VeloCloud Lab Hol 2187 01 Ism - PDF - en
VeloCloud Lab Hol 2187 01 Ism - PDF - en
VeloCloud Lab Hol 2187 01 Ism - PDF - en
Table of Contents
Lab Overview - HOL-2187-01-ISM - VMware Cloud on AWS - Fundamentals .................... 2
Lab Guidance .......................................................................................................... 3
Introduction to Amazon Web Services (AWS) .......................................................... 5
Introduction to VMware Cloud on AWS .................................................................... 6
VMware Cloud on AWS Architecture and Service Overview..................................... 8
Conclusion............................................................................................................. 17
Module 1 - Set Up the SDDC (15 minutes) ...................................................................... 19
Introduction........................................................................................................... 20
Hands-on Labs Interactive Simulation: Set Up the SDDC ...................................... 21
Conclusion............................................................................................................. 22
Module 2 - Configure SDDC Networking and Security (30 minutes)................................ 24
Introduction........................................................................................................... 25
Hands-on Labs Interactive Simulation: Configure SDDC Networking and Security 26
Conclusion............................................................................................................. 27
Module 3 - Deploy a Production VM (30 minutes) ........................................................... 29
Introduction........................................................................................................... 30
Hands-on Labs Interactive Simulation: Deploy a Production VM ........................... 31
Conclusion............................................................................................................. 32
Module 4 - Set Up the Hybrid Cloud with Hybrid Linked Mode (30 minutes) ................... 34
Introduction........................................................................................................... 35
Hands-on Labs Interactive Simulation: Set Up the Hybrid Cloud with Hybrid Linked
Mode ..................................................................................................................... 36
Conclusion............................................................................................................. 37
Appendix - New User Guide ............................................................................................ 39
Appendix - New User Guide .................................................................................. 40
HOL-2187-01-ISM Page 1
HOL-2187-01-ISM
Lab Overview -
HOL-2187-01-ISM -
VMware Cloud on AWS -
Fundamentals
HOL-2187-01-ISM Page 2
HOL-2187-01-ISM
Lab Guidance
Hands-on Labs allows you to evaluate the features and functionality of
VMware products with no installation required. This lab is self-paced,
and most modules are independent of each other. You can use the Table
of Contents located in the upper right-hand corner to access any module.
If you are new to the VMware Learning Platform (VLP), please read the
New User Guide located in the appendix. Click below to go directly to the
new user console walkthrough before continuing:
• Module 1 Set Up the SDDC (15 Minutes) (Beginner) Walk through setting
up a native AWS VPC and subnets to connect to your VMware Cloud on AWS
Software Defined Datacenter (SDDC) and deploy an SDDC, add users to the
SDDC and manually scale up the SDDC.
• Module 2 Configure SDDC Networking and Security (30 Minutes) (Beginner)
Walk through creating network segments, configuring an IPSec VPN, Direct
Connect and a Layer 2 VPN and set up, and configure gateway firewall rules
for both management and compute workloads.
• Module 3 Deploy a Production VM (30 Minutes) (Beginner) Go through the
steps of deploying a production VM in VMware Cloud on AWS including
defining and assigning storage policies and custom tags and attributes.
Create distributed firewall rules to allow specific traffic between application
VMs, and enable Log Intelligence for your SDDC.
• Module 4 Set Up the Hybrid Cloud with Hybrid Linked Mode (15 Minutes)
(Beginner) Walk through configuring DNS, subscribing to a content library,
installing the vCenter Cloud Gateway Appliance and configuring Hybrid
Linked Mode. Migrate VMs to VMware Cloud on AWS via cold migration and
live vMotion and edit the Elastic DRS settings.
Lab Captains:
This lab manual can be downloaded from the Hands-on Labs Document site found
here:
http://docs.hol.vmware.com
HOL-2187-01-ISM Page 3
HOL-2187-01-ISM
This lab may be available in other languages. To set your language preference
and have a localized manual deployed with your lab, you may utilize this
document to help guide you through the process:
http://docs.hol.vmware.com/announcements/nee-default-language.pdf
HOL-2187-01-ISM Page 4
HOL-2187-01-ISM
Cloud computing provides a simple way to access servers, storage, databases and a
broad set of application services over the Internet. A cloud services platform such as
Amazon Web Services owns and maintains the network-connected hardware required for
these application services, while you provision and use what you need via a web
application
HOL-2187-01-ISM Page 5
HOL-2187-01-ISM
VMware:
VMware Cloud on AWS is newly available in the AWS Europe (Frankfurt) Region, in
addition to AWS Europe (London), AWS US East (N. Virginia) and AWS US West (Oregon)
Regions. VMware Cloud on AWS is GDPR ready with a host of key industry certifications.
