WilliamLam.com

Dynamic ESXi firewall rulset for non-standard syslog ports in vSphere 8.0 Update 2b

by // 5 Comments

For most users who configure syslog for their ESXi hosts (hopefully everyone is doing that for audit, compliance and troubleshooting purposes), they typically stick with the default syslog ports 514 for UDP/TCP or 1514 for TLS.

A huge benefit of using the default syslog ports is that the ESXi firewall is already configured with these rulesets configured for outbound access.


If you require to use a non-standard syslog port for ESXi, the current solution was not ideal. While you can open up a custom port using the ESXi firewall, the issue is persisting that customization, which either requires a custom VIB or messing around with local.sh startup script.

A nice enhancement that is included with the recent release of vSphere 8.0 Update 2b is the support for a dynamic ESXi ruleset when non-standard syslog ports is configured.

As you can see in the example below when I configure my ESXi host to use a syslog server with a custom port 12345, the ESXi will automatically create a dynamic firewall ruleset that will open up that port for outbound connectivity. If you change the port or disable the syslog configuration, then the dynamic ruleset will be updated and/or removed.

Automated VMware Cloud Foundation (VCF) host commission using ESXi Kickstart

by // 1 Comment

ESXi Scripted Installation (Kickstart) has been my go-to method for achieving zero-touch provisioning of ESXi hosts at scale, which I had started using back in the ESX 2.5 days when I was a customer! Having worked at some very larger enterprises, I got the opportunity to experience and manage a variety of environments for automated ESXi provisioning.

For more than a decade, I have written hundreds of articles about ESXi kickstart and how it can help solve a variety of use cases stemming from my own background to some of the unique requirements that have come up from some of our largest VMware customers. To date, some of my favorite ESXi kickstart solutions includes my 2014 blog post in automating VM deployments using a USB device which became the basis for my USB to SDDC project in 2017.

While playing with the latest VMware Cloud Foundation (VCF) 5.1 Holodeck release (currently in Beta), I was thinking about the current VCF host commissioning workflow, which is a multi-step process after an ESXi host has been provisioned where you need to manually (or using automation) to add the hosts to SDDC Manager before they can be consumed for either expanding and/or deploying a new workload domain.

I thought, why could we not just skip this step all together and that was when I had the idea of just incorporating the VCF host commissioning workflow automatically as part of an ESXi Kickstart installation! 😀

[Read more...]

Pre-release Microsoft OS/2 2.0 on ESXi

by // 19 Comments

While catching up on my RSS news feed over the weekend, I came across an interesting article titled: Ancient pre-release version of OS/2 2.0 discovered, released in VM-friendly packages and of course the VM-friendly packages caught my attention but I had never heard of or used OS/2 before.

From the article, a software archaeologist known as Neozeed shared a pretty unique experience of installing a pre-release version of Microsoft and IBM OS/2 2.0 ...

A software archaeologist known as Neozeed recently shared a pre-release version of OS/2 2.0, an ambitious PC operating system that Microsoft and IBM were developing together in the 1990s before the former decided to pursue the Windows route.

and this was made possible with the use of the free version of VMware Workstation Player, where they had attributed to the speed of Workstation Player:

VMware is incredibly fast, it's the #1 reason why I had done this.

which I thought was a really cool shoutout for VMware Desktop Hypervisor team!

Neozeed also published a complete video for installing and configuring Microsoft OS/2 using Workstation Player for those intersted:

While I do use VMware Fusion for my macOS desktop, I was curious if the OS/2 VM could also run in ESXi (hint: it does) and wanted to see what the steps would be to run this piece of history on the latest ESXi 8.0 Update 2b release 🙂

Step 1 - Download the Internet Archive OS/2 Workstation VM image that was created by Neozeed

Step 2 - Create a new MSoS2-6.78 directory under your ESXi datastore and upload all files (except for the VMDK, it may fail if you are using vSAN storage like I am)

Step 3 - SCP the MSOS2-6.78.vmdk into the same directory where the rest of the configuration files

Step 4 - Next, we need convert the desktop hypervisor VMDK format to one that ESXi by running the following command in the ESXi Shell:

vmkfstools -i MSOS2-6.78.vmdk -d thin MSOS2-6.78-NEW.vmdk

Step 5 - Register the OS/2 VMX file and then attach the newly created VMDK and finally power on the VM!


Note: For the best desktop experience, connect to OS/2 VM using the Standalone VMRC Client.