Post on 22-Mar-2018
© 2010 VMware Inc. All rights reserved
VMware vSphere™ 4 Architecture
S-2
VMware vSphere Architecture
vCenter Server Database
ESX/ESXi Hosts
vCenter Server
Datastores
“Datacenter”
“Cluster”
§ vCenter Orchestrator § vCenter Converter § Guided Consolidation § Update Manager
vSphere Web Access (Browser)*
Update Manager Database
Datastores
vSphere CLI
*ESX only (not ESXi)
vSphere Client § vCenter Converter plug-in § Update Manager plug-in
vCenter Server vCenter Linked Mode
vCenter Database
vSphere Management
Assistant (vMA)
vSphere PowerCLI
S-3
VMware vSphere Components
vSphere Client • Primary interface for administration • Runs locally on a Windows machine
• Connects to VMware vCenter™ Server or directly to an VMware ESX™/ESXi host
vSphere Client
S-4
VMware vSphere Components
vSphere Web Access • Optional web browser interface to manage VMs • Subset of vSphere Client capabilities
• Accessible from vCenter or per ESX host (not ESXi)
vSphere Web Access (Browser)
S-5
VMware vSphere Components
vCenter Server • Centralized manager of ESX/ESXi hosts • Runs as Windows services on physical or virtual server
• Connects with § vCenter Server database (SQL Server or Oracle) § Optional - Windows Active Directory (required for Linked Mode)
• Integrates with optional server/client plug-ins
vCenter Database
vCenter Server § vCenter Orchestrator § vCenter Converter § Guided Consolidation § Update Manager
S-6
VMware vSphere Components
ESX/ESXi Host • Hypervisor running VMs • Organized into clusters
• Accesses shared storage datastores
ESX/ESXi Host
Datastores
“Cluster”
S-7
VMware vSphere Components
Optional CLI and Scripting • vSphere CLI
§ Command line interface with scriptable shell commands § Installs and runs on Windows or Linux
• vSphere PowerCLI § Cmdlet scripting based on Windows PowerShell
• vSphere Management Assistant (vMA) § Virtual appliance § Centralized host management § Includes vSphere CLI vCenter Server
vSphere CLI
vSphere Management
Assistant (vMA)
vSphere PowerCLI
(can also connect directly to a licensed ESX/ESXi host)
S-8
ESXi versus ESX
ESXi ESX
Console Based on BusyBox 1.9.1 Direct Console
Based on RHEL 5.1 Service Console
Host Boot Embedded USB Flash Installable Local Disk Local Disk or SAN
Host Management vSphere Client vSphere Client vSphere Web Access
Remote CLI vSphere CLI vMA
vSphere CLI vMA
Management Agents CIM vSphere API
Service Console vSphere API
Security High (Small Footprint) Medium
Patching Fast Medium
vSphere Compatibility Full Full
S-9
Virtual Networking
vNetwork Standard Switch (vSS) • Defined within host • Connects to physical adapter(s)
§ 0, 1, 2 or more uplinks (up to 32) § Active or standby
• Port groups § Virtual machine § VMkernel
- Management (ESXi only) - vMotion, iSCSI, NFS
§ Service console (ESX only)
• Supports VLAN tagging
Physical Adapters
vmnic0
vmnic1
Virtual Machine Port Group
VMkernel Port
Virtual Switch
Port Groups
View within single host
S-10
Virtual Networking
vNetwork Distributed Switch (vDS) • Defined across hosts • Port groups span multiple hosts
• Network state stays with VMs across hosts • Supports Private VLANs PVLANs
• Network I/O Control (NIOC) § vSphere 4.1 only
Physical Adapters
dvUplink 1
dvUplink 2
Virtual Machines
VMkernel Ports
dvPort Groups
View across multiple hosts
Distributed Virtual Switch
dvUplink 2 Host 1 Host 2
dvUplink 1
S-11
Switch Limits
*Limit depends on adapter
Maximum Standard vSwitch Distributed Switch
Switches per vCenter Server — 16
Switches per Host 248 —
Port Groups 512 (per switch) 512 (per switch)
Ports per Host 4096 4096
Uplinks per Host 32* 32*
Ports 4088 (per switch) 6000 (per vCenter Server)
Hosts per Switch — 64 – vSphere 4.0 350 - vSphere 4.1