We have also introduced rich capabilities that allow customers to enhance enterprise
readiness, accelerate cloud migration and simplify hybrid cloud deployments. Extend
on-premises data centers to the cloud with a consistent operational model, retaining
your familiar VMware tools, policies, and management as well as investments in third-
party tools. Leverage AWS services to extend the value of enterprise applications over
their lifecycle.
VMware is working on bringing VMware Cloud on AWS to new AWS regions and enable
more use cases over time.
HOL-2187-01-ISM Page 6
HOL-2187-01-ISM
grade environments in the AWS cloud in a fast and cost-effective way with
VMware Cloud on AWS.
• On-demand Capacity - Get VMware SDDC capacity in the AWS Cloud in minutes
whenever your business needs to meet temporary, seasonal, or unplanned
demand. Take advantage of elastic capacity and usage-based economics of
VMware Cloud on AWS by seamlessly moving your live applications into an
environment that is operationally consistent with your VMware data center.
• New Application Development and Test - Deliver VMware SDDC-consistent dev/
test environments that can integrate with modern CI/CD automation tools. Access
native AWS services seamlessly for new app development.
• Disaster Recovery as a Service with VMware Site Recovery - Easily deliver
business continuity with VMware Site Recovery: on-demand disaster recovery as
a service, optimized for VMware Cloud on AWS. Accelerate time-to-protection,
simplify disaster recovery operations, and reduce secondary site costs with cloud
economics, while providing a secondary site that is operationally consistent with
your VMware data center.
VMware Cloud on AWS™ enables operational consistency for customers of all sizes
whether their workloads operate on-premises or in the public cloud.
This jointly engineered solution between VMware and Amazon Web Services provides
global scale and allows customers to leverage their existing skills and tools while
maintaining compatibility with their existing applications with no re-platforming
required. Through the power of NSX customers can architect networking and security to
suit the needs of their applications. VMware Cloud on AWS™ is a software defined
enterprise solution that enables customers to maintain consistent SLA's across private,
public and hybrid cloud infrastructures.
Please proceed to learn more about the scalable and robust VMware Cloud on AWS™
architecture.
HOL-2187-01-ISM Page 7
HOL-2187-01-ISM
VMware Cloud on AWS integrates VMware's flagship compute, storage and network
virtualization products (vSphere, vSAN and NSX) along with vCenter management, and
optimizes it to run on next-generation, elastic, bare-metal AWS infrastructure. vSphere
allows customers to operate their virtual machines and containers in a similar fashion to
their on-premises architecture.
• All-Flash vSAN acts as the storage platform and consumes host-local NVMe flash
devices.
• NSX is used for all network functionality and it connects the ESXi hosts to the
AWS network and exposes logical networks for virtual machine networking.
An in-cloud SDDC can be used on its own, but most customers have a hybrid cloud
strategy. With vCenter Hybrid Linked Mode (a new feature for VMware Cloud on AWS),
HOL-2187-01-ISM Page 8
HOL-2187-01-ISM
customers can connect the two vCenters to create a single pane of glass for hybrid
cloud management.
VMware Cloud on AWS provides access to a broad range of native AWS services. This
helps with data gravity because customers are now able to place the application closer
to the AWS services acting as a data source. Instead of network traffic flow from the DC
firewalls to AWS and viceversa, they are now connected to the same network as the
underlying AWS services. This enables you to build and operate new application
architectures with minimal latency, network overhead and reduced AWS network
outbound costs.
VMware Cloud on AWS leverages cloud economics aligned for capacity and demand with
one point of contact:
HOL-2187-01-ISM Page 9
HOL-2187-01-ISM
All software components of the cloud service are fully certified and supported by
VMware.
