been doing VMware Design Reviews lately and so are my colleagues of the PSO department. A Design Review is quick scan of your design documentation by a VMware consultant. The consultant will hold your docs against best practices and propose changes to the design.

One of the things we encounter on a regular base is that admins took the easy path for their Storage Design zoning. So what’s zoning? In short: a way to partition your fabric into smaller subsets. These small subsets provide you with a better security and less interference.

You can do zoning in two ways, Soft and Hard. With “soft zoning” you use the device WWN in a zone without any restrictions to what port this WWN is attached. With “hard zoning” you put the port into a specific zone. So what do I prefer? I would prefer “hard zoning” because you need to know how your devices are connected and it makes troubleshooting a lot easier.

So now I’ve chosen a way  to zone I can just write down all my port numbers, create a zone and drop them in and I’m done… Well not so fast, that’s another choice one has to make before you start. How am I going to zone, single initiator zoning or multi initiator zoning? So what’s a single initiator zone: a single hba in a zone with the target device(s). And a multi initiator zone is all initiators that need to communicate with a device(s) in one zone. As one can imagine multi initiator zones are really easy to setup but definitely not my first choice.

Single initiator zones are the way to go. If there’s no need, and for ESX there isn’t, for initiators to be able to communicate with each other then they shouldn’t be able to. Not only is this more secure, because initiators can’t communicate with each other, it also cuts out a lot of rubbish on your fibre. Rubbish as for instance “Registered State Change Notifications”. Although RSCN storms don’t occur that often anymore as they used to it’s still a risk of contention and should be avoided when possible. So if you’re doing a design or preparing for one keep this in mind: Single Initiator Zones are the way to go!

There are a whole bunch of good articles on the net about zoning, read them you might learn a thing or two:

• TechTarget.com: part1, part2, part3
• Storage Networking 101: Understanding Fibre Channel Zones
• Single HBA Zoning

Have fun,

So you’ve heard this probably from a few dozens of people by now when you don’t hit the expected SAN performance: Set your queuedepth to a larger size.

So how do you set this queuedepth? Find out for which module you’ll need to set this option:

vmkload_mod -l | grep qla

Now set it to a depth of 64 for module qla2300_707

esxcfg-module -s ql2xmaxqdepth=64 qla2300_707
esxcfg-boot –b

So now you’ve set the queue depth to 64 for your HBA cards, but why? Well I hope the answer is:”because I monitored my system with esxtop and I noticed that the “QUED” value was high”.

So there’s your when. You’ll need to set this setting if you notice a high “QUED” value in esxtop. Take a look at the following example I borrowed from a great blog on this subject:

As you can see in the example, the “ACTV” has a value of 32. Indeed 32 active commands cause that’s the default queue depth for qlogic cards. And 31 outstanding commands, in other words if we bump up the queue depth to 64 than all the commands should be processed instead of queued in the VMkernel.

What will this result in?

So I’ve been collecting some HA best practices lately. I just wanted to have them all in one place so I can use them myself for the VMTN forum and/or customers. The first two are obvious in my opinion but still often overlooked:

1. Your ESX host-names should be in lowercase and use fqdn’s
2. Provide Service Console redundancy
3. If you add an isolation validation address with “das.isolationaddress”, add an additional 5000 to “das.failuredetectiontime”
4. If your Service Console network is setup with “active / standby” redundancy then your ”das.failuredetectiontime” needs to be set to 60000
5. If you ensured Service Console redundancy by adding a secondary service console then ”das.failuredetectiontime” needs to be set to 20000 and you need to setup an additional “das.isolationaddress”
6. If you setup a secondary Service Console use a different subnet and vSwitch then your primary has
7. If you don’t want to use your default gateway as an isolation validation address or can’t use it because it’s a non-pingable device then disable the usage by setting das.usedefaultisolationaddress to false and add a pingable “das.isolationaddress”
8. Change default isolation response to “power off vm” and set restart priorities for your AD/DNS/VC/SQL servers

I used to be a Windows Administrator and have been using Windows since version 2.0. During my career for some weird reason when teams where formed I was always matched with Unix, Linux or Novell Admins. You can imagine I had a lot of discussions around Microsoft Windows. Some fair, some and probably most were heated. One of my big arguments for the Desktop and Windows in general has always been “user experience” and “simplicity”. Everyone can install a Windows machine.

With Windows you just pop in the CD, install, next-next-finish and everything works out of the box. Yeah I know during the early years Windows wasn’t plug and play but most vendors provided you with driver disks anyway. As of Windows 2000 most plug and play issues were solved and my arguments were rock solid because there wasn’t a Linux desktop or server that could do the same.

Well I had to reinstall my home system because it was saturated again, one of the bad habits of Windows I guess, and I thought what the heck let’s give Ubuntu a try again. So I downloaded the beta of Ubuntu 8.10 and tried the live CD to see if everything would work straight out of the box or not. For 8.04 this wasn’t the case, my wireless wasn’t recognized and my videocard had some weird problems.

Hurray for Ubuntu 8.10 it worked straight out of the box. I installed Ubuntu on my disk and the first thing I noticed that compared to Windows Vista or even Windows XP it boots up fast! So let’s see what do I need to install to have the same capabilities as I had with Windows Vista…

• video media player -> VLC
• ftd -> openftd
• newsleecher -> hellanzb+lottanzb(gui for hellanzb)
• audio media player -> rythmbox, which includes last.fm and internet radio
• browsing -> firefox
• picture editting -> gimp
• office suite -> open office
• desktop notes -> tomboy
• ftp -> filezilla

These are the main applications I used on my home system, well besides VMware Workstation, but I own a license for that one so I just downloaded the Linux bundle. After a couple of weeks I must say that I’m impressed. Updating via “apt-get” or the update manager gui works perfect, same for installing new software. I love Compiz, which gives you an amazing 3D cube for your workspace, and makes switching between applications and desktops really easy.

So Ubuntu just rocks and no negative point so far?
Well, after an upgrade my wireless was toasted, the binary firmware file was gone so I had to recover it from the Ubuntu CD. And Auto-Login just doesn’t work. I tried everything, but still receive some weird error and I can’t fix it so far.

Besides these two little nags I do think Ubuntu 8.10 is definitely worth trying out. So if you’re like me and want to learn a bit more about Linux than this might be the perfect moment. Just 4 days and Ubuntu 8.10 will be released officially.

Sometimes you wished you hadn’t invested all of your 50.000 dollars on an employee who will be doing “migrations” for you. So what am I talking about? Well imagine yourself in a 24×7 environment, or anyother environment for that matter and you just received an email about this patch. Yeah this patch NEEDS to be applied a.s.a.p. cause it’s a major vulnerability. So in other words, patch your Hyper-V. This means either a quick migration or shutdown the vm’s in any environment that would cause downtime either way. I think your $ 50.000(which probably isn’t the correct amount anyway) is well spend within matter of days.

Thanks for making our arguments valid.

By the way, make sure to patch your systems asap cause a new worm virus can be expected that takes advantage of this feature(;)) soon…