AWS CloudFormation Templates – Sample CloudFormation templates, solutions, and snippets
CloudFormation::Init Documentation
Using AWS CloudFormer – Introduction and walkthrough for AWS CloudFormer
List of Services Supported in CloudFormation
JSON Formatter and Validator – Free tool for validating JSON templates
How to Use Nested Stacks – How to modularize your CloudFormation stacks
Conditionally-launch-aws-cloudformation-resources-based-on-user-input
One of our VC is down because of the space issue and not able to login to the Shell.
Followed the below steps to fix the same.
Stderr = su: cannot not open session: Permission denied
Centralized Logging – AWS Answers | https://aws.amazon.com/answers/logging/centralized-logging/
AWS Developer Forums: Discussion Forums | https://forums.aws.amazon.com/index.jspa
Amazon Web Services – Labs · GitHub | https://github.com/awslabs
GitHub – awslabs/aws-shell: An integrated shell for working with the AWS CLI. | https://github.com/awslabs/aws-shell
Region Table | https://aws.amazon.com/about-aws/global-infrastructure/regional-product-services/
AWS Regions and Endpoints – Amazon Web Services | https://docs.aws.amazon.com/general/latest/gr/rande.html
AWS Service Limits – Amazon Web Services | https://docs.aws.amazon.com/general/latest/gr/aws_service_limits.html
AWS IP Address Ranges – Amazon Web Services | https://docs.aws.amazon.com/general/latest/gr/aws-ip-ranges.html
Error Retries and Exponential Backoff in AWS – Amazon Web Services |https://docs.aws.amazon.com/general/latest/gr/api-retries.html
Cloud Solutions by Application – Amazon Web Services (AWS) | https://aws.amazon.com/solutions/
AWS – Application Architecture Center | https://aws.amazon.com/architecture/
AWS Simple Icons | https://aws.amazon.com/architecture/icons/
Compliance Programs – Amazon Web Services (AWS) | https://aws.amazon.com/compliance/programs/
Case Studies & Customer Success – Amazon Web Services (AWS) | https://aws.amazon.com/solutions/case-studies
AWS Certification – AWS Cloud Computing Certification Program | https://aws.amazon.com/certification/
EC2 Template- https://templates.cloudonaut.io/en/stable/ec2/
In our POC for our new application , noticed the significant differences on the performance on two different environment which is running on same hardware model.Even though the network layer is different from the environment A and B the issue is when the data is copied locally .
Later we noticed when we change the EVC Mode from Intel Nehalem Generation to Intel Ivy Bridge a good performance improvement.
From the VMware blog , it is mentioned that ” For most enterprise applications you can see there is no, or an almost immeasurable, performance impact when using EVC. But, there are certain corner cases, like encryption, that are crippled when instructions sets like AES-NI set are not available (Example: Oracle Transparent Data Encryption, OpenSSL)” so our data in POC is also encrypted and to make sure we setup the test VM and configured the Apache for the speed test with SSL on port 1000.
The htdocs folder was in localdisk (tintri NFS datastore) and tested with localdisk (local SAS disk datastore)
dlspeed=$(echo -n “scale=0; ” && curl -k https://localserver:1000/100MBfile -w “%{speed_download}” -o /dev/null -s | sed “s/\,/\./g” && echo “/1048576”); echo “$dlspeed” | bc -q
EVC mode disabled – 136MB/s
EVC mode with “Intel Ivy Bridge” – 183MB/s
EVC mode with “Intel Nehalem Generation” – 41MB/s
As per the VMware Blog also they mentioned the test result and for encryption there is a huge different so when setting up the new cluster , we should understand the type of application and traffic type , based on that we have t select the cluster EVC mode.
Note : Anything above Nehalem Generation wont be supported by VMware 7.0 version for HP Gen8 old hardware models so pls check the VMware compatible guide and choose the EVC mode.
Refer:
https://blogs.vmware.com/vsphere/2014/06/enhanced-vmotion-compatibility-evc-affect-performance.html
Intel CPU EVC Matrix (VMware Enhanced vMotion Compatibility)
During the DR test we have noticed that few of the Redhat 5\6\7 VMs were failing with various errors like ( “A general system error occurred: vix error codes = (3016,0)”,”Error – Timed out waiting for VMware Tools after 900 seconds”) on IP customization part and we have tried few option but it looks like VMware tools 10.1.x is the cause for the login delay and VMware has recommended to upgrade the SRM to 8.1.1 version.
IP customization might be failing due to the login delays with 10.1.x and above tools which uses SAML token authentication on the OS whereas 10.0.9 and below uses VIX authentication using VM tools when they are running on OS.
With SRM 8.1.1 we have added a delay in the code so the timeout value for this specific task is increased which can allow the customization script to be completed at OS level:
https://docs.vmware.com/en/Site-Recovery-Manager/8.1/rn/srm-releasenotes-8-1-1.html
{SRM 8.1.1 Release Notes – Refer “IP customization during recovery might fail due to delay in the completion of the SRM guest enrollment script”}
As a workaround, we can downgrade to VM tools 10.0.9 version until the upgrade can be performed.
On of our vCenter was having issue on connecting the AD users and when users trying to connect the VC , it will fail with the invalid credentials error.
I have already mentioned few blogs about AD authentication issue here and here .
Tried removing the AD and re-adding it from the PSC and also from the identify sources but it didn’t help to fix the issue so we started looking the logs and found the below error while trying to login using AD credentials.
vmware-sts-idmd.log:
2019-01-11T19:47:29.955Z vsphere.local 574439e1-8709-44ee-b5e8-a7ae7f0f8e14 ERROR] [ServerUtils] Exception ‘com.vmware.identity.idm.IDMLoginException: Native platform error [code: -1765328360][null][null]’ com.vmware.identity.idm.IDMLoginException: Native platform error [code: -1765328360][null][null]
As per the VMware below is the recommendations from them ..
Followed the steps below to workaround the issue.
/opt/likewise/bin/domainjoin-cli leave command./opt/likewise/bin/domainjoin-cli join domain-name domain_admin_user/opt/likewise/bin/domainjoin-cli join vmware.com administratorRefer : VMware vCenter Server 6.5 Update 1 Release Notes ( Please check in release notes under Server Configuration Issues section)