• Jointly engineered, VMware Cloud on AWS provides customers a one-stop shop for
native AWS services from within their SDDC
• All components of the solution are delivered, operated and supported by VMware
Global Support Services (GSS)
• VMware fully certifies and supports all software components of the service
• VMware removes the burden of managing software patches, updates or upgrades
for users. When operating as a cloud service VMware takes the responsibility of
ensuring the service is always up to date
HOL-2187-01-ISM Page 10
HOL-2187-01-ISM
VMware Cloud on AWS can help customers achieve a true hybrid cloud and operate their
application estate across private and public clouds seamlessly!
HOL-2187-01-ISM Page 11
HOL-2187-01-ISM
Simplifies hybrid resource management with a single inventory view between on-
premises and VMware Cloud on AWS using vCenter Hybrid Linked Mode. Enhanced
single logical view and hybrid management of resources by extending Hybrid Linked
Mode to connect a VMware Cloud on AWS environment with multiple linked on-premises
vCenter Server instances (external PSC topology).
HOL-2187-01-ISM Page 12
HOL-2187-01-ISM
Failed hosts in a VMware SDDC are automatically detected by VMware and replaced with
healthy hosts.
HOL-2187-01-ISM Page 13
HOL-2187-01-ISM
Zero RPO high availability for enterprise applications virtualized on vSphere across AWS
Availability Zones (AZ), leveraging multi-AZ stretched clustering. Stretched clusters
enable developers to focus on core application requirements and capabilities, instead of
infrastructure availability.
- Stretching an SDDC cluster across two AWS AZs within a region means if an AZ goes
down, it is simply treated as a vSphere HA event and the virtual machine is restarted in
the other AZ.
VMware Hybrid Cloud Extension (HCX) is a SaaS service that provides application
migration and infrastructure hybridity without application downtime or infrastructure
retrofit.
The VMware HCX service offers bi-directional application landscape mobility and
datacenter extension capabilities between any vSphere version.
HOL-2187-01-ISM Page 14
HOL-2187-01-ISM
The VMware Site Recovery™ service expands and simplifies traditional disaster recovery
operations by delivering on-demand site protection across a common, vSphere-based
operating environment from on-premises to the cloud. The service protects workloads
between on-premises datacenters and VMware Cloud on AWS, as well as between
different instances of VMware Cloud on AWS. Based on industry leading, enterprise-
grade recovery plan automation (VMware Site Recovery ManagerTM) and native
hypervisor-based replication capabilities (VMware vSphere® ReplicationTM) trusted by
thousands of customers, the service provides an end-to-end disaster recovery solution
that reduces the requirements for a secondary DR site, accelerates time-to-protection,
and simplifies DR operations.
Key Features:
HOL-2187-01-ISM Page 15
HOL-2187-01-ISM
HOL-2187-01-ISM Page 16
HOL-2187-01-ISM
Conclusion
In this introduction, we covered a high level overview of the VMware Cloud on AWS
service and the architecture.
This solution integrates VMware's flagship compute, storage and network virtualization
products, along with vCenter management and optimizes it to run on next generation,
elastic bare metal AWS infrastructure.
HOL-2187-01-ISM Page 17
HOL-2187-01-ISM
See how the leader in private cloud and the leader in public cloud brought their powerful
capabilities together to deliver a truly compelling and differentiated solution.
Dig a little deeper to see how the VMware SDDC stack runs on AWS to provide a
consistent operational hybrid model that delivers capacity and services on demand.
Includes a look into networking configuration options and the power of elastic DRS
(eDRS) and auto remediation.
HOL-2187-01-ISM Page 18
HOL-2187-01-ISM
HOL-2187-01-ISM Page 19
HOL-2187-01-ISM
Introduction
In this module, you will walk through setting up a native AWS VPC and subnets to
connect to your VMware Cloud on AWS Software Defined Datacenter (SDDC). You
will deploy a 3-host SDDC, add users to the SDDC and scale up the SDDC to 4
hosts.
HOL-2187-01-ISM Page 20
HOL-2187-01-ISM
1. Click here to open the interactive simulation. It will open in a new browser
window or tab.
2. When finished, click the “Return to the lab” link to continue with this lab.
The lab continues to run in the background. If the lab goes into standby mode, you can
resume it after completing the module.
HOL-2187-01-ISM Page 21
HOL-2187-01-ISM
Conclusion
In this module, we explored setting up a native AWS VPC and subnets to connect to the
VMware Cloud on AWS SDDC. We also deployed an SDDC, added users to the SDDC and
manually scaled up the SDDC.
