vsphere virtual switch

I have asked a similar question before, although came to this solution.  Right now I have several zone I need to use, would this virtual switch configuration make sense or let me know any other variations that may work better:

6 nic's on the physical servers

Management, vMotion - 1 port
iSCSI -2 ports
Trust - 2 ports
DMZ - 1 port

Also, does iSCSi need to be on a vm kernel port?

Also, can I do without FT?  I was also thinking of doing the DMZ at a later date.  Let me know any improvements on this setup.
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.


You may want to change the settings as such:

Management - 1 port
vMotion - 1 port [You can then have a redundant management network over this]
iSCSI -2 ports
Trust - 1 ports
DMZ - 1 port

I split vMotion out as it's kind of important to have a dedicated network for that, also depending on version 1GB vMotion port limits you to 4 concurrent vMotion migrations and to achive 8 you need to go 10GB. I have heard you can get 8 via 2 independent 1GB vmkernel ports sounds logical.

And yes vMotion needs a vmkernel port, FT is overrated and intensive on resource.
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
iSCSI does need to use a VMKernel Portgroup, because this is a special portgroup which carries the traffic.

this looks fine, however, you have no resilience or teaming for your management network?

what network do your VMs use?

see my EE Articles

HOW TO: Add an iSCSI Software Adaptor and Create an iSCSI Multipath Network in VMware vSphere Hypervisor ESXi 5.0

HOW TO: Enable Jumbo Frames on a VMware vSphere Hypervisor (ESXi 5.0) host server using the VMware vSphere Client
Jack_son_Author Commented:
okay, thanks; the vm's use trust and dmz networks
Powerful Yet Easy-to-Use Network Monitoring

Identify excessive bandwidth utilization or unexpected application traffic with SolarWinds Bandwidth Analyzer Pack.

Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
You do not have any resilience/teaming for your Trust of DMZ networks.

Two NICs is better than One, single point of failure!

you could create a vSwitch with Trust, DMZ and Management Network, trunk and VLAN?

does your Management Network use the same network as Trust?
Jack_son_Author Commented:
no different networks than trust; i prefer not to change, i guess i could try and get 2 more nic's  per server even and do without the dmz for the interim
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
It's up to your network design, if you want to add additional nics for resilience, teaming, throughput and availability, whether active/active, or active/standby.

We always recommend at least two nics per service, but depends on your network arrangement, if you only have a single physical switch it all connects to, you need to look at entire network design.

this is where VLANs and Trunks have advantages, less nics, less cables, but slightly more configuration required.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.