This page is a home for my technology related posts.
Disclaimer!
The views, information or opinions expressed on this site are my own and do not represent my current/future employer or customer.
The author of the information takes no responsibility of any damages that may occur using the information.
You are free to share or redistribute the information as you seem fit.
How to mitigate L1TF vulnerability warning for a stateless auto-deploy host
Problem definition: For stateless auto-deploy host the setting VMkernel.Boot.hyperthreadingMitigation rolls back to default on every reboot. Thus, causes a warning to appear in vCenter server for the host. The cause of the warning is the presence of all the needed fixes to mitigate L1 Terminal Fault. However, the patching deploys a code that needs manual activation. Hence, the warning
Note! In order to apply on ESXi hosts other than auto deploy please follow VMware KB55806 Enabling the mitigation will have capacity and performance implications. For more detail please go through below article:KB52337: VMware Performance Impact for CVE-2017-5753, CVE-2017-5715, CVE-2017-5754 (aka Spectre and Meltdown) Pre-requisites: One non auto-deployed ESXi host with all required configuration as per the environment. This host will be used to extract the host profile. Procedure: Step1: Enable VMkernel.Boot.hyperthreadingMitigation for non auto-deployed ESXi:
Note! In order to apply on ESXi hosts other than auto deploy please follow VMware KB55806 Enabling the mitigation will have capacity and performance implications. For more detail please go through below article:KB52337: VMware Performance Impact for CVE-2017-5753, CVE-2017-5715, CVE-2017-5754 (aka Spectre and Meltdown) Pre-requisites: One non auto-deployed ESXi host with all required configuration as per the environment. This host will be used to extract the host profile. Procedure: Step1: Enable VMkernel.Boot.hyperthreadingMitigation for non auto-deployed ESXi:
- Connect to the vCenter Server using either the vSphere Web or vSphere Client.
- Select the ...
Setup VMware PowerCLI environment using offline modules
From a past few version VMware has stopped shipping an installer for PowerCLI. The latest builds of PowerCLI run as modules within PowerShell environment. Download Location: Download the latest versions of VMware PowerCLI offline modules from VMware site. https://code.vmware.com/web/tool/11.2.0/vmware-powercli The offline modules are distributed as a zip file Prepare the Environment(Per user): Open command prompt and run: echo %userprofile%. This will print the location of the user profile (currently logged in user) on the system mkdir %userprofile%\Documents\WindowsPowerShell\Modules Extract the zip file Copy all the contents extracted to %userprofile%\Documents\WindowsPowerShell\Modules Open PowerShell or PowerShell ISE and execute Get-Module -ListAvailable | Select-String vmware | Import-Module You may start using the PowerCLI commands now. Going forward all PowerShell session for the user will have these modules loaded Prepare the Environment(Per system): If you want these modules to be available for all users present on the system copy the contents of extracted zip to ...
Using python to review esxtop -b output
Step 1: Prepare python environment:
- Download Python 3 available at https://www.python.org/downloads/
- Run the installer and make sure to install pip
- Using CLI with Root/Administrative privileges run following commands
- pip install --upgrade pip
- pip install pandas
- pip install matplotlib
- pip install numpy
- pip install ipython
Isolation of Intermittent Network Issue Part III (The Analysis)
Introduction: You followed the steps Here and were unable to isolate the issue. Your network team is still breathing on your neck. If you are using vSphere 5.5 or above the gods of virtualization are with you. They have blessed you with with a cool tool , "pktcap-uw" comes to the rescue. The instruction to use the tool can be found Here Symptoms:
- Intermittent network outage for the Virtual machines
- vMotion of a VM causes a network outage
- Intermittent network outage for a VM which gets resolved by the vMotion of a VM to another host.
- Intermittent network outage for a VM which gets resolved when VM’s networking configuration is modified using edit settings option.
- Following procedure will not be suitable for environments with vxLans.
- Port channels can only be investigated with the support of network team.
Isolation of Intermittent Network Issue Part II (Captures using pktcap-uw)
Introduction: You followed the steps Here and were unable to isolate the issue. Your network team is still breathing on your neck. If you are using vSphere 5.5 or above the gods of virtualization are with you. They have blessed you with with a cool tool , "pktcap-uw" comes to the rescue. The instruction to use the tool can be found Here Symptoms:
- Intermittent network outage for the Virtual machines
- vMotion of a VM causes a network outage
- Intermittent network outage for a VM which gets resolved by the vMotion of a VM to another host.
- Intermittent network outage for a VM which gets resolved when VM’s networking configuration is modified using edit settings option.
- Following procedure will not be suitable for environments with vxLans.
- Port channels can only be investigated with the support of network team.
