Typical ESXi host-facing switchport configs
Posted: November 8, 2012 Filed under: Cisco Nexus, Networking, VMware | Tags: bpdu, bpduguard, config, esxi, esxi switch config, switch configuration, switch port, switchport, switchport nonegotiate, switchport trunk allowed vlan 6 CommentsI was troubleshooting a production issue a couple days ago that led me to request the switchport configs from our Networking team of our ESXi 5.0 hosts that pass virtual machine traffic. Here’s a snippet of what they came back with for two particular ports:
interface GigabitEthernet1/5
description -=R910 ESX# 1 – Front Side=-
switchport mode trunk
end
interface GigabitEthernet1/6
description -=R910 ESX# 1 – Front Side=-
end
Well. Not only do I see our problem (no config *at all* on one port!), but I see something else that troubles me. Our ESXi host-facing ports are only configured as trunk ports. Absolutely* nothing* else. Well, this just won’t do.
Auditing a Virtual Infrastructure: What they ask for
Posted: November 2, 2012 Filed under: Site Surveys, VMware | Tags: audit, esxi audit, it audit, security audit, vi audit, virtual environment audit, virtual infrastructure audit, vmware audit 2 CommentsGood day my friends! Good day it is, indeed! What makes it a good day, you ask? Well, for one, I’m being audited for the first time in my life. No, this isn’t an IRS audit (although I’m sure that would be more pleasant for me). This is an audit of my virtual infrastructure. I assume people, for some odd reason, like to know their money is entrusted to competent folks (see, I work for a bank) that will safeguard it from the evils of the Internets, like this guy à