Content: Not - RainFocus · Veeam Availability Console vCD Self Service Portal IaaS Repository Cloud Connect Gateways Cloud Connect Tenant Portal Cloud Veeam ONE vCAN and VCSP Super

Michael Cade, @MichaelCade1, vZilla.netAnthony Spiteri, @anthonyspiteri, anthonyspiteri.net

PBO3311BUS

#VMworld #PBO3311BUS

Implementing Advanced vSphere Features with Veeam Availability Suite

VMworld 2017 Content: Not fo

r publication or distri

bution

VVols

SPBM

Agenda

Part 1 - Next Generation Storage

vSAN

Encryption

Part 2 – Cloud and Management

Cloud Connect Replication v10 Enhancements

Cloud Connect Replication and DRaaS

Self Service Backup and Recovery for vCD and vSphere

Veeam One and Log Insight Content Management Pack

PBO3311BUS CONFIDENTIAL



bution

Next Generation StorageSPBM – Storage Policy Based Management

PART 1




bution

SPBM is the foundation of the SDS Control Panel

• A common policy framework across VMFS, vSAN & VVols

• Abstracts underlying storage

• Intelligent placement of services at VM level




bution

The Storage Policy-Based Management association is critical when it comes to backup and restore.

Otherwise, why use the new frameworks if you can’t ensure their service levels on restore.

VMFS snapshots a lot better in recent versions of vSphere, but Snapshots changed completely with vSAN and VVols.

Sounds great for your production workloads, what about backup?




bution

Rules - HowPolicies in the backend are consumed by JOBS (or tasks, or schedules, or batch…)

Jobs are difficult to maintain at scale if they deal with single VMs or groups

The environment is highly changing, instead of changing jobs frequently, let’s have them adjust automatically




bution

• Why wouldn't you be using these for your Veeam Backup & Replication™ jobs?

• Fast• Manageable• Automated

Automate your Veeam backup with vSphere Tags




bution

• Automate your VMs being added to a backup job by using vSphere Tags

• SPBM policies assigned to a VM will also be recovered

Create Veeam Backup Jobs using vSphere Tags




bution

• Ensure that the restore process correctly matches the Storage Policy-Based Management association

IMPORTANT!




bution

Next Generation StorageVVols




bution

• VVol support came with complete vSphere 6 support in Veeam Availability Suite™ v8

• VVol backups follow much of the same workflows of a regular VM backup except their path is much more VVol aware

Backup mechanism




bution

Backup types supported

•

•

•

•

•

•

•




bution

Backup types supported

•

•

•

•

•

•

•

•




bution

Snapshots: Files vs VVols

main.vmdk

VMFS VVol

VVol ID 42

main.vmdk

snap.vmdk

VVolID 42

Flat file

snap.vmdk

Redo log

Redo log

snap.vmdk

VVolID 86




bution

VVolID 861

Reverting Snapshots

main.vmdk

VVol ID 42

main.vmdk

snap.vmdk

VVolID 42

Flat file

VVolID 86

backoutVVol

ID 243

VMFS VVol




bution

VMFS VVol

VMFS versus VVol




bution

VMFS VVol

VMFS versus VVol




bution

• Veeam Quick Migration (included in the FREE edition)• An out-of-band VVol migration tool • Migrate to a VVol from basically any source VM

arrangement

• Quick Migration allows you to completely reconstruct a VM on a VVol target without unnecessarily linking vCenterenvironments

• Source VM should be hardware 11

Migration




bution

Next Generation StoragevSAN




bution

• Gather data distribution from vCenter• Determine where most VM data resides• Efficient use of proxy and resource (Hot-Add)

vSAN - Smart logic

VMware KB Article




bution

https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2149874

History and Overview

vSAN Aware Backups

• Support for vSAN first in mid 2014 v7 Update 4• 6.5 Support in 9.5 Update 1• 6.6 Support in 9.5 Update 2

• Not an Advanced Feature in Itself• VMware VADP Libraries Commonly Used• Extracts Data from ESXi• Reads VMDK of any VM

• vSAN Aware Backups• Works with lack of vSAN Data Locality• Doesn’t Care about where VM Lives (Host)• Looks at Placement of Disk Objects




bution

Example Workflow

vSAN Aware Backups




bution

Veeam Backup & Replication doesn’t care what Host the VM is registered on.

vSAN Aware Backups




bution

More interested in looking at the placement of the VM Disk Objects.

vSAN Aware Backups




bution

One Veeam Backup & Replication Proxy Server per vSAN Host

vSAN Aware Backups




bution

Use DRS Host Affinity rules to keep them locked to a host

vSAN Aware Backups




bution

There is no special vSAN Enabled Backup Option

vSAN Aware Backups Job Logic

vSAN enabled datastore detected by Backup & Replication and objects enumerated




bution

Once we know were the disk objects are…

Backup & Replication tries to map the data to the proxies that can access them

vSAN Aware Backups Job Logic




bution

Proxies are marked as “hotAddSameHost”

vSAN Aware Backups




bution

The final step is to select which proxy will execute the read from vSAN

vSAN Aware Backups – Job Logic




bution

The final step is to select which proxy will execute the read from vSAN

vSAN Aware Backups




bution

• Instant VM Recovery®

• Quick Rollback

• There are many other specific options for infrastructure restores (Entire VM, VM hard disks, VM files, etc.)

