Category Archives: Windows Server 2012

My Impressions on Windows Server 2012 Hyper-V Cookbook

Posted on by
Reply

Having read Windows Server 2012 Hyper-V Cookbook I can safely say that if you need get up to speed with Hyper-V in Windows Server 2012 this is a great book for this purpose.

Having met Leandro Carvalho that’s not a surprise. What is pretty impressive is how he managed to get all you need to know to get going inside of one book that you can still lift with one hand. Now this is not going to make you a veteran Hyper-V enterprise architect over the weekend but it will help you get a well set up and functional Hyper-V environment running, monitored and protected. If you are already familiar with Hyper-V form previous Windows versions this book will also get you up to speed on a lot of the most important new features and improvements.

Windows Server 2012 Hyper-V Cookbook

Now a mere 305 pages are not enough to go into depth on every subject but this book will make a fine learning tool to set up a lab and take your first Windows Server 2012 Hyper-V servers / clusters into production. It also tackles some of the more intimidating stuff to some people like in place upgrades of Hyper-V clusters and disaster recovery. Details like CSV cache, Port ACL and their significance in the new Hyper-V version are not forgotten. I like that attention to detail. Knowing the vastness of what’s new in Windows Server 2012 Hyper-V I’m impressed at how well organized and effective the information is presented. So if you need to get started with Hyper-V, do it here with this book. It will make for a fine foundation to build on and move on to investigate the numerous network configurations, the VHDX format, SMB 3.0 goodness etc.

Heading Towards The 2013 Global MVP Summit

Posted on by
1

Hello people, I’m making my way to Seattle at the moment to attend the 2013 Global MVP Summit. I’m really looking forward to this as I have a lot of feedback and questions on using Windows Server 2012 and Hyper-V in real live. That and the fact that we’ll get to discuss all this amongst each other and with the product teams. There are not many opportunities where you get to meet up with so many enthusiastic subject matter experts from all over the world.

Last month I checked my Electronic System for Travel Authorization (ESTA) papers and made sure my passport was valid.  So after packing my bag it’s now traveling time as I need to get myself to SEATAC. One of these below works just fine for that purpose I know from experience. While awaiting boarding time I’ve parked myself in LHR. If it’s anything like last year this could be considered a long-haul MVP flight Smile.

image

I’m eager to meet up with friends and acquaintances again to talk shop and some fun. So Hyper-V, Cluster, Storage, Network PMs … my fellow MVPs and I are on our way. See you all very soon!

My TechDays 2013 Agenda Recommendations

Posted on by
3

As you all know by know the TechDays 2013  are approaching fast.  I have mentioned this before. There is still time to secure yourself a seat and attend this event. People for far and away are coming over for this so why not you?

You’ll gain insights into a lot of new technologies. You can decide to go deep or broad or any combination of these two options. The idea is that you can return to your desk and have a better understanding of Windows Server 2012, Hyper-V, Windows 8, System Center and what a private cloud can do for you and your business.

I know several speakers and they are aiming to offer you some practical knowledge so you can get a head start with these technologies. Understanding the concepts about and the principles behind sometimes abstract subjects is important. This is also true for a healthy mix of real life experiences, tips on how to get thing working and what to look out for. I hope the local community speakers can help you out there. But to do so you need to show up Smile. Sure you can watch on line sessions and download presentations. But consider being able to talk to the speakers and experts at the Microsoft boot, to have the opportunity to sit down for a talk about real live experiences and openly discuss your needs and concerns. No, it’s not free consultancy, it’s talking amongst peers who are often dealing with the same issues as you are which can help you decide what routes to explore further.

The complete agenda is available on line here.

Tuesday 5 March

Register for the track of your choice here. Hard choice between the security track and Exchange 2013 but I’m leaning towards the latter. Scott Schnoll & Michael Van Horenbeeck (Belgian MEET member and MVP for Exchange) are presenting.

Wednesday 6 March

08:45 – 10:15

This slot is easy, grab the keynote to set the tone for the TechDays.

IT Pro Keynote

10:45 – 12:00

Systems Center user and ready for Windows Server 2012? Attend  Vijay Tewari’s session.

What’s new System Center 2012 SP1, VMM

13:00 – 14:15 & 14:30 – 15:45

Easy choice. Windows 8 is not weird or hard to learn at all.For the small effort of educating yourself on this subject by attending these two sessions by a very knowledgeable MVP and great presenter Tom Decaluwé, you’re ahead of the pack, reaping the benefits while ignoring the drama.

Windows 8 Client Part 1 "The OS internals for IT-Pro’s"

Windows 8 Client Part 2 "The Application internals for IT-Pro’s"

16:15 – 17:30

I’m torn here. Chris Jackson is the guru on this subject and if you’re still running on XP and need to move to Windows 8 or even Windows 7 attend his session and learn how to thrive and not just survive such an project!
App Compat for Nerds

Hyper-V is very dear to me and it’s an interesting subject so if you are using or considering to use Hyper-V go listen to Bryon Surace and learn why dynamic memory is a lot more & better than over commitment!

