The dvSwitch feature which is available in Enterprise Plus Edition or above includes all the capabilities of vSwitch, plus the following additional capabilities:
1. Bidirectional Virtual Machine Rate Limiting(Traffic Shaping): vSwitch can perform traffic shaping on outbound traffic only. The dvSwitch can also perform traffic shaping on inbound traffic. Traffic shaping is used when traffic shaping need to be imposed on virutal machines.
2. Centralized vCenter Administration and Provisioning: dvSwitches are administered and provisioned from within vCenter, meaning that there is a single configuration to manage which is better than managing individual vSwitches.
3. Cisco Nexus 1000V Virtual Switch: Third party dvSwitches like Cisco 1000V can be used which introduces features like ACLs, port security and more. Moreover, it gives environment to which they already understand how to use.
4. Dynamic Adjustment of Load-Based NIC teaming: Regularly checks the load on each NIC. If one NIC is overloaded, a port-NIC assignment will occur to attempt to balance the load. Thus, this process keeps the load on teamed NIC balanced.
5. Enhanced Security and monitoring for vMotion traffic: Virtual machine networking state, including counters and port statistics, is tracked as virtual machines are migrated with vMotion from host to host in a dvSwitch. This provides a more consistent view of the virtual machine’s network interfaces, regardless of the VM’s location or migration history, and simplifies the troubleshooting and network monitoring for virtual machines.
6. IEEE 802.1p tagging: IEEE 802.1p tagging is a standard used to provide quality of service (QoS) at the media access control(MAC) level. This capability can be used to generate I/O resources and is applied to outbound network traffic.
7. LLDP: LLDP is a standard based(802.1AB) vendor neutral discovery protocol. It is used to discover information about network devices.
8. NetFlow: Netflow available in vSphere version 5 and above allows monitoring of traffic flows. This Netflow data helps in capacity planning and ensure that I/O resources are properly used in the virtual infrastructure.
9. Network I/O Control: Network I/O Control Network I/O Control allows the creation of resource pools containing network bandwidth. Administrators can create new resource pools to associate with
port groups and specify 802.1p tags, allowing different virtual machines to be in different resource pools. This allows a subset of virtual machines to be given a higher or lower share of bandwidth than the others.
10. Port Mirroring: Port mirroring is when a network switch sends a copy of network packet from a port or an entire VLAN to a network monitoring device connected to another switch port. This is also known as switched port analyzer(SPAN) on Cisco Switches. Port mirroring is used for monitoring and troubleshooting.
11. Private VLAN Support: Private VLAN which is a nested VLAN is VLAN located within a VLAN. It is used to provide isolation between computers on the same subnet. The first VLAN is primary whereas the nested VLANs are secondary.
There are three types of PVLAN ports:
1. Bidirectional Virtual Machine Rate Limiting(Traffic Shaping): vSwitch can perform traffic shaping on outbound traffic only. The dvSwitch can also perform traffic shaping on inbound traffic. Traffic shaping is used when traffic shaping need to be imposed on virutal machines.
2. Centralized vCenter Administration and Provisioning: dvSwitches are administered and provisioned from within vCenter, meaning that there is a single configuration to manage which is better than managing individual vSwitches.
3. Cisco Nexus 1000V Virtual Switch: Third party dvSwitches like Cisco 1000V can be used which introduces features like ACLs, port security and more. Moreover, it gives environment to which they already understand how to use.
4. Dynamic Adjustment of Load-Based NIC teaming: Regularly checks the load on each NIC. If one NIC is overloaded, a port-NIC assignment will occur to attempt to balance the load. Thus, this process keeps the load on teamed NIC balanced.
5. Enhanced Security and monitoring for vMotion traffic: Virtual machine networking state, including counters and port statistics, is tracked as virtual machines are migrated with vMotion from host to host in a dvSwitch. This provides a more consistent view of the virtual machine’s network interfaces, regardless of the VM’s location or migration history, and simplifies the troubleshooting and network monitoring for virtual machines.
6. IEEE 802.1p tagging: IEEE 802.1p tagging is a standard used to provide quality of service (QoS) at the media access control(MAC) level. This capability can be used to generate I/O resources and is applied to outbound network traffic.
7. LLDP: LLDP is a standard based(802.1AB) vendor neutral discovery protocol. It is used to discover information about network devices.
8. NetFlow: Netflow available in vSphere version 5 and above allows monitoring of traffic flows. This Netflow data helps in capacity planning and ensure that I/O resources are properly used in the virtual infrastructure.
9. Network I/O Control: Network I/O Control Network I/O Control allows the creation of resource pools containing network bandwidth. Administrators can create new resource pools to associate with
port groups and specify 802.1p tags, allowing different virtual machines to be in different resource pools. This allows a subset of virtual machines to be given a higher or lower share of bandwidth than the others.
10. Port Mirroring: Port mirroring is when a network switch sends a copy of network packet from a port or an entire VLAN to a network monitoring device connected to another switch port. This is also known as switched port analyzer(SPAN) on Cisco Switches. Port mirroring is used for monitoring and troubleshooting.
11. Private VLAN Support: Private VLAN which is a nested VLAN is VLAN located within a VLAN. It is used to provide isolation between computers on the same subnet. The first VLAN is primary whereas the nested VLANs are secondary.
There are three types of PVLAN ports:
- Promiscuous: Can communicate with all ports including isolated and community ports.
- Isolated: Can communicate only with promiscuous ports
- Community: Can communicate with the same secondary PVLAN and promiscuous PVLAN
12. Management Network Rollback and Recovery: This feature is used to ease management network use in the dvSwitch. It works by detecting configuration changes to the management network.
13. Network Health Check: This feature is used to help vSphere administrator quickly identify configuration errors in the network. It monitors VLAN, MTU and network adapter teaming at regular intervals. If these checks fail, a warning will be displayed in the vSphere web client.
14. Link Aggregation Control Procotol (LACP) : LACP is a standards-based link aggregation protocol used to group physical network adapter into a single logical link. The dynamic implementation included in the dvSwitch allows verification of correct setup and features automatic configuration, negotiation and renegotation of detected link failures.
15. Traffic filtering and marking: This feature is used for fi ltering and priority tagging for network traffic to virtual machines, VMkernel adapters, or physical adapters. It can be used to protect these connections from security attacks, to fi lter out unwanted traffic, or toestablish QoS.
No comments:
Post a Comment