VLANS/PVLANs Limited by maximum number of port groups
S-12
ESX/ESXi Boot
Boot Device • USB flash (ESXi Embedded only) • Local disk
§ SCSI § RAID § IDE § ATA § ATA RAID § SATA § SAS
• Fibre Channel or iSCSI* SAN § vSphere 4.0 – ESX only § vSphere 4.1 – ESX and ESXi *hardware initiator only
S-13
Virtual Storage
VMFS Datastore • Shared VM file system • Block-level access by ESX/ESXi
• Supported devices § Local disk (not shared storage) § Fibre Channel SAN § iSCSI SAN
- HBA - ESX/ESXi software initiator via VMkernel network port
• Formats § .vmdk § RDM (raw device mapping) to underlying LUN
S-14
Virtual Storage
NFS Datastore • Shared directory on NFS server • File-level access by ESX/ESXi
• Limitations § No RDM § No Storage I/O Control
S-15
vSphere Network Ports Inventory
From or To ESX/ESXi
Network Path Port Protocol
vSphere Client to ESX/ESXi Host 443,902,903 TCP
VM Console Client to ESX/ESXi Host 903 TCP
ESX/ESXi Host to/from vCenter Heartbeat 902 UDP
ESX/ESXi Host to DNS Server 53 UDP
ESX/ESXi Host to NFS Server 111,2049 TCP, UDP
ESX/ESXi Host to iSCSI SAN 3260 TCP
vMotion between ESX/ESXi Hosts 8000 TCP
HA Between ESX/ESXi Hosts 8100, 8200 TCP, UDP
ESX/ESXi Host to Host for VM Provisioning Migration 443 TCP
S-16
vSphere Network Ports Inventory
From or To ESX/ESXi
Network Path Port Protocol
ESX/ESXi Host to Update Manager 80,443 TCP
Update Manager to ESX/ESXi Host 902, 9000-9100 TCP
CIM Client to ESX/ESXi Host CIM Secure Server 5988, 5989 TCP
ESX/ESXi Host CIM Service Location Protocol between Hosts 427 TCP, UDP
ESX Host SNMP Client Trap Send to SNMP Collector 162 UDP
SNMP Server to ESX/ESXi Host for SNM Polling 161 UDP
ESX/ESXi Host to Syslog Server 514 UDP
Consolidated Backup/Data Recovery to ESX/ESXi Host 443 UDP
S-17
vSphere Network Ports Inventory
From or To ESX Only (Not ESXi)
Network Path Port Protocol vSphere Web Access to ESX Host 443 TCP
FTP Client to ESX Host FTP Server 21 TCP
ESX Host FTP Client to FTP Server 21 TCP
SSH Client to ESX Host SSH Server 22 TCP
ESX Host SSH Client to SSH Server 22 TCO
ESX Host SMB Client to SMB Server 137-139, 445 TCP
PAM AD Authentication Directory Services to MS Directory Services 445 UDP, TCP
PAM AD Authentication Kerberos Client to Active Directory Server 88 TCP
PAM AD Authentication Kerberos Password to Active Directory Server 464 TCP
PAM AD Authentication LDAP to LDAP Server 389 TCP
S-18
vSphere Network Ports Inventory
From or To vCenter Server
Network Path Port Protocol vSphere Client to vCenter Server 443 TCP
vSphere Web Access to vCenter Server 443 TCP
VM Console Client to vCenter Server 903 TCP
vCenter Server to ESX/ESXi Host for VM Console 903 TCP
vCenter Server to LDAP Server 389 TCP
Linked Mode SSL between vCenter Servers 636 TCP
ESX/ESXi 2.x/3.x Host to Legacy License Server 27000, 27010 TCP
vCenter Management Web Services HTTP to vCenter Server 8080 TCP
vCenter Management Web Services HTTPS to vCenter Server 8443 TCP
SNMP Server Polling to vCenter Server 161 UDP
vCenter Server SNMP Client Trap Send to SNMP Server 162 UDP
vCenter Server SMTP Client to SMTP Server Email 25 TCP
S-19
vSphere Network Ports Inventory
From or To vCenter Server
Network Path Port Protocol vCenter Server DNS Client to DNS Server 53 UDP
vCenter Server to Active Directory Server 88,445 UDP, TCP
ODBC to MS SQL Server Database 1433 TCP
Oracle Listener Port to Oracle Database 1521 TCP
ESX/ESXi Host to/from vCenter Server for Heartbeat 902 UDP
vCenter Server internal Communication Port 8005, 8006, 8086 TCP
vCenter Server Internal service Diagnostics 8083, 8085, 8087 TCP
Consolidated Backup/Data Recovery to vCenter Server 443 TCP
Data Recovery vSphere Client Plug-in to Data Recovery Appliance 443 TCP