September 23, 2013
Category: kemp-tech, microsoft, virtualisation, vmware
Tags: domain-name-system, http-secure, ip-address, kemp, kemp-load-balancers, kemp-technologies, load-balancer, load-balancing, network-load-balancing, port-group, production-lb, software, virtual-machine, virtual-service, vmkernel, vmware-tools, vswitch
Best Practices for Deploying KEMP's VLM on VMware ESX
I have spent a considerable amount of time working with KEMP Load Balancers recently and would like to share some VMware deployment Best practices .
For all those using KEMP Virtual LoadMaster's with VMware, you will need to configure a Load Balancing port group for the relevant vlan "production_LB" or "DMZ_LB" to avoid port flooding. To prevent RARP packets being sent every time vMotion or powering on a VM, you will need to configure no notify switch on the required port groups. You will also need to set the Security Policy Forged Transmit to Accept. Ensure that this is forced (Hard coded) on the port group as any changes to the vSwitch will effect all port groups by default.
Load balancer Port group.
Key Configuration Points:
- Use the E1000 network adapter type when deploying the VLM.
- do not upgrade the VMware Tools, VMware Tools have been integrated with the VLM.
- The Security Policy Forged Transmit on the Portgroup is set to Accept.
- The transmission of RARP packets is prevented on the portgroup by setting No notify Switch.
Hard Code Forged Transmits on the portgroup.
Hard Code no notify Switches on the portgroup.