Documenting firewall configuration is challenging at the best of times, in most enterprise networks there are tens of thousands of lines of ACLs that have been added organically over time to any number of firewalls. Documentation of said policy is normally the actual configuration that you see on the console in front of you, which is great but depending on the vendor it may be difficult to extract that data into a more usable format. Continue reading
Packet capture is an essential tool in any network/systems engineers toolset, mainly when working with services in a development environment or during troubleshooting. So recently when I was testing the installation of the NSX VIBs onto the nested ESXi host in my VMware Workstation lab, I wanted a facility to capture the conversation between a single ESXi host, NSX Manager and the vCenter Server (vcsa). You could naturally perform this packet capture directly on the ESXi host (running as a VM), or instead, perform it from your underlying operating system.
Why you would want to execute tasks via the NSX API asynchronously is a good question, and, can be answered with two words “Parallel Workflows”. In a Software Defined Datacenter (SDDC) where automation is extensively used, it may be beneficial to execute tasks asynchronously so that your automation workflow can continue while a certain NSX logical construct is built (deployed), one such example is an Edge Services Gateway. This same framework also provides us the ability to query the status of the job to verify if it has been successful or not, which can be quite important if you need to check if a logical component is configured or not. Continue reading
Below is diagram to visually see the communications (protocol/port) of the NSX-v (6.2.x) components. The focus of the diagram is from an NSX-v viewpoint. Therefore, I haven’t included the comms for vSphere, and it’s relevant components. Continue reading
Application rules in NSX for vSphere allow you to create advanced load balancing rules which may not be possible with the application profile or services natively available on the Edge Services Gateway (ESG). However, the ESG enables you to add your specific application rules to support your load balancing scenario; application rules are built using HA Proxy syntax. Continue reading
I have been using Gmail since it’s inception when it was still an invite only email service and haven’t looked back. It’s flexibility and speed have made it my personal email account of choice and with Google steadily adding more services to Gmail and their other online collaboration tools it’s always getting better. So I was intrigued when I found out that Google were giving you a way to extend their Google Apps services further with Google App Script. Although it’s primarily aimed towards businesses that are leveraging Google Apps, you can use App Script to automate your own workflows to make your digital life that little bit easier.