Labels

3300 (1) 3PAR (1) Active Directory (1) ADFS (1) Admin Share (1) Auto-Sync (2) Auto-Sync locked (1) AWS (3) AzCopy (1) Azure (3) Backups (2) Broadcom (1) Call Forwarding (1) CLI (2) cmd (1) Compatibility View (1) Dameware MRC (1) Databases (1) DFS (1) DNS (1) Domain Admin (1) domain controller (1) Enterprise Mode (1) ESXi 5.0 (1) ESXi 5.1 (5) ESXi 5.5 (3) Exchange (3) Exchange 2010 (5) Extreme (1) ExtremeXOS (1) Federation (1) File Share (1) FSMO (1) GPO (1) Group Policy (1) Group Policy Client (1) Hardware Acceleration (1) Helpdesk (1) HP-UX (1) Hyper-V (2) IAM (1) IE10 (1) IE11 (1) IP conflict (1) Kayako (3) LDAP (1) Licence (1) Links (9) local groups (1) LUN lock (1) LUN number (1) MAC address (1) Microsoft Teams (1) Mitel (1) Namespaces (1) Networking (6) Nexenta (6) NMC (1) Office 365 (4) OneDrive (1) Outlook 2003 (1) Outlook 2013 (1) PC (1) Physical (1) PowerCLI (10) Powershell (10) promoted links (2) Public Folders (1) RDP (1) RDS (1) Recovery Services (1) RedShift (1) Registry (3) Reports (1) Resolve (2) Restart (1) RSA (1) Run As (1) SAML (1) SAN (1) Scavenging (1) script (10) Server 2003 (3) Server 2008 R2 (1) Server 2012 R2 (2) Servers (2) sharepoint 2013 (3) SMTP (3) Snapshot (2) SRM (1) SSH (5) SSL Certificate (2) Temporary profile (1) Terminal Server (3) Troubleshooting (5) Ubuntu (1) Update Manager (1) Useful Apps (1) VAAI (1) vCenter Server Appliance (1) VDI (1) VDP (1) Veeam Backup and Replication (2) VM (1) VM Error (1) vmdk (1) VMFS (1) vMotion (2) VMware (20) VoiP (1) vSphere 5.5 (4) vSphere 6.0 (2) vSphere 6.5 (1) vUM (1) webpart (1) Windows (3) Windows 10 (1) Windows 7 (2)

Wednesday 26 November 2014

Network Connections Dropping On New vHosts

Within the last week I have replaced 4 old virtual hosts with new Dell R720s. Initially everything seemed to be working fine but this morning we started to see LUNs disappearing from the Storage tab and dropped connections to Management ports. We also experienced large amounts of latency when attempting to manage the environment.

After working with our storage supplier we determined that the problem was not on the Nexenta devices but elsewhere in the infrastructure.

After a lot of testing, searching and head-scratching I discovered that there is a known issue with the Broadcom network cards and ESXi 5.x. The R720s have Broadcom NetXtreme BCM5720 network cards and onboard connections.

The simple fix for this is to update the Dell pre-installed network drivers - in my case I went from 3.123c.v55.5 to the latest available version.

First I checked my current version by SSHing onto the vHost as root and running the commands;

lspci | grep BCM5720 (this displays all connected vmnics)

0000:01:00.0 Network controller: Broadcom Corporation NetXtreme BCM5720 Gigabit Ethernet [vmnic0]
0000:01:00.1 Network controller: Broadcom Corporation NetXtreme BCM5720 Gigabit Ethernet [vmnic1]
0000:02:00.0 Network controller: Broadcom Corporation NetXtreme BCM5720 Gigabit Ethernet [vmnic2]
0000:02:00.1 Network controller: Broadcom Corporation NetXtreme BCM5720 Gigabit Ethernet [vmnic3]

then;

ethtool -i vmnic0

After running ethtool you should get a response that looks like this;

driver: tg3
version: 3.123c.v55.5
firmware-version: FFV7.10.17 bc 5720-v1.34
bus-info: 0000:01:00.0

I then downloaded the new driver package from the VMware download centre at https://my.vmware.com/web/vmware/details?downloadGroup=DT-ESXI5X-BROADCOM-TG3-3137DV501&productId=285

There is a ReadMe document in the .zip download but for ease of reference I have reproduced it below;

COMMAND LINE INSTALLATION

New Installation
----------------

For new installs, you should perform the following steps:

1. Copy the VIB or offline bundle to the ESX server.  Technically, you can
           place the file anywhere that is accessible to the ESX console shell, 
           but for these instructions, we'll assume the location is in '/tmp'.

           Here's an example of using the Linux 'scp' utility to copy the file
           from a local system to an ESX server located at 10.10.10.10:
             scp VMware_bootbank_net-driver.1.1.0-1vmw.0.0.372183.vib root@10.10.10.10:/tmp

2. Issue the following command (full path to the file must be specified):
              esxcli software vib install -v {VIBFILE}
           or
              esxcli software vib install -d {OFFLINE_BUNDLE}
       
           In the example above, this would be:
              esxcli software vib install -v /tmp/VMware_bootbank_net-driver.1.1.0-1vmw.0.0.372183.vib

Note: Depending on the certificate used to sign the VIB, you may need to
      change the host acceptance level.  To do this, use the following command:
esxcli software acceptance set --level=<level>
      Also, depending on the type of VIB being installed, you may have to put
      ESX into maintenance mode.  This can be done through the VI Client, or by
      adding the '--maintenance-mode' option to the above esxcli command.