Hyper-V Dynamic Memory in Depth

17:45 – 19:00

This is a Inovativ (Kenny Buntinx, Dieter Wijckmans, Kurt Van Hoecke) tidal wave of knowledge it seems with a twist of Mike Resseler (always a good thing)

What’s new and improved in Service Pack 1 for the System Center 2012 suite

19:00 – 21:00

Grab the people you think could help your with that question burning inside your head. Don’t be shy! Mingle amongst your peers and engage in some tech talks.

Ask the Experts and Networking

Thursday 7 March

09:00 – 10:15

Start of the day with a true scholar and gain knowledge & understanding on Active Directory in Windows Server 2012. If you were not awake yet, you will be 5 minutes into this session as John Craddock knows how to captivate an audience.

What’s new in Windows Server 2012 Active Directory?

10:45 – 12:00

If you’re going to deploy SCVMM 2012 SP1 you absolutely have to attend this session. Really, I mean it! Vijay Tewari presenting.

Network Management in System Center 2012 SP1 – VMM

13:00 – 14:15

You need it, you want it, you love it in Windows 2012. What? PowerShell of cause and Kurt Roggen will show you why.

The Power of PowerShell: Advanced

14:30 – 15:45

Some of the great additions to the capabilities of virtualization in Windows Server 2012 evolves around the support Active Directory. Better & saver than ever with a lot less fine print. Join Wim Henderyckx & Benjamin Logist.

Forbidden fruits of Active Directory – Cloning, snapshotting, virtualization

16:15 – 17:30

You’ll just have to understand that for practical reasons I have to kind of attend my own session. It’s the nature of presenting.

Windows Server 2012 Hyper-V Networking Evolved

Exploring Hyper-V Virtual Switch Port Mirroring

Posted on by
6

Windows Server 2012 brings us many new capabilities and one of those is port mirroring. You can now configure a virtual machine NIC (vNIC) who’s traffic you want to monitor as the source in the Advanced Features of the Network Adapter settings. The vNIC of the virtual machine where you’ll run a network sniffer, like Network Monitor or WireShark, against is set to “Destination”. It’s pretty much that simple to set up. Easy enough.

On the vNIC you want to monitor the traffic to and from the VM, under Settings, Network Adapter (choose the correct one), under Advanced Features you select “Source” as Mirroring mode. In this example we’re going to monitor data traffic to and from the guest Columbia.image

On the destination VM we have a dedicated vNIC set up called “Sniffie”image

On the guest VM Pegasus, where we’ll capture the network traffic via a dedicated vNIC (“Sniffie”), we set that vNIC (virtual port) to “Destination” as Mirroring node:image

So now let’s start pinging a host (ping –t crusader)  on our Source VM  Columbiaimage

And take a look on the Destination vNIC on virtual machine Pegasus where we’re capturing the traffic. The “Sniffie” NIC there is set to destination as Mirror Mode. Look at the ICMP echo reply from form 192.168.2.32 (Crusader host). Columbia is at 192.168.2.122 sending out the ICMP echo request.image

Pretty cool!

Some Technicalities

So deep down under the hood, it’s the switch extension capabilities  of the Hyper-V virtual switch that are being leveraged to achieve port sniffing. This is just one of the many functionalities that the Hyper-V extensible switch enables. The Hyper-V extensible switch itself uses port ACLs to set a rule that forwards traffic from one  virtual port to another virtual port. For practical reasons translate virtual port to vNIC in a VM and this translates into what we shown above. While it’s good to know that port ACLs are what is used by the extensible switch to do enable all kinds of advances features like port mirroring but you don’t need to worry about the details to use it.

Things to note

Initially many of us made the assumption that we’d be able to sniff the traffic form a virtual port to a port on their physical switch. This is not the case. Basically, in box, it’s a source VM that mirrors it’s network traffic form one or more virtual ports (vNICs) to a destination VM’s one or more virtual ports (vNIC).

You can send many sources to one destination. That’s fine. You could also define more destinations on the same host but that’s not really wise and practical as far as I can see. All in all, you set it up on  when needed on the source VM and you keep a destination VM with a sniffer around for the sniffing.

Also keep in mind that all this works within the boundaries of the same host. Which means that if you want to monitor a VMs network traffic when it moves across nodes in a cluster you’ll have to have "destination” virtual machine on each host. This means that when a source VM is live migrated it will mirror the traffic to that local destination VM. That works.

You could try and live migrate source & destination VMs to the same host but this is not feasible in real life. For one the capture doesn’t survive after a life migration as your sniffer loses connectivity to virtual Port / vNIC.image

Don’t be too disappointed about this. Port mirroring is not meant to be a permanent situation that you need to keep highly available anyway, bar some special environments/needs.

Whilst is it true that out of the box you can’t do stuff like sending the mirrored traffic form a guests vNIC/virtual port to a physical switch port where you attach your network sniffer laptop or so. If you throw on the CISCO Nexus 1000V it replaces the Microsoft in box “Forwarding Extensions” and than it’s up to CISCO’s implementation to determine what you can or can’t do. As this stuff is right up their sleeve they allow the Cisco Nexus 1000V mirrors traffic sent between virtual machines by sending ERSPAN to an external Cisco Catalyst switch. I have not had the pleasure of playing working with this.

Anyway, I hope this help to explain things a little. Happy sniffing and don’t get yourself into trouble, follow the rules.