Yesterday, I talked about the Data Center Extension (DCE) to the vCHS from your on Prem and a whole gamut of steps you need to perform for this. I have also talked about the DCE Use Case and the Service Overview of it. At the end of the article I have raised a point and that is how do you protect your DCE’d VM from disaster recovery. It may happen that accidentally you delete the DCE’d VM or it may become corrupted as well. Who has seen the worst? So, in that aspect you should know what you can do to restore the DCE’d VM or more appropriately restore the Service (SSL VPN Tunnel) extended to the vCHS. Well, we at vCHS R&D thought through this for you and we have implemented the solutions as well. You just need to consume that service and let other things being handled by those who build cloud since many years now. Before I proceed to show you the solution, let me ask you this, do you know VMware offers a Freemium Data Protection Service with vCHS and when I say its Freemium, I literally mean that it is a $0 service. If you don’t know the background of that Add On service, you should look at this article.
Steps for Data Protection of DCE VM
Do you know it’s the most easiest way to protect your cloud VM in vCHS. Perhaps if you don’t know look at the above DPS article and you would be amazed to see a few click service activation and protecting your cloud workload. So, lets do it now.
- Login to the vCHS Portal
- Go to your VDC and Click on the Virtual Machines Tab
- There you can see your DCE’d VM there. Click on the drop down combo at the right hand side and select “Register for backup“
- In the next schedule vCHS Operator will back it up and FYI the RPO is 24 hours. That means in 24 hours only one time this VM will be backed up. So that means your responsibility ends there.
- If you want to make sure that the backup registration is done, select the VM, click on the drop down combo and you should see “Unregister for Backup“.
Ok, so your vApp (VM) is backed up in the back end. Now, let us simulate a disaster for this DCE VM and show you how do you get your service back and how seamless that is.
- First of all login to the vCHS Portal if not already logged in.
- Go to the VDC where your DCE VM is up and running.
- Select the VM and using the drop down combo select Power Off.
- Once this VM (vApp) is powered off, select the drop down again and select Delete.
- You should see that the VM is gone from the vCHS Portal.
- Go back to your On Prem Datacenter and login to the vSM Web Interface
- Go to the Network Virtualization and click on Edge
- Double click on the Edge and go to the VPN Tab.
- You should see that VPN Tunnel is down, because your end point Edge is gone from vCHS as you deleted the vApp and indeed it will delete the Edge as well corresponding to the vApp network.
So, at this time, you realize that you hit with the disaster situation. Your SSL VPN Tunnel is down and the VM (vApp) is also gone. But hey, you did register it for the backup right? Why don’t you restore it from the backup? Yes you should.
How do you restore the DCE Service?
- Call up GSS (1-877-486-9273) and ask to restore your VM from backup in vCHS.
- Provide them the name of the VM, VDC it was running and whether you need to Network also to be restored or not.
- GSS guys will co-ordinate with vCHS Operations team guys and will have your VM restored at your destined VDC in the back end.
- You should opt for these three options while you do restore.
- vApp Network Restore
- VM Network Connection Restore
- vApp Network Services Restore (e.g., NAT & Firewall)
- Once they restore it to the VDC, through vCHS portal go inside the VDC and you can see the DCE’d VM there.
- From the vCHS portal login to the vCD using SSO and straight a way go to the vApp which you just got recovered.
- Make sure you can see that there is a vApp Network and it is connected to the Org Routed Network which you have chosen at the time of DCE.
- Also make sure that you can see the NAT and Firewall service option selected there in the Networking properties page.
- Go to the right hand side combo box and select Power On this VM.
This would do the magic. Do you know what would happen at the backend? While taking the backup we backup the Networking properties as well for a VM (vApp). So that means we would also have the vApp network properties and it’s services backed up. After you ask for restore, vCHS Operator will also make sure that they restore the vApp Networking properties too.
As designed or as expected behavior, when you power on a vApp, it will first deploy an Edge device first if there is a vApp Network associated with it. In this case, there were a vApp Network and it will spawn a Edge device first and get this configured automatically as per the standard vApp power on process. Once the network is ready then it will power on the VM there and reconfigure it to attach it to the vApp Network. At this stage, your vApp Edge will start communicating to your On Prem Edge and will automatically get the VPN Tunnel established. Once the tunnel is up, go back to your On Prem Edge and make sure that you see that the tunnel is up.
At this time, go back to your VM in vCHS and from the drop down select the View and Edit Details. Go to the Networks tab and make sure that you get a DHCP IP Address from On Prem Edge DHCP Pools.
Now open up the Console of your VM in vCHS and try to ping the On Prem VMs and make sure it is reachable over the network.
So you see how easy and seamless operation it is to make the DCE’d VM up and running in vCHS after any kind of disaster happens 🙂