Tuesday, 21 April 2009

Visio Diagram of the Lab

To help people understand the layout of the lab here is a network diagram:


Amy said...

Roggy: excellent tutorial, learned a lot from it.
in this tutorial, is Openfiler a physical machine or a VM?
Also, the esx hosts for this tutorial are they in a domain or are you using Hosts files?
Thank you for the wonderful tutorial, your credentials are like Wow !!

Roggy said...

hey amy,

Openfiler is a VM.

Esx isnt being used in this particular tutorial, however if you mean MS exchange, then you are right they are joined to a domain.

Glad you like the tutorial :)

Amy said...

This my favorite site of all, it takes a bit to get used to the pace of the video, but i got it now.
You see, I have 2 esx servers on the 192... network that goes to the internet via personal router and then to cable modem.
so my internal network is 192...and my other network is the 10 network as per your tutorial, inside the esx servers, I have HA and DRS enable, it is going wonderful.
My question was, if it was important to have my 192..network using a real domain controller, although everything is working great so far, my nat vm allows traffic to the internet fine.

Roggy said...

ahh ok - confused me a bit as the comment was posted on an exchange tutorial :)
no worries, glad you enjoy the site and even better that you got it all working and changed it to your own specs!
nice one :)

Amy said...

Roggy, thank you again for your tutorial, I have gone beyond the this lab and added VMware View 4.0, right now I am completely setup and I am able to deploy desktops on Demand as long as my vmware view client is in the same network as my connection view server is, in this case my 10 network which is hosted by my ESX servers, my ESX servers are in the 198 network.
This my question: how do I access my Connection view server from a client in the 192 network? obviously the NAT server is where I should resove it, I do not have a clue about where to allow incoming traffic from the 198 to the 10 network and viceversa.
could you please explain what setting do I have to manage in the NAT server to allow this to happen.

Thank you
PS: I am on the lookout for a tutorial from you on how to deploy VMware view 4.0 on Vsphere, mine is setup on ESX 3.5u4. you Vmware Clustering tutorial is a great start.

Roggy said...

You have a couple of options you could install a router (like vyatta) to route between the network and the

Or as this is a lab and you want practise, why not install a "VMview Security Server" you would normally place this in the DMZ, however with one interface in the network and the other in ther network it should work well.

I will be doing a vmview lab at somepoint soon :)

Amy said...

Last night I installed Vyatta VC502 and right now I am in the process of trying to understand how it works, I think you do a tutorial about it but it is kind of advanced level, I do like the idea of Security Server as it should be in a production environment, I do not have an idea about how to setup a DMZ zone.
I will try first the Vyatta solution as it seems the faster way to get there.
I will investigate both approaches this weekend and can't thank you enough for your contribution to the community.

Amy said...

Roggy, thanks again for introducing me to Vyatta VM Router, nice and easy piece of software.

I have successfully installed VMware View 4 and I am now able to deploy Linked desktops at will.
My next step is to use add security Server as suggested by you and Have internet and local users connect to the VMware View Desktops.
I need a DMZ zone and these are questions I have:
Do I need another Vyatta Router for the DMZ or just add another interface?
Do I need another VSwitch?
What are the setting for the VSwitch if any?
What are the settings of the Vyatta Interface or router?
By the way I did not use Openfiler, I am using Starwind ISCSI Target, it works flawlessly.
My next step is to introduce an old HP MSA1000 I have in my garage and switch all my storage way from Starwind, just for practice.

Roggy said...

That sounds great. In response to your questions:

Do I need another Vyatta Router for the DMZ or just add another interface?

Just add a new interface

Do I need another VSwitch?

Or portgroup connecting the vyatta dmz interface to the security server

What are the setting for the VSwitch if any?


What are the settings of the Vyatta Interface or router?

Look at some of the vyatta videos with dmzs in them, it will give you an idea as to how to do it