Professional Documents
Culture Documents
Session Objectives
Tools used on the field for the Hyper-V Health Checks Hyper-V BPA (Full and Server Core) MAP Toolkit Hyper-V R2 Best Practices HAVM, Failover Clustering Cluster Validation Wizard (in case of Hyper-V Cluster) Performance Monitor and PAL for Hyper-V R2 Update of Memory Management for Hyper-V R2 SP1
Number of logical processors Supported LPs number on host Number of VPs on each VM VHD type detection Legacy Network Adapters Much more
Inventory and supported number of VPs for each OS Fixed, Dynamic or Differencing Disk inventory Only use it if its mandatory (i.e Citrix provisioning VDI scenarios) http://technet.microsoft.com/en-us/library/ee941122(WS.10).aspx
Hyper-V BPA
Export scan results to HTML format Configure Server Manager for remote administration
http://blogs.technet.com/b/cedward/archive/2011/01/11/hyper-v-bpa-html-report.aspx
http://blogs.technet.com/b/mghazai/archive/2010/06/08/hyper-v-best-practicesanalyzer-powershell-automation.aspx
Some warning or errors can be safely ignored depending on the your environment or requirements Apply Hyper-V BPA Updates (i.e. KB2485986 ) http://gallery.technet.microsoft.com/scriptcenter/en-us/84d3e608-1404-4ee9-b5e224452ecc8b94
demo
Hyper-V R2 BPA
Hyper-V Security
Hardening Hyper-V and Parent Partition
Hyper-V R2 SKU or Server Core No Other Apps/Roles/Features Patch and A/V Isolate network traffic (separate NICs and VLANs) Bitlocker
Hyper-V Security
Delegating Virtual Machine Management VM Admins no access to Parent Authorization Manager (AzMan.msc) SCVMM and Self Service Portal Harden Management host OS Virtual Machine Servicing Toolkit (VMST) http://technet.microsoft.com/en-us/library/cc501231.aspx Offline VMs in SCVMM library Stopped and saved state VMs on a host VM Templates. Offline VHDs in SCVMM library by injecting update packages
Hyper-V Security
Protecting Virtual Machines Patch and A/V OS hardening Encryption (i.e. EFS) Audit Permission Hyper-V Security Guide http://technet.microsoft.com/en-us/library/dd569113.aspx Microsoft Security Compliance Manager http://technet.microsoft.com/en-us/library/cc677002.aspx
Admin rights on target host to run it remotely Internet access and Firewall exceptions for remote scanning
TCP port 135, 139 and 445 and UDP 137 and 138
Remote Registry service, Server service, Workstation service, File and Printer Sharing service, and Automatic Updates service. MBSA FAQ
http://technet.microsoft.com/en-us/security/cc184922#EWBAC
demo
VM running on Node 2
Coordinator Node
SAN
SAN Connectivity Failure
VHD VHD
VHD
20
Live Migration
Identical Processors
May enable Processor Compatibility Must be same processor manufacturer
Identically named Virtual Switches Ensure that no ISOs are mounted VM may need to be refreshed in Failover Cluster Specify the network for the VMs to use for Live Migration Dont use IPSec on LM network unless required for security Linux HAVM needs Static MAC Address
CSV Volume
Nodes running Windows Server 2008 R2 Drive letter of the System Disk must be identical %SystemDrive%\ClusterStorage NTLM Protocol enabled on all nodes Latest Identical HBA/Storage/Drivers/Firmware SMB used by CSV Client for Microsoft Networks File and Printer Sharing for Microsoft Networks Check Free Space Use PowerShell Script http://blogs.msdn.com/b/clustering/archive/2010/06/19/10027366.aspx
CSV Settings
Highest priority network = CSV network
Network with lowest metric is the highest priority
http://blogs.technet.com/b/kaitling/archive/2011/02/11/deciph ering-performance-data-csv-volumes.aspx
Networking
Best Scenario 4 physical network access points
1 Virtual MachineAccess 2 Management 3 Cluster and CSV 4 Live Migration (5th network when using ISCSI)
Gigabit or faster NICs Teaming ok Ensure latest drivers, use good Server Class NICs All nodes must be on the same logical subnet Configure Network Priority Consider QoS policy for Live Migration Network Ensure networks are aptly named http://technet.microsoft.com/en-us/library/ff428137(WS.10).aspx
Other
Use Possible and Preferred Owners with VM resources Proper Exclusion in Parents Anti-Virus Proper Page File sizing on parent and VMs Ensure proper amounts of RAM per node Base performance on least powerful node (as applicable)
Each node must be able to handle the workload it may be given
SCVMM PRO and SCOM feature for load balancing Use VMQ in place of Chimney Offload
More efficient copying between networks
Microsoft Approved!
demo
Support Statements are based on LPs/VPs ratios 1:8 Ratio is the supported limit for Server Virtualizations scenarios 1:12 Ratio is the supported limit for VDI scenarios with Windows 7 w/SP1 > 32 Procs Do NOT enable HT # Physical Processors 2 (1 Dual Core) 2 (1 Dual Core) Hyperthreading Disabled Enabled # Logical Processors 2 4 # Virtual Processors 16 16 LP / VP Ratio 1:8 1:4
demo
PAL in action
All VMs get 4GB of RAM [I have no idea what is happening with that memory] and no one complains I take the minimum system requirements and add (insert one: 50%, 100%, 150%)
A vendor tells me their app needs 4GB of RAM. I do not have the time to test this to find out if it is true or not
Customer Requirements
Maximum density, without sacrificing performance Maintain consistent performance Dont provide a feature thats unsuitable for production use
Ballooning
How it works: Increasing the size of the balloon forces the guest to react to memory pressure by releasing unused pages Decreasing the size makes more memory available to the guest
Memory
Balloon
Memory
Balloon
Swap Out
Memory
Balloon Ballloon Deflate Deflate
Swap In
Disk
Disk
Disk
Inflate
Problems
Page Sharing not dynamic Can take hours to share pages The largest benefit are zero pages Doesnt work with large pages
Dependent on:
How much variation in memory utilization the workloads have How good a job you did of sizing the systems in the first place Work well for both server and desktop workloads Add minimal overhead to the system Pass the that looks right test
Dynamic Memory
Benefits
Enables higher consolidation ratios per host by addressing the greatest limiting factor to consolidation: Memory A Production feature.
Overview
Memory is pooled and dynamically and securely distributed across VMs Memory is dynamically added/removed based VM usage with no service interruption Guest enlightened: guests & Hyper-V work TOGETHER
Adding/Removing Memory
Adding Memory
Enlightened fashion
Synthetic Memory Driver (VSP/VSC Pair)
Removing Memory
Ballooning is more efficient
Messes up task manager in the guest OS
System Requirements
Parent Requirements:
Dynamic Memory
Buffer: How much free memory should we try and keep in the VM?
Priority: which VM gets the memory first
Allows for responsiveness to bursty workloads Can be used for file cache I like to configure my virtual machines so that they have ~20% free memory
1-10,000: default is 5,000 The higher the priority, the higher the availability
demo
Call to Action
Contact your Microsoft Partner or Account Manager about available programs PVDPS Use your SA Vouchers Share Jumpstart Hyper-V PoC Hyper-V Cloud Accelerate Program There is help for you Contact us about about your Virtualization needs and how Microsoft can help.
You can email any additional comments directly to td_can@microsoft.com at any time.
Q&A
2011 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries. The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS, IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.