• Veeam Explorers™ for SQL Server, Exchange, Active Directory, Oracle and SharePoint

Restore mechanism




bution

Next Generation StorageEncrypted VMs




bution

Encrypted VMs 101KMS is required• Key Management Server (KMS) is mandatory to use encrypted VMs

Doesn’t KMS add SPOF to my vSphere?• Oh, yes! We had our QC labs turn pumpkins twice already

What are my options for KMS?• HyTrust (free, 5K USD for support)• OpenKMIP (found extremely unreliable)• 3rd party




bution

Lost processing modes• Direct storage access modes are impossible for encrypted

VMs (Direct SAN, Direct SAN+BFSS, Direct NFS)

Supported processing modes• Hot Add proxy itself must be an encrypted VM, otherwise

backup will failover to NBD[SSL] (load balancer is aware)

Security• VDDK fetches unencrypted content of encrypted VMDKs, so

do consider enabling backup file encryption in Veeam

Backup of encrypted VMs




bution

We DO NOT encrypt VMs, vSphere does

To ensure this, select the target datastore with VM Encryption storage policy

Applies to full VM restore, replication and Quick Migration (including Instant VM Recovery)

Restore



bution

Next Generation StorageMonitoring & Reporting




bution

• Veeam ONE™ Business View

Monitoring and reporting




bution

VM with no backup




bution

VM with no backup




bution

INTERMISSION…




bution

Cloud and ManagementCloud Connect Replication, vCloud Director, vSphere and Log Insight

PART 2




bution

Veeam Backup Components

Infrastructure as a Service Components

Cloud Connect Repository

Cloud Backup & Replication

Network Edge

IaaS Backup & Replication

WAN Accelerator

vCenter

Cloud EnterpriseManager IaaS/Cloud

vCloud Director

Network Extension Appliances

Veeam Availability Console

vCD Self Service Portal

IaaS RepositoryCloud Connect

Gateways

Cloud Connect Tenant Portal

Cloud Veeam ONE

vCAN and VCSP Super Architecture IaaS, BaaS, RaaS, DRaaS – v9.5

IaaS vSphere Platform Replication vSphere Platform

vCenter

NSX-v




bution

Veeam Backup Components

Infrastructure as a Service Components

Cloud Connect Repository

Cloud Backup & Replication

Network Edge

IaaS Backup & Replication

WAN Accelerator

vCenter

Cloud EnterpriseManager IaaS/Cloud

vCloud Director

Network Extension Appliances

Veeam Availability Console

vCD Self Service Portal

IaaS RepositoryCloud Connect

Gateways

Cloud Connect Tenant Portal

Cloud Veeam ONE

vCAN and VCSP Super Architecture IaaS, BaaS, RaaS, DRaaS – v10

IaaS vSphere Platform Replication vSphere Platform

vCenter

NSX Edge Service GatewayNSX-v NSX-v




bution

Cloud and ManagementvCloud Director History, Advanced Capabilities and Futures




bution

Veeam vCloud Director Backup Integration

• Released in Veeam Backup & Replication 7.0

• Uses vCD APIs to get correct hierarchy• Captures vApp Metadata• Allows Restoration of object back into vCD

• Metadata Includes

• General VM info• vApp Networks• Startup options• User Info• Lease• Quota• Storage

• Restore Options

• In Place or side by side• Instant VM Recovery• VM Files, Hard Disks or OS Files




bution

Veeam vCloud Director Self Service Portal


• Multi-tenant self service backup and restore portal• Requires Enterprise Manager

• Allows tenant’s to backup

• Single VMs• vApps• Virtual Datacenters• Organisations

• Allows tenant’s to restore

• In place• Side by side• File level• MSSQL items• Oracle items




bution

Veeam vCloud Director Self Service Portal – Quick Demo




bution

Veeam vCloud Director v10 DRaaS Enhancements


• Uses vCD APIs to get correct hierarchy• Captures vApp Metadata• Allows Restoration of object back into vCD

• Metadata Includes

• General VM info• vApp Networks• Startup options• User Info• Lease• Quota• Storage

• Restore Options

• In Place or side by side• Instant VM Recovery• VM Files, Hard Disks or OS Files




bution

Cloud and ManagementCloud Connect Replication Advanced Partial Failover




bution

Veeam Cloud Connect Replication – Partial Failover

Tenant Side SP Side

Cloud Gateways




bution


Tenant Side SP Side

Cloud Gateways




bution


Tenant Side SP Side

Cloud Gateways




bution


Tenant Side SP Side

Cloud Gateways




bution


Tenant Side SP Side

Cloud Gateways

L2 VPN




bution

Veeam Cloud Connect Replication – Partial Failover DEMO




bution

Cloud and ManagementVeeam One and Log Insight Content Management Pack




bution

• Free Edition is Powerful!• vCD and Cloud Connect Monitoring

Veeam One




bution

vRealize Log Insight- DEMO

• Log Analytics• Content Packs

• vCD• vSphere• NSX• Veeam




bution

Call To Action!

• Use Tags Use Tags• Download Veeam ONE• Download Log Insight Content Pack




bution



bution



bution

Documents

Content: Not - RainFocus · Veeam Availability Console vCD Self Service Portal IaaS Repository Cloud Connect Gateways Cloud Connect Tenant Portal Cloud Veeam ONE vCAN and VCSP Super