NSX load balancer buffer size
Recently I received a question from a tenant regarding the HTTP buffer size when using the NSX edge load balancer capabilities. They were trying to POST a Kerberos token to a second identity store, but the token did not arrive in its entirety. It is known…
What is the VMware Virtual Cloud Network?
A couple of weeks ago, VMware launched the Virtual Cloud Network (VCN). It’s kind of obvious that this is a marketing term and not a specific product or service. However, it’s not all fluff and there is actually some good meat behind this announcement and…
VMware NSX & OTRS – Automating Security with Help Desk Systems
Over the last couple of months, Sander, Anne Jan and I have been working on a security whitepaper that lays out a practical implementation of zero trust while interfacing with a helpdesk system. In this case, OTRS. It’s all about how engineers can get access…
How to provide NSX firewall logging to individual tenants
Settings up firewall logging for VMware NSX isn’t to complicated, especially when using vRealize Log Insight. Seeing as Log Insight has a management pack available for NSX, which you can download directly from the market place. Most organisations are using some form of firewall logging. And…
NSX for vSphere 6.4 is here (and it’s massive!)
Just as the title says, NSX-v 6.4 has just dropped. I my opinion, they should’ve called it NSX-v 7.0 though, considering the amount of new and cool stuff that is in there. I’ll go through the most prolific new and shiny features below. Distributed Firewall…
Host Preparation Troubleshooting Enhancements with NSX 6.3.5
VMware NSX 6.3.5 was released last week. This is a maintenance release and addresses 32 issues in previous versions. You can find the release notes here. One thing caught my eye which is a very welcome addition to 6.3.5; Host prep now has troubleshooting enhancements,…
VMworld 2017 Hot News – Building Tomorrow
And just as you think it cannot be better, faster and become more interesting you find out it can! VMware announced several new updates to its products on VMworld 2017 in Las Vegas. According to Pat Gelsinger, CEO VMware, VMware’s goal is to connect people…
The missing NSX security group
Earlier this week I ran into the following error “The requested object : securitygroup-xxx could not be found. Object identifiers are case sensitive.”. You can come across this error when you try to export your NSX firewall config. Or at the service composer at the top…
New VMware Fling – Autopology (Drag and Drop NSX Network Topologies? Yes Please!)
The VMware Fling labs is one of my favourite things, as it brings some awesome new tech straight from VMware R&D. Some of these flings flow to the product cycles (remember the HTML5 client, now default in vCenter?). And they did it again! Ever since…
Using VMware NSX to get IPv6 connectivity at home
IPv6 is here and IPv4 is definitely running out of time. Here in the Netherlands, the consumer internet providers have been “working on it” for years. I’ve been lobbying for IPv6 connectivity for years, without much luck. After a time of experimenting with IPv6-over-IPv4 tunnels…
NSX Edge load balancer nodes not accessible
A while back I ran into an issue where NSX Edge load balancer nodes where not accessible. For this article I recreated a simulair setup in my lab, which I will first describe. After that I will explain what is going wrong and describe the solution…
Connecting a VPN between AWS and VMware NSX
Amazon Web Services has a few ways of giving you connectivity: internet, Direct Connect (a physical line) and VPN. While AWS has a ton of examples for firewall/VPN vendors, there is none for connecting with NSX. I needed to connect a NSX network with AWS…
Two vCPU NSX controller for lab environment
When installing NSX in a environment, you will at some point need to deploy NSX controllers. By default these controllers are equiped with four vCPU’s, which is fine for a production environment. But if you want to play around with NSX in a lab environment like I…