If you like the Lab and want to continue experiment and test the VMware Cloud on AWS
capabilities, please scan the QR Code below to start your 1-Host experience.
HOL-2187-01-ISM Page 22
HOL-2187-01-ISM
Congratulations on completing Module 1 for the VMware Cloud on AWS - Getting Started
Hands on Lab. You can continue now to any module in this lab.
If you would like to skip future modules and end your lab, click on the END button.
• Module 1 Set Up the SDDC (15 Minutes) (Beginner) Walk through setting up a
native AWS VPC and subnets to connect to your VMware Cloud on AWS Software
Defined Datacenter (SDDC) and deploy an SDDC, add users to the SDDC and
manually scale up the SDDC.
• Module 2 Configure SDDC Networking and Security (30 Minutes) (Beginner) Walk
through creating network segments, configuring an IPSec VPN, Direct Connect
and a Layer 2 VPN and set up, and configure gateway firewall rules for both
management and compute workloads.
• Module 3 Deploy a Production VM (30 Minutes) (Beginner) Go through the steps
of deploying a production VM in VMware Cloud on AWS including defining and
assigning storage policies and custom tags and attributes. Create distributed
firewall rules to allow specific traffic between application VMs, and enable Log
Intelligence for your SDDC.
• Module 4 Set Up the Hybrid Cloud with Hybrid Linked Mode (15 Minutes)
(Beginner) Walk through configuring DNS, subscribing to a content library,
installing the vCenter Cloud Gateway Appliance and configuring Hybrid Linked
Mode. Migrate VMs to VMware Cloud on AWS via cold migration and live vMotion
and edit the Elastic DRS settings.
Lab Captains:
HOL-2187-01-ISM Page 23
HOL-2187-01-ISM
Module 2 - Configure
SDDC Networking and
Security (30 minutes)
HOL-2187-01-ISM Page 24
HOL-2187-01-ISM
Introduction
In this module, you will configure networking and connectivity to on-prem by
setting up Network Segments, IPSec VPN and Direct Connect. You will create
firewall rules for both the management and compute gateways, and you will set
up a Layer 2 VPN to extend an on-prem network to VMware Cloud on AWS.
HOL-2187-01-ISM Page 25
HOL-2187-01-ISM
1. Click here to open the interactive simulation. It will open in a new browser
window or tab.
2. When finished, click the “Return to the lab” link to continue with this lab.
The lab continues to run in the background. If the lab goes into standby mode, you can
resume it after completing the module.
HOL-2187-01-ISM Page 26
HOL-2187-01-ISM
Conclusion
In this module, we explored configuring networking and connectivity to on-prem by
setting up Network Segments, IPSec VPN and Direct Connect. We also created firewall
rules for both the management and compute gateways, and set up a Layer 2 VPN to
extend an on-prem network to VMware Cloud on AWS.
If you like the Lab and want to continue experiment and test the VMware Cloud on AWS
capabilities, please scan the QR Code below to start your 1-Host experience.
HOL-2187-01-ISM Page 27
HOL-2187-01-ISM
Congratulations on completing Module 2 for the VMware Cloud on AWS - Getting Started
Hands on Lab. You can continue now to any module in this lab.
If you would like to skip future modules and end your lab, click on the END button.
• Module 1 Set Up the SDDC (15 Minutes) (Beginner) Walk through setting up a
native AWS VPC and subnets to connect to your VMware Cloud on AWS Software
Defined Datacenter (SDDC) and deploy an SDDC, add users to the SDDC and
manually scale up the SDDC.
• Module 2 Configure SDDC Networking and Security (30 Minutes) (Beginner) Walk
through creating network segments, configuring an IPSec VPN, Direct Connect
and a Layer 2 VPN and set up, and configure gateway firewall rules for both
management and compute workloads.
• Module 3 Deploy a Production VM (30 Minutes) (Beginner) Go through the steps
of deploying a production VM in VMware Cloud on AWS including defining and
assigning storage policies and custom tags and attributes. Create distributed
firewall rules to allow specific traffic between application VMs, and enable Log
Intelligence for your SDDC.