Upgrade Installation
--------------------

The upgrade process is similar to a new install, except the command that should
be issued is the following:

esxcli software vib update -v {VIBFILE}
or
esxcli software vib update -d {OFFLINE_BUNDLE}


VUM INSTALLATION

The VMware Update Manager (VUM) is a plugin for the Virtual Center Server
(vCenter Server).  You can use the VUM UI to install a VIB by importing
the associated offline bundle package (a ZIP file that contains the VIB and 
metadata).  You can then create an add-on baseline and remediate the
host(s) with this baseline.  Please see the vCenter Server documentation for

more details on VUM.

I used WinSCP to copy the .vib file to the /tmp/ location on the host. After upgrading you will need to reboot the host.

After following these steps, the network issues were resolved.

Monday 7 July 2014

Exchange 2010 / Kayako Case - Error 500 5.3.3 Unrecognized Command

We encountered an issue this morning where our Kayako Case (formally known as Kayako Resolve) was repeatedly logging a ticket from it's email queue as the email was not being deleted. When manually running the email parser cron job I was seeing the following error;
  1. Running parser for Queue ID '7': mail@domain.com Uncaught Exception Router: http://helpdesk.domain.com/cron/index.php?/Parser/ParserMinute/POP3IMAP Expected response code 220 but got code "500", with message "500 5.3.3 Unrecognized command " in ./__swift/thirdparty/SwiftMailer/classes/SwiftMailer/Transport/AbstractSmtpTransport.php:386

After speaking with Kayako support it was determined that the problem lay with our Exchange 2010 server.

On checking the error logs on Exchange I found an Application Error event 12014, under Task Category TransportService;
Microsoft Exchange could not find a certificate that contains the domain name name.domain.local in the personal store on the local computer. Therefore, it is unable to support the STARTTLS SMTP verb for the connector CONNECTOR-NAME with a FQDN parameter of name.domain.local. If the connector's FQDN is not specified, the computer's FQDN is used. Verify the connector configuration and the installed certificates to make sure that there is a certificate with a domain name for that FQDN. If this certificate exists, run Enable-ExchangeCertificate -Services SMTP to make sure that the Microsoft Exchange Transport service has access to the certificate key.

As we recently had to change our email SSL certificate, I checked the Receive Connectors named in the errors and found that the FQDN provided in response to EHLO or HELO did not match the name on the new SSL certificate.

After updating this connector, email began to flow in and out of our helpdesk again.

Friday 9 May 2014

Always Run A Program As Domain Admin

I encountered this issue with Dameware Mini Remote Control as I was fed up of always having to right click, run as different user whenever I wanted to install the service on a user's PC.

To get round this I did the following;

1. Right click the program and go to Properties
2. In the "Target" box, before the path to the executable, paste the following;
C:\Windows\System32\runas.exe /savecred /user:domain\username
3. OK your way out and run the program. You should be prompted for your admin password the first time, but after that the software should just load. 
 

Thursday 20 February 2014

Configuring Extreme Switches - Useful Commands

Restore to factory:

  • unconfig switch all
Restore to factory but retain configured user accounts and passwords
  • unconfig switch
Initial configuration

Default username = admin 
No password

Change admin password
  • conf account admin
List saved config
  • show config
Add a VLAN (name is case sensitive)
  • create vlan "name"
  • conf vlan "name" tag "tag number"
Remove a VLAN
  • delete vlan "name"
Configure IP address for switch management - mask must be in decimal form, not CIDR
  • conf vlan "name" ipaddress "ip" "mask"
Configure default gateway
  • conf iproute add default "gateway address"
Change hostname
  • conf snmp sysname "name"
  • conf snmp syslocation "location"
Generate SSH key - changing hostname requires a new key to be generated
  • enable SSH2
Add a VLAN to a port
  • conf vlan "name" add port port number (tagged)
Remove a VLAN from a port
  • conf vlan "name" del port port number
View VLAN port information
  • show port port number in de
Show port based on MAC address
  • show fdb "MAC address"
Add an electronic display name to a port
  • conf port "port number" display-string "text"
Remove an electronic display name from a port
  • conf port "port number" display-string ""
View the MAC address plugged into a port
  • show fdb port "port number"

Saturday 15 February 2014

Desktop Replacement - Physical, RDS or VDI?

Having recently gone through the decision making process for replacing our existing desktop infrastructure, I put together a list of considerations/questions that helped me to make a recommendation for our new desktops.

I've grouped the questions under rough headings - the list is not exhaustive, simply the questions I asked;


Applications
What applications do the users need to run?
Do those applications lend themselves to being run in a datacentre?
Can the application run in a terminal server environment?

Application Virtualisation
Is it technically possible to virtualise/stream the apps?
Does everyone need the app or is it only some users?
Does the application need to access locally stored data?
Does the application need to integrate with other applications? If so, where are they?
Does data need to stay off the client device?

Costs
What licencing is required? How much will it cost?
What end-user equipment is required? Are there different options? How much will it cost?
What back-end equipment is required? Are there different options? How much will it cost?

Support
What difficulties are there in providing remote support to users?
What potential end-user hardware issues are there? (Device fails/user reset to factory)

Long Term

How often will we need to refresh the hardware?
How will we go about software updates and patching?

Network
In a multi-site environment, are the network links between sites able to support everything we want the infrastructure to do?