VMware vSAN 6.6 ─ new release features
VMware introduced the release of VMware vSAN 6.6 on April 14, the next generation of enterprise-level embedded data storage for the vSphere platform, which has been continuously improved since its first version in October 2013. There are many changes and they will certainly be welcomed by corporate users.
According to VMware, its Virtual SAN (vSAN) * is currently the best in the software industry for Hyper-Converged Infrastructure (HCI).
* VMware Virtual SAN is a direct-attached storage virtualization technology that combines server drives and flash drives into shared distributed data storage for virtual machines with high performance and fault tolerance.
')
The latest version of the product complements this popular solution with built-in native security tools, HCI security , stretched high-availability clusters and 50% more productive, fully flash systems for high workloads in next-generation business systems.
General Product Description
Today, more than 7 thousand clients of all industries and all scales use the capabilities of vSAN to simplify their IT infrastructure and manage enterprise workloads ─ from critical business applications to virtual desktops. Typical vSAN features are as follows:
Risk-free deployment
As the only native data warehouse for vSphere , server virtualization platforms for creating cloud infrastructures, vSAN allows you to extend virtualization to storage systems, creating a hyper-convergent solution that fits well with existing tools, numerous software products and hardware platforms, and professional and user skills.
Basic information about VMware vSphere can be found here .
The latest version of vSAN further reduces the risks of the enterprise at the expense of the industry's first embedded solution, HCI security. The system protects data while providing simple storage management.
For vSAN there is a wide range of deployment options provided by the large and proven vSAN ReadyNode ecosystem of leading server providers.
Reduced tco
Clients with a limited IT budget often turn to HCI systems based on vSAN, because they reduce the Total Cost of Ownership (TCO) to 50%. VSAN systems can dramatically reduce costs by choosing the appropriate hardware and using flash technology, that is, better server-side economics.
In general, storage system maintenance becomes easier, with fewer tasks. Intellectual automation can be controlled by one tool, and without the need for additional specialists.
Scaling
As companies evolve, the “agility” of vSAN helps prepare for IT tomorrow, ─ expand into a public cloud or quickly deploy new technologies, ─ and thereby gain a competitive advantage.
vSAN supports a wide range of applications ─ from legacy critical systems to container architectures. In combination with the VMware NSX platform, vSAN significantly enhances the SDDC (Software-Defined Data Center) stack, allowing you to expand on-premises storage systems and management services to a public cloud. Major new features and vSAN 6.6 updates include the following.
The first in the industry "native" encryption HCI
vSAN offers a HCI encryption solution for stored (unused) data, protecting it from unwanted access. Encryption vSAN is cheaper and has more flexibility than similar systems. It can be used on a variety of hardware from various manufacturers. The software also implements simplified key management.
As a result, there is no longer a need to use self-encrypting hard drives (Self-Encrypting Drives, SED ). VSAN encryption is also implemented in accordance with the requirements of two-factor authentication (SecurID and CAC), and is the first HCI solution to have a Security Implementation Guide (STIGs) certified by the Security Information Systems Agency DISA )
Extended Clusters with Local Site Protection
New extended “stretched” clusters with local site protection provide protection and fault tolerance of external network systems (sites *) and on-premise systems, while the cost of such functionality is lower (up to 50%) compared to traditional solutions.
* In this context, the concept of “ site ” (site) is understood more broadly, ─ as a site in a convergent infrastructure, and not just a thematic set of web pages.
A complete stretched cluster solution provides simple, low-cost disaster recovery and meets business continuity requirements.
Additionally, vSAN Cloud Analytics reduces operating costs by automatically providing real-time, proactive system status notifications and related recommendations using the vSAN Health Service Intelligent Intelligence Service.
vSAN now supports Unicast Networking technology, instead of the previously used Multicast, which simplifies the initial installation of vSAN.
This allows vSAN to be used in a wider range of on-premise and cloud deployment options, without requiring network changes.
The new “vSAN Management Pack for VMware vRealize Operations Manager” provides additional options for monitoring, managing, and detecting abnormalities in vSAN performance, along with complete infrastructure solutions.
Always-On Protection
With the new tools of the Always-On Protection group, vSANs are able to support the operation and availability of applications, despite potential hardware problems.
The “Degraded Device Handling” (DDH) component completely controls the operation of the disks and moves the critical data to another place in advance if there is a possibility of failure. Then, if necessary, reconfiguration and restoration of disks and their partitions are performed.