• Module 4 Set Up the Hybrid Cloud with Hybrid Linked Mode (15 Minutes)
(Beginner) Walk through configuring DNS, subscribing to a content library,
installing the vCenter Cloud Gateway Appliance and configuring Hybrid Linked
Mode. Migrate VMs to VMware Cloud on AWS via cold migration and live vMotion
and edit the Elastic DRS settings.
Lab Captains:
HOL-2187-01-ISM Page 28
HOL-2187-01-ISM
Module 3 - Deploy a
Production VM (30
minutes)
HOL-2187-01-ISM Page 29
HOL-2187-01-ISM
Introduction
In this module, you will go through the steps of deploying a production VM in
VMware Cloud on AWS including defining and assigning storage policies and
custom tags and attributes. You will also create distributed firewall rules to allow
specific traffic between application VMs. Finally, you will enable Log Intelligence
for your SDDC.
HOL-2187-01-ISM Page 30
HOL-2187-01-ISM
1. Click here to open the interactive simulation. It will open in a new browser
window or tab.
2. When finished, click the “Return to the lab” link to continue with this lab.
The lab continues to run in the background. If the lab goes into standby mode, you can
resume it after completing the module.
HOL-2187-01-ISM Page 31
HOL-2187-01-ISM
Conclusion
In this module, you walked through the steps of deploying a production VM in VMware
Cloud on AWS including defining and assigning storage policies and custom tags and
attributes. You also created distributed firewall rules to allow specific traffic between
application VMs, and enabled Log Intelligence for your SDDC.
If you like the Lab and want to continue experiment and test the VMware Cloud on AWS
capabilities, please scan the QR Code below to start your 1-Host experience.
HOL-2187-01-ISM Page 32
HOL-2187-01-ISM
Congratulations on completing Module 3 for the VMware Cloud on AWS - Getting Started
Hands on Lab. You can continue now to any module in this lab.
If you would like to skip future modules and end your lab, click on the END button.
• Module 1 Set Up the SDDC (15 Minutes) (Beginner) Walk through setting up a
native AWS VPC and subnets to connect to your VMware Cloud on AWS Software
Defined Datacenter (SDDC) and deploy an SDDC, add users to the SDDC and
manually scale up the SDDC.
• Module 2 Configure SDDC Networking and Security (30 Minutes) (Beginner) Walk
through creating network segments, configuring an IPSec VPN, Direct Connect
and a Layer 2 VPN and set up, and configure gateway firewall rules for both
management and compute workloads.
• Module 3 Deploy a Production VM (30 Minutes) (Beginner) Go through the steps
of deploying a production VM in VMware Cloud on AWS including defining and
assigning storage policies and custom tags and attributes. Create distributed
firewall rules to allow specific traffic between application VMs, and enable Log
Intelligence for your SDDC.
• Module 4 Set Up the Hybrid Cloud with Hybrid Linked Mode (15 Minutes)
(Beginner) Walk through configuring DNS, subscribing to a content library,
installing the vCenter Cloud Gateway Appliance and configuring Hybrid Linked
Mode. Migrate VMs to VMware Cloud on AWS via cold migration and live vMotion
and edit the Elastic DRS settings.
Lab Captains:
HOL-2187-01-ISM Page 33
HOL-2187-01-ISM
HOL-2187-01-ISM Page 34
HOL-2187-01-ISM
Introduction
In this module you will walk through configuring DNS, subscribing to a content
library, installing the vCenter Cloud Gateway Appliance and configuring Hybrid
Linked Mode. You will also migrate VMs to VMware Cloud on AWS using both cold
migration and live vMotion. and you will edit the Elastic DRS settings.
HOL-2187-01-ISM Page 35
HOL-2187-01-ISM
1. Click here to open the interactive simulation. It will open in a new browser
window or tab.
2. When finished, click the “Return to the lab” link to continue with this lab.
The lab continues to run in the background. If the lab goes into standby mode, you can
resume it after completing the module.
HOL-2187-01-ISM Page 36
HOL-2187-01-ISM
Conclusion
In this module you walked through configuring DNS, subscribing to a content library,
installing the vCenter Cloud Gateway Appliance and configuring Hybrid Linked Mode.
You also migrated VMs to VMware Cloud on AWS using both cold migration and live
vMotion. and you edited the Elastic DRS settings.
