Changing VLAN in VMware network

Dear Wizards, currently in our network, ESXi hosts are connected to Core switch on VLAN 55, then all the VMs inside the hosts are in that VLAN. If we like to configure trunk link between Core switch and ESXi hosts (so that VMs can be in different VLANs), what should we change ?
Many thanks!
LVL 6
DP230Network AdministratorAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Andrew Hancock (VMware vExpert / EE Fellow)VMware and Virtualization ConsultantCommented:
Do you want to keep VLAN 55 or just change it ?

if you just want to change it from 55 to 44 (example), then replace the number 55 on the virtual machine portgroup, and also change the Cisco switch configuration from 55 to 44.

if you want to keep VLAN 55 and add a new VLAN...

You need to add

1. create a new virtual machine portgroup with the correct Tag Number to the existing vSwitch, the uplinks (physical nics) are connected to the Cisco switch.

2. You need to change all the VMs to this new portgroup.

3. Add new VLAN to Cisco switch configuration

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
DP230Network AdministratorAuthor Commented:
Hi Andrew, yes I'd like to add more VLANs

But if we add a new port group to the existing v-switch, will it require any downtime? Since there is only one physical interface from ESXi host to the Core switch.

How about this plan? Will it require any downtime ?
- Connect one more physical interface from ESXi host to Core switch
- Configure that interface as TRUNK link from Cisco view
- Add a new vSwitch on that interface from VMware view
- Create a new virtual port group on that vSwitch
- Move VMs to that new port group and change their IPs so that VLANs are correct
Andrew Hancock (VMware vExpert / EE Fellow)VMware and Virtualization ConsultantCommented:
But if we add a new port group to the existing v-switch,

No downtime required.

Since there is only one physical interface from ESXi host to the Core switch.

Single point of failure. Why one one, should be at least two physical interfaces.

How about this plan? Will it require any downtime ?
- Connect one more physical interface from ESXi host to Core switch
- Configure that interface as TRUNK link from Cisco view
- Add a new vSwitch on that interface from VMware view
- Create a new virtual port group on that vSwitch
- Move VMs to that new port group and change their IPs so that VLANs are correct

Any networking tampering of this magnitude can cause downtime, so my advice complete out of core hours.
Ensure Business Longevity with As-A-Service

Using the as-a-service approach for your business model allows you to grow your revenue stream with new practice areas, without forcing you to part ways with existing clients just because they don’t fit the mold of your new service offerings.

DP230Network AdministratorAuthor Commented:
Hi Andrew, I setup a test system like this:

network_diagram.png
After installed the ESXi hypervisor, I setup the management network in VLAN 4095, IP address: 192.168.50.100

management_network.PNG
and connect 2 other cables from ESXi host to Access switch, however when I add a new vSwitch and new portgroup, the Active port is showing 0. Can you please suggest?

esxi_nic.PNG
AddUplink.PNG
zero_activePort.PNG
Andrew Hancock (VMware vExpert / EE Fellow)VMware and Virtualization ConsultantCommented:
4095 is a special VLAN for ALL VLANs, your ESXi Management network should be in a VLAN.

did you create a virtual machine portgroup.
DP230Network AdministratorAuthor Commented:
Hi, I created a new port group "Group#18" in the same vSwitch0, created a VM and assign to this port group but that VM could not go to Internet. Can you please advise?

portGroup.PNG
Andrew Hancock (VMware vExpert / EE Fellow)VMware and Virtualization ConsultantCommented:
what is the configuration on the Cisco Trunk ?
DP230Network AdministratorAuthor Commented:
Hi, if you are asking about the trunk connection between Access and Core switch, here it is:

trunk.PNG
Do I have to configure the network cable from Access switch to ESXi host as Trunk connection?
Andrew Hancock (VMware vExpert / EE Fellow)VMware and Virtualization ConsultantCommented:
where are the commands, to configure the trunk the VLANS it has ?

all the links, need to be configured with the VLANs

normally you would create a static trunk with two ports, and configure all the VLANs down those trunks.
DP230Network AdministratorAuthor Commented:
Hi, the trunk links already had all VLANs:

trunk.PNG

I got this screenshot from vsphere document.

vNIC.png
If I understood you correctly, vminc0,1,2 should be configure as Trunk link from Switch view, am I right?

In case of that, which VLAN should I configure for EXSi management? 4095 or specific number (ie: 50)?
Andrew Hancock (VMware vExpert / EE Fellow)VMware and Virtualization ConsultantCommented:
I don't know which ports the server is connected to,  and you need to decide what Management VLAN the Management Interface should be in.

What is your Management VLAN ? is it 50, if it is, then 50 should be the VLAN number.
DP230Network AdministratorAuthor Commented:
esxi_vSwitch.PNG
vm1.PNG
Yes you are correct, after changed all physical links to trunk configuration, Management vlan to 50, it worked!

Many thanks for your suggestions!
Andrew Hancock (VMware vExpert / EE Fellow)VMware and Virtualization ConsultantCommented:
no problems.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Server Hardware

From novice to tech pro — start learning today.