Lifecycle Management
New tools group "Intelligent Operations and Lifecycle Management" accelerate the initial installation of hardware and software. They also provide simple hardware lifecycle management, predicting their likely future behavior.
The management time for common tasks is reduced to 80% due to “one-click automation”. Optimized data services further increase vSAN performance by providing up to 50% more I / O operations per second (IOPS) for devices using flash drives than previous versions of vSAN, up to 150 thousand IOPS per host.
The new architecture allows you to deploy next-generation applications, such as Splunk, Big Data and Citrix XenApp. In addition, the vSAN for Photon version is now available on the Photon Platform 1.1 platform and the new Docker Volume Driver.
Customers can accelerate the introduction of hardware through the Day 1 Support approach, ─ for newer Intel Optane 3D XPoint NVMe SSD flash drives. In addition, vSAN now offers options for increasing caching, including flash drives of 1.6 TB.
The VMware Ready for vSAN Program program allows customers to expand and complement their vSAN environment with data protection services and file services from third-party partner companies.
More details ─ what is new in vSAN 6.6?
The new release of VMware vSAN, which has the version designation of vSAN 6.6, does not match the vSphere release sequence number. Rather, it can be considered as a big patch for the vSphere, ─ and at the same time it is the main release for vSAN for today. Release 6.2 with Stretched Clustering was announced earlier, as well as release 6.5 with iSCSI and 2-Node Direct Connect.
However, vSAN 6.6 brings new useful functionality and a whole set of various improvements. The overall list of improvements is as follows.
- vSAN Encryption ─ Datastore level encryption with efficient compression;
- Local Protection for Stretched Clusters;
- Delete the principle of operation Multicast;
- The management and monitoring functionality of the ESXi Host Client (HTML-5);
- Advanced rebalancing;
- Extended Recovery;
- Advanced sync and resync;
- Preliminary check of service;
- Advanced user interface for stretched clusters;
- vSANs are included in the Phone Home / Customer Experience Improvement Program, including in the cloud health check;
- Advanced API;
- Means to facilitate the installation of vSAN;
- Updated vSAN Config Assist / Firmware;
- Enhanced Performance and Health Monitoring.
Pretty big list. Some points require clarification, ─ they are described below, ─ some speak for themselves, ─ as in the case of Multicast / Unicast, for example.
vSAN Encryption
A particularly notable improvement in the latest release is vSAN Encryption. As you know, VAIO encryption based on VAIO (vSphere APIs for IO Filters) appeared in vSphere 6.5, which was well received by many clients.
However, for clients using vSAN fully flash, there was one big disadvantage ─ that encryption is performed at the highest level, i.e., IO is encrypted. As a result, the gain from compression turned out to be close to zero. Accordingly, vSAN Encryption was therefore introduced.
There is no need for self-encrypting disks. This is an exclusively software solution that works with hybrid or fully flash systems, regardless of the specific type of storage device used.
Setting encryption in vSAN
Local protection for stretched clusters
"Local Protection for Stretched Clusters" is a very important and useful function, ─ perhaps the most significant since the extended clusters were implemented. In previous releases, it was possible to create a RAID1 configuration on sites, which meant creating only two copies of data, one on each site.
But it also means that when errors appear in one of the copies, only a single copy remains in stock, and another failure can lead to data loss. It also means that if a failure occurs on one of the sites, then resynchronization is necessary.
In vSAN 6.6, this potential threat is eliminated. It is now possible to set “Primary FTT” and “Secondary FTT”, i.e., the permissible number of failures (Number of Failures To Tolerate, FTT). This indicator determines the "elasticity" of the object in the vSAN, respectively, the number of errors.
FTT technology in vSAN 6.6 provides a choice of site for protection, and the level of its local protection
The value for Primary FTT can be set to 0 or 1 in stretched clusters, where 1 means the cluster is stretched. Then in Secondary FTT you can determine how the system will be protected on the site. This could be, for example, RAID1 with multiple local copies, or even RAID5 and RAID6.
Witness VM
Witness VM in a vSAN Stretched Cluster Structure
If an extended cluster is implemented, you can now easily replace the “witness”, Witness VM, directly from the user interface with a few clicks.
