just another tech blog site...

NSX-T to Log-Insight Steps

Unlike NSX-V, NSX-T configuration for logging is done manually. Syslog configurations are not propagated to objects (Edge, Transport Nodes) created from the manager. (this true with the current version: NSX-T 2.5.1) Anyway, here are the steps on how to configure: Manager / Edge Nodes: SSH to the Management IP. I’m using root Switch to admin to start working with NSX CLI (cmd: su admin) Issue command: set-loggin
Read More

How to packet capture leaving/ entering vmnic in vSphere

I was with a GSS Support today troubleshooting NSX issue on one of my engagement. He did a packet trace from ESXi hosts to see if there is traffic leaving/ entering the physical NIC which really nice. This will be helpful in establishing if the issue is somewhere in the environment or not. Here’s the command Receive: pktcap-uw –uplink vmnic0 –capture UplinkRcvKernel -o -| tcpdump-uw -nr – Send
Read More

Issue adding NSX-V Cloud-account to vRA8

Unable to validate the provided access credentials: Failed to validate credentials. Error: java.security.cert.CertificateException: No subject alternative DNS name matching <nsx> found. Cloud account: null Task: /provisioning/endpoint-tasks/d3f06b7ab13aec7559c1458d6fa20 Got the above error when trying to add NSX-V cloud-account to vRealize Automation 8. Issue: it’s because the self-signed certificate of the
Read More

Upgrading vRA 8.0 to 8.0.1: Disk space on root partition (/) on VM Disk 1 (/dev/sda4) should have atleast 20 GB of free disk space.

When doing an upgrade via LCM of vRA from 8.0 to 8.0.1, you might encounter this error: Disk space on root partition (/) on VM Disk 1 (/dev/sda4) should have atleast 20 GB of free disk space. This is because initial installation of vRA only has small disk not enough for upgrade. The issue is documented in the Known Issue for vRA 8.0.1 here To resolve, WITHOUT POWERING OFF your Virtual Appliance, go to each of the vRA
Read More

How to update solutions managed by VMware Lifecyle Manager

Here’s a quick how-to in updating solutions managed by VMware Lifecycle Manager. Pre-requisite: Solution must be managed by VMware Lifecycle. Add your my VMware Account to LCM Go to Settings -> Binary Mapping and Download Binary: Procedure: Login to LCM, Under Settings -> Update Product Support Pack If LCM has internet connection, initiate Check Support Packs Online Wait for the process completes. Go to requ
Read More

VMware NSX: LB Application Rule redirect all HTTP traffic to HTTPS

Ok. This took awhile to look for so might as well blog about it. This application rule redirects ALL HTTP traffic to HTTPS using the same URI. redirect scheme https if !{ ssl_fc } To use this, you just need to create the Virtual Server that serves HTTP, attach the application rule containing the string – and youre all set ๐Ÿ™‚ Enjoy!
Read More

vRealize Automation 8: Enterprise Cluster Installation

vRealize Automation 8 is out! This is a big release as it marks feature parity with VMware Cloud Automation Service (SaaS offering). In addition, a new architecture which eliminates the need for Windows Server. For this post, iโ€™ll document whatโ€™s needed for an Enterprise Install of vRA8. High-level diagram: Components: 1 x Lifecycle Manager3 x Identity Manager3 x vRealize Automation Appliance2 x LB to handle IDM and
Read More

VMworld 2019: VMware hackathon experience

Ever since they announced VMware Hackathon 4 years ago – I knew wanted to experience this first hand if given the opportunity! Fortunately, THAT opportunity came this VMworld 2019 thanks to vExpert Pro and VMware! It’s been 10 years since my last VMworld and alot has changed – with content from different VMware units (more on this on another post). One of this is unit is VMware Code which hosted gee
Read More

Unable to get Kubernetes Node Metrics: http://:10255: getsockopt: connection refused

Some kubernetes action ๐Ÿ™‚ I’ve just installed prometheus-grafana monitoring on my kubeadm built k8s cluster. This is the repo i used to do such: https://github.com/giantswarm/prometheus After installing, there was an error getting node metrics. The error: Get dial tcp getsockopt: connection refused To fix this, you need to allow kubelet read-only port by spe
Read More