If you like the Lab and want to continue experiment and test the VMware Cloud on AWS
capabilities, please scan the QR Code below to start your 1-Host experience.
HOL-2187-01-ISM Page 37
HOL-2187-01-ISM
Congratulations on completing Module 4 for the VMware Cloud on AWS - Getting Started
Hands on Lab. You can continue now to any module in this lab.
If you would like to skip future modules and end your lab, click on the END button.
• Module 1 Set Up the SDDC (15 Minutes) (Beginner) Walk through setting up a
native AWS VPC and subnets to connect to your VMware Cloud on AWS Software
Defined Datacenter (SDDC) and deploy an SDDC, add users to the SDDC and
manually scale up the SDDC.
• Module 2 Configure SDDC Networking and Security (30 Minutes) (Beginner) Walk
through creating network segments, configuring an IPSec VPN, Direct Connect
and a Layer 2 VPN and set up, and configure gateway firewall rules for both
management and compute workloads.
• Module 3 Deploy a Production VM (30 Minutes) (Beginner) Go through the steps
of deploying a production VM in VMware Cloud on AWS including defining and
assigning storage policies and custom tags and attributes. Create distributed
firewall rules to allow specific traffic between application VMs, and enable Log
Intelligence for your SDDC.
• Module 4 Set Up the Hybrid Cloud with Hybrid Linked Mode (15 Minutes)
(Beginner) Walk through configuring DNS, subscribing to a content library,
installing the vCenter Cloud Gateway Appliance and configuring Hybrid Linked
Mode. Migrate VMs to VMware Cloud on AWS via cold migration and live vMotion
and edit the Elastic DRS settings.
Lab Captains:
HOL-2187-01-ISM Page 38
HOL-2187-01-ISM
HOL-2187-01-ISM Page 39
HOL-2187-01-ISM
1. The area in the RED box contains the Main Console. The Lab Manual is on the tab
to the Right of the Main Console.
2. A particular lab may have additional consoles found on separate tabs in the upper
left. You will be directed to open another specific console if needed.
3. Your lab starts with 90 minutes on the timer. The lab can not be saved. All your
work must be done during the lab session. But you can click the EXTEND to
increase your time. If you are at a VMware event, you can extend your lab time
twice, for up to 30 minutes. Each click gives you an additional 15 minutes.
Outside of VMware events, you can extend your lab time up to 9 hours and 30
minutes. Each click gives you an additional hour.
HOL-2187-01-ISM Page 40
HOL-2187-01-ISM
During this module, you will input text into the Main Console. Besides directly typing it
in, there are two very helpful methods of entering data which make it easier to enter
complex data.
You can also click and drag text and Command Line Interface (CLI) commands directly
from the Lab Manual into the active window in the Main Console.
You can also use the Online International Keyboard found in the Main Console.
1. Click on the Keyboard Icon found on the Windows Quick Launch Task Bar.
HOL-2187-01-ISM Page 41
HOL-2187-01-ISM
In this example, you will use the Online Keyboard to enter the "@" sign used in email
addresses. The "@" sign is Shift-2 on US keyboard layouts.
HOL-2187-01-ISM Page 42
HOL-2187-01-ISM
When you first start your lab, you may notice a watermark on the desktop indicating
that Windows is not activated.
One of the major benefits of virtualization is that virtual machines can be moved and
run on any platform. The Hands-on Labs utilizes this benefit and we are able to run the
labs out of multiple datacenters. However, these datacenters may not have identical
processors, which triggers a Microsoft activation check through the Internet.
Rest assured, VMware and the Hands-on Labs are in full compliance with Microsoft
licensing requirements. The lab that you are using is a self-contained pod and does not
have full access to the Internet, which is required for Windows to verify the activation.
Without full access to the Internet, this automated process fails and you see this
watermark.
HOL-2187-01-ISM Page 43
HOL-2187-01-ISM
Please check to see that your lab has finished all the startup routines and is ready for
you to start. If you see anything other than "Ready", please wait a few minutes. If after
5 minutes your lab has not changed to "Ready", please ask for assistance.
HOL-2187-01-ISM Page 44
HOL-2187-01-ISM
Conclusion
Thank you for participating in the VMware Hands-on Labs. Be sure to visit
http://hol.vmware.com/ to continue your lab experience online.
Version: 20200924-050158
HOL-2187-01-ISM Page 45