Replacing a Witness VM Host Has Never Been So Easy
ESXi Host Client
It is useful to introduce the concept of “vSAN Workflows” into the ESXi Host Client. If for some reason you do not have access to the vCenter Server, you can now access the ESXi host and retain certain controls and monitoring functionality.
Configuring vSAN settings in ESXi
Here is the monitoring panel of the “health status” of the Host Client Health Checks
Other vSAN 6.6 features
Many customers said they would like to narrow the bandwidth consumed when resynchronizing during business hours. Now this is an option available directly from the user interface. However, it is not recommended to set this value by default, since resynchronization suppression also means an increase in the time for its implementation.
Many will appreciate the means of “Maintenance Checks”, issuing appropriate messages, if, for example, it is not possible to complete the task, or with it there are certain difficulties.
Sample warning when trying to delete a disk group
Much work has also been done in the areas of rebalancing, restoration and resynchronization. Today, vSAN can automatically rebalance the IT environment (or it can be done from the UI) when the 80% utilization of resources on any of the system devices is reached.
When restoring and synchronizing the procedure for the following system. If, for example, the host returned to its duties after 70-80 minutes, the vSAN will check what is the preferred option ─ continue synchronizing / restoring the current component or simply updating it.
vSAN Easy Install
In release 6.6, the installer for the vCenter Server Appliance has been improved, well suited for the first deployment of the vSAN infrastructure. This creates a single vSAN cluster using the specified ESXi host.
VSAN Cluster Creation Screen as Installation Stage
Processes specific to vSAN Config Assist / Firmware Updates can do many different useful things, including network preparation, and also check whether all necessary or expected options are activated and whether they are configured correctly.
The Updates option downloads OEM software and drivers, updating them. Today the option is implemented for Dell, Lenovo, Fujitsu and SuperMicro products.
Possible options for building vSAN infrastructure
Some changes have been made to the vSAN Cloud Health Check component to improve its usability.
Performance Monitoring includes metrics for vSAN, resynchronization, iSCSI, client cache, and more.
Cloud Health Check and Analytics detects problems and relates them to a specific knowledge base (Knowledge Base, KB), the number of which is constantly increasing.
In conclusion, it should be added that the Customer Experience Improvement Program has been expanded, which previously belonged mainly to the vSphere. It now includes extensive vSAN information, which should make troubleshooting easier.
According to VMware, its Virtual SAN (vSAN) * is currently the best in the software industry for Hyper-Converged Infrastructure (HCI).
* VMware Virtual SAN is a direct-attached storage virtualization technology that combines server drives and flash drives into shared distributed data storage for virtual machines with high performance and fault tolerance.
')
The latest version of the product complements this popular solution with built-in native security tools, HCI security , stretched high-availability clusters and 50% more productive, fully flash systems for high workloads in next-generation business systems.
General Product Description
Today, more than 7 thousand clients of all industries and all scales use the capabilities of vSAN to simplify their IT infrastructure and manage enterprise workloads ─ from critical business applications to virtual desktops. Typical vSAN features are as follows:
Risk-free deployment
As the only native data warehouse for vSphere , server virtualization platforms for creating cloud infrastructures, vSAN allows you to extend virtualization to storage systems, creating a hyper-convergent solution that fits well with existing tools, numerous software products and hardware platforms, and professional and user skills.
Basic information about VMware vSphere can be found here .
The latest version of vSAN further reduces the risks of the enterprise at the expense of the industry's first embedded solution, HCI security. The system protects data while providing simple storage management.
For vSAN there is a wide range of deployment options provided by the large and proven vSAN ReadyNode ecosystem of leading server providers.
Reduced tco
Clients with a limited IT budget often turn to HCI systems based on vSAN, because they reduce the Total Cost of Ownership (TCO) to 50%. VSAN systems can dramatically reduce costs by choosing the appropriate hardware and using flash technology, that is, better server-side economics.
In general, storage system maintenance becomes easier, with fewer tasks. Intellectual automation can be controlled by one tool, and without the need for additional specialists.
Scaling
As companies evolve, the “agility” of vSAN helps prepare for IT tomorrow, ─ expand into a public cloud or quickly deploy new technologies, ─ and thereby gain a competitive advantage.
vSAN supports a wide range of applications ─ from legacy critical systems to container architectures. In combination with the VMware NSX platform, vSAN significantly enhances the SDDC (Software-Defined Data Center) stack, allowing you to expand on-premises storage systems and management services to a public cloud. Major new features and vSAN 6.6 updates include the following.
