vArchitect Newsletter 024

VMware Security Advisory

VMware has released a couple of product updates that is part of the hypervisor-assisted guest mitigation of CVE-2018-3639 for guest operating systems.  Here are the products that are affected, and the new version released.

  • vCenter Server 6.7.0b
    • Release notes here.
  • vCenter Server 6.5 U2b
    • Release notes here.
  • vCenter Server 6.0 U3f
    • Release notes here.
  • vCenter Server 5.5 Update 3i
    • Release notes here.

We are not going into details on the vulnerability, but we do encourage that you review the security advisories here as well as older product versions.

Sign up here to receive VMware security advisories in your inbox!

New Releases

We again have a lot of new releases to cover for June, so let’s go through them. There’s so much that is new and different that we are unable to go into detail on each product but definitely check out the release notes.

vSphere Site Recovery Manager

  • VMware released an express patch to fix some bugs.
  • If you are running SRM 6.5.1.x it is recommended that you upgrade to this new release.
  • Release notes here.

vSphere Replication

  • VMware released an express patch to fix some bugs.
  • If you are running vSphere Replication 8.1.0.x it is recommended that you upgrade to this new release
  • Release notes here.

vCloud Director for SP

  • Upgrades to Java environment from version 1.8.0_162 to version 1.8.0_171 and additional API functions released.
  • General bug fixes.
  • Release notes here.

vRealize Network Insight 3.8.0

  • Some noteworthy new features:
    • Outlier detection
    • AWS enhancements
    • Cisco ASA router support
    • APIv2
    • Integration with Log Insight
    • Export reports to PDF
    • Recommended Firewall rules include P2P
  • Release notes here.

vRealize Log Insight 4.6.1

  • With the 4.6 release just in April this new release only provides support for new NSX Data Center licenses.
  • Release notes here.
  • Blog for April release 4.6 here.

NSX-T Data Center & NSX Cloud 2.2.0

  • Finally, the GA release is available and here is some of the new feature:
    • Automated NSX Controller Cluster Deployment
    • NSX Management of workloads in Azure
    • Enhanced Data Path mode in N-VDS with 3 to 5 times the performance of current VSS/VDS switches!
    • NIOC v3 support
    • Guest VLAN Tagging
    • VPN support
    • Terraform support
    • Monitoring and Troubleshooting enhancements.
  • Release notes here.
  • NSX-T blogs here and here.
  • NSX Cloud blogs here and here

NSX SD-WAN by VeloCloud 3.2.0

  • New features including multicast, OSPF & BGP mutual redistribution, Palo Alto VNF, etc.
  • Available for download.

NSX Hybrid Connect 3.5.1

  • Alternative known as Hybrid Cloud Extensions (HCX) and I am very excited about this one with the inclusion in NSX Data Center Enterprise Plus level license.

New and Updated Flings

VMware Knowledge Base Top 20 articles

Not many people know this great tip, but Support Insider releases a couple of blog post every month which provides the top 20 Knowledge Base articles for vSphere, vSAN and NSX. They also include a blog of all the new KBs released. You definitely want to bookmark this page!

Check out this month’s here

Free E-Book

Still continuing on our theme of free VMware-related E-Books, Vladan Seget wrote a study guide for VCP6.5-DCV which Nakivo backup sponsored and made available here

Veeam 9.5 Update 3a

Veeam finally released Veeam Availability Suite 9.5 Update 3a which provides support for vSphere 6.7!
The list of all the new platforms that are supported:

  • VMware vSphere 6.7
  • VMware vCloud Director 9.1
  • Preliminary support for VMware vSphere 6.5 U2
    • If you are running 6.5 U2 then you are probably aware of the major regression in ESXi code that makes vSphere API start failing under heavy host load.
  • Microsoft Windows Server 1803
  • Microsoft Windows Hyper-V Server 1803
  • Microsoft Windows 10 April 2018 Update
  • VMware Cloud on AWS version 1.3
  • Microsoft System Center Virtual Machine Manager 1801

Vendor blog for new release here
Release notes here

vSphere Upgrade – FAQs

Two of VMware’s Technical Marketing Engineers have create a living document, with updates over time, which provides frequently asked questions on the following vSphere Upgrade topics:

  • Deployment Topologies
  • Migration
  • General Upgrade
  • Management Clients
  • Licensing
  • Interoperable Solutions
  • Networking
  • Storage
  • vCenter Server Appliance (VCSA)

Be sure to bookmark this page here

VMware Cloud on AWS

One of the most exciting new offerings from VMware is definitely VMC on AWS that allows customers to run VMware SDDC on bare-metal AWS services and making the AWS services ecosystem available for consumption.

Since the initial release less than year ago VMC on AWS has already gone through more than 8 updates with the latest version 1.4 Patch 1 receiving the following features:

  • Hypervisor-Assisted Guest Mitigations for CVE-2018-3639 (Speculative Store Bypass) and Microcode Mitigationsfor CVE-2018-3640 (Rogue System Register Read).
  • New Region: EU (Frankfurt)
  • Compliance Certifications and Attestations which includes ISO 27001, ISO 27017, ISO 27018, SOC 1, SOC 2, SOC 3, HIPAA as well as GDPR!
  • Single Host SDDC with low cost entry for POCs
  • Multi-Availability Zone Stretched Cluster
  • Multi-Cluster Support (*Preview)
  • Troubleshooting Tab
  • vCenter Cloud Gateway (*Preview)
  • VMware Horizon™ 7 on VMware Cloud on AWS
  • Security and Audit Logs Forwarded to VMware Log Intelligence
  • VMware Cloud on AWS Sizer and Total Cost of Ownership (TCO)

VMware Cloud Services

You might not be aware but many of the VMware products you have running on-premise today is also now available as a Cloud service from VMware.  If you are considering VMC on AWS or have some native cloud services like AWS or Azure, then do check out these offerings here.

vSphere 5.5 End of General Support Countdown

The End of General Support (EOGS) for vSphere 5.5 is rapidly approaching. If you’re still on vSphere 5.5 and vSAN 5.5, time to start serious planning your upgrade. As of 1 July 2018:

80 Days Remain


VMworld is coming up next month August 26-30 in Las Vegas. We will be attending so shoot us a note if you want to meet up and look out for the SovLabs team which will be exhibiting for the fourth consecutive year at booth 2819.