How to get SSH access to TKG nodes on vSphere with Tanzu and NSX-T

I have been spending a lot of time recently on vSphere with Tanzu and NSX-T. One of the tasks that I want to do is perform a network trace from a pod running on a TKG worker node. This will be for a future post. However, before running the trace, I need to secure shell (ssh) onto a TKG worker node in order to run the traceroute. This is more challenging with NSX-T compared to using vSphere networking. The reason why is because NSX-T provides “internal” network segments for the nodes which sit behind a tier-1 and tier-0 gateway. To…

vSphere with Tanzu and Tanzu Mission Control integration [Videos]

I created a few short videos to show the integration between Tanzu Mission Control (TMC) and vSphere with Tanzu. In the first demonstration, I show the steps involved in registering the vSphere with Tanzu Supervisor Cluster with Tanzu Mission Control. Basically, it involves retrieving a manifest from TMC, and deploying it to the Supervisor. In the second demo, I show how Tanzu Mission Control can be used to easily deploy Tanzu Kubernetes (TKG) workload clusters to vSphere with Tanzu once the Supervisor Cluster has been registered. Of course, once TMC is managing your cluster, all sorts of additional features are…

Kubernetes, vSAN Stretched Cluster with CSI driver v2.5.1

In this post, we will look at a relatively new announcement around support for vanilla or upstream Kubernetes clusters, vSAN stretched cluster and the vSphere CSI driver. There are a number of updates around this recently, so I want to highlight a few observations before we get into the deployment. First of all, it is important to highlight that a vSAN Stretched Cluster can have at most 2 fault domains. These are the data sites. While there is a requirement for a third site for the witness, the witness site does not store any application data. Thus all of the…

Announcing vSphere CSI driver v2.5 metrics for Prometheus monitoring

This post will look at another new feature that has been added to the vSphere CSI driver v2.5. This feature enables the exposing of CSI metrics so that they can be collected by Prometheus and stored as time series data. Using the information captured in Prometheus, we can build Grafana dashboards which makes is easy to monitor the health and stability of the CSI driver. Kudos to one of our vSphere CSI driver engineers, Liping Xue, who did a great write-up on how to test this feature, and who’s content I relied on heavily to create this post. In the…

CSI Snapshots in action (vSphere CSI 2.5) [Video]

I have created a short video to demonstrate the new CSI snapshots feature in vSphere CSI driver version 2.5. This demo begins with an existing Pod + PVC/PV volume on vSphere storage, take a snapshot of the volume, then restore it to a new PVC. This new volume will then be mounted by a new Pod, and we will examine it to see if the data was successfully captured and restored. The manifests demonstrated in this video are available for download on this GitHub repository. Hope you find it useful.

Announcing vSphere CSI driver v2.5 support for CSI snapshots

I’m delighted to announce that VMware has just released a new version of the vSphere CSI driver for Kubernetes. The full release notes are available here. This 2.5 version now has support for CSI snapshots, a feature that many customers and partners have been waiting for. This features enables snapshots to be taken of block-based persistent volumes, as well as the ability to restore snapshots to persistent volumes. Those of you familiar with the CSI driver will notice two additional Kubernetes components to enable snapshot support. The first is a new snapshot controller. When a snapshot is created, two new…

Prometheus & Grafana Monitoring Stack on TKGS workload cluster in vSphere with Tanzu

In this post, we are going to build on the work already done when we deployed Carvel packages on a Tanzu Kubernetes workload cluster created by the TKG Service in vSphere with Tanzu. We saw in that post what the requirements are, how to use the tanzu command line to set context to a workload cluster, add the TKG v1.4 package repository. We also saw how to use the tanzu CLI to deploy our first package, which was cert manager. We will now continue with the deployment of a number of other packages, such as Contour (for Ingress), External-DNS (to…