The first in the industry "native" encryption HCI
vSAN offers a HCI encryption solution for stored (unused) data, protecting it from unwanted access. Encryption vSAN is cheaper and has more flexibility than similar systems. It can be used on a variety of hardware from various manufacturers. The software also implements simplified key management.
As a result, there is no longer a need to use self-encrypting hard drives (Self-Encrypting Drives, SED ). VSAN encryption is also implemented in accordance with the requirements of two-factor authentication (SecurID and CAC), and is the first HCI solution to have a Security Implementation Guide (STIGs) certified by the Security Information Systems Agency DISA )
Extended Clusters with Local Site Protection
New extended “stretched” clusters with local site protection provide protection and fault tolerance of external network systems (sites *) and on-premise systems, while the cost of such functionality is lower (up to 50%) compared to traditional solutions.
* In this context, the concept of “ site ” (site) is understood more broadly, ─ as a site in a convergent infrastructure, and not just a thematic set of web pages.
A complete stretched cluster solution provides simple, low-cost disaster recovery and meets business continuity requirements.
Additionally, vSAN Cloud Analytics reduces operating costs by automatically providing real-time, proactive system status notifications and related recommendations using the vSAN Health Service Intelligent Intelligence Service.
vSAN now supports Unicast Networking technology, instead of the previously used Multicast, which simplifies the initial installation of vSAN.
This allows vSAN to be used in a wider range of on-premise and cloud deployment options, without requiring network changes.
The new “vSAN Management Pack for VMware vRealize Operations Manager” provides additional options for monitoring, managing, and detecting abnormalities in vSAN performance, along with complete infrastructure solutions.
Always-On Protection
With the new tools of the Always-On Protection group, vSANs are able to support the operation and availability of applications, despite potential hardware problems.
The “Degraded Device Handling” (DDH) component completely controls the operation of the disks and moves the critical data to another place in advance if there is a possibility of failure. Then, if necessary, reconfiguration and restoration of disks and their partitions are performed.
Lifecycle Management
New tools group "Intelligent Operations and Lifecycle Management" accelerate the initial installation of hardware and software. They also provide simple hardware lifecycle management, predicting their likely future behavior.
The management time for common tasks is reduced to 80% due to “one-click automation”. Optimized data services further increase vSAN performance by providing up to 50% more I / O operations per second (IOPS) for devices using flash drives than previous versions of vSAN, up to 150 thousand IOPS per host.
The new architecture allows you to deploy next-generation applications, such as Splunk, Big Data and Citrix XenApp. In addition, the vSAN for Photon version is now available on the Photon Platform 1.1 platform and the new Docker Volume Driver.
Customers can accelerate the introduction of hardware through the Day 1 Support approach, ─ for newer Intel Optane 3D XPoint NVMe SSD flash drives. In addition, vSAN now offers options for increasing caching, including flash drives of 1.6 TB.
The VMware Ready for vSAN Program program allows customers to expand and complement their vSAN environment with data protection services and file services from third-party partner companies.
More details ─ what is new in vSAN 6.6?
The new release of VMware vSAN, which has the version designation of vSAN 6.6, does not match the vSphere release sequence number. Rather, it can be considered as a big patch for the vSphere, ─ and at the same time it is the main release for vSAN for today. Release 6.2 with Stretched Clustering was announced earlier, as well as release 6.5 with iSCSI and 2-Node Direct Connect.
However, vSAN 6.6 brings new useful functionality and a whole set of various improvements. The overall list of improvements is as follows.
- vSAN Encryption ─ Datastore level encryption with efficient compression;
- Local Protection for Stretched Clusters;
- Delete the principle of operation Multicast;
- The management and monitoring functionality of the ESXi Host Client (HTML-5);
- Advanced rebalancing;
- Extended Recovery;
- Advanced sync and resync;
- Preliminary check of service;
- Advanced user interface for stretched clusters;
- vSANs are included in the Phone Home / Customer Experience Improvement Program, including in the cloud health check;
- Advanced API;
- Means to facilitate the installation of vSAN;
- Updated vSAN Config Assist / Firmware;
- Enhanced Performance and Health Monitoring.
Pretty big list. Some points require clarification, ─ they are described below, ─ some speak for themselves, ─ as in the case of Multicast / Unicast, for example.
vSAN Encryption
A particularly notable improvement in the latest release is vSAN Encryption. As you know, VAIO encryption based on VAIO (vSphere APIs for IO Filters) appeared in vSphere 6.5, which was well received by many clients.
However, for clients using vSAN fully flash, there was one big disadvantage ─ that encryption is performed at the highest level, i.e., IO is encrypted. As a result, the gain from compression turned out to be close to zero. Accordingly, vSAN Encryption was therefore introduced.
There is no need for self-encrypting disks. This is an exclusively software solution that works with hybrid or fully flash systems, regardless of the specific type of storage device used.
Setting encryption in vSAN
Local protection for stretched clusters
"Local Protection for Stretched Clusters" is a very important and useful function, ─ perhaps the most significant since the extended clusters were implemented. In previous releases, it was possible to create a RAID1 configuration on sites, which meant creating only two copies of data, one on each site.
But it also means that when errors appear in one of the copies, only a single copy remains in stock, and another failure can lead to data loss. It also means that if a failure occurs on one of the sites, then resynchronization is necessary.
In vSAN 6.6, this potential threat is eliminated. It is now possible to set “Primary FTT” and “Secondary FTT”, i.e., the permissible number of failures (Number of Failures To Tolerate, FTT). This indicator determines the "elasticity" of the object in the vSAN, respectively, the number of errors.
FTT technology in vSAN 6.6 provides a choice of site for protection, and the level of its local protection
The value for Primary FTT can be set to 0 or 1 in stretched clusters, where 1 means the cluster is stretched. Then in Secondary FTT you can determine how the system will be protected on the site. This could be, for example, RAID1 with multiple local copies, or even RAID5 and RAID6.
Witness VM
Witness VM in a vSAN Stretched Cluster Structure
If an extended cluster is implemented, you can now easily replace the “witness”, Witness VM, directly from the user interface with a few clicks.
Replacing a Witness VM Host Has Never Been So Easy
ESXi Host Client
It is useful to introduce the concept of “vSAN Workflows” into the ESXi Host Client. If for some reason you do not have access to the vCenter Server, you can now access the ESXi host and retain certain controls and monitoring functionality.
Configuring vSAN settings in ESXi
Here is the monitoring panel of the “health status” of the Host Client Health Checks
Other vSAN 6.6 features
Many customers said they would like to narrow the bandwidth consumed when resynchronizing during business hours. Now this is an option available directly from the user interface. However, it is not recommended to set this value by default, since resynchronization suppression also means an increase in the time for its implementation.
Many will appreciate the means of “Maintenance Checks”, issuing appropriate messages, if, for example, it is not possible to complete the task, or with it there are certain difficulties.
Sample warning when trying to delete a disk group
Much work has also been done in the areas of rebalancing, restoration and resynchronization. Today, vSAN can automatically rebalance the IT environment (or it can be done from the UI) when the 80% utilization of resources on any of the system devices is reached.
When restoring and synchronizing the procedure for the following system. If, for example, the host returned to its duties after 70-80 minutes, the vSAN will check what is the preferred option ─ continue synchronizing / restoring the current component or simply updating it.
vSAN Easy Install
In release 6.6, the installer for the vCenter Server Appliance has been improved, well suited for the first deployment of the vSAN infrastructure. This creates a single vSAN cluster using the specified ESXi host.
VSAN Cluster Creation Screen as Installation Stage
Processes specific to vSAN Config Assist / Firmware Updates can do many different useful things, including network preparation, and also check whether all necessary or expected options are activated and whether they are configured correctly.
The Updates option downloads OEM software and drivers, updating them. Today the option is implemented for Dell, Lenovo, Fujitsu and SuperMicro products.
Possible options for building vSAN infrastructure
Some changes have been made to the vSAN Cloud Health Check component to improve its usability.
Performance Monitoring includes metrics for vSAN, resynchronization, iSCSI, client cache, and more.
Cloud Health Check and Analytics detects problems and relates them to a specific knowledge base (Knowledge Base, KB), the number of which is constantly increasing.
In conclusion, it should be added that the Customer Experience Improvement Program has been expanded, which previously belonged mainly to the vSphere. It now includes extensive vSAN information, which should make troubleshooting easier.
Source: https://habr.com/ru/post/326870/
All Articles