Ch. 9 section 4.3, 4.4, 4.5 Virtual Network Devices
Virtual Desktops
(also known as a virtual desktop interface [VDI]) strategies include: 1) Making multiple desktops available on the same local workstation host. ---------This implementation is very useful when you are testing an application on multiple platforms. 2) Implementing multiple desktops on one physical server host and allowing all end users to access those virtual desktops remotely. 3)All of the user desktops are provided as virtual machines from one hypervisor. 4) The user desktops can be low-end workstations that connect remotely to the hypervisor and run the desktop.
Virtual Routing
- must to support VRF (Virtual Routing Forwarding) -allows routers to support multiple networks on the same physical network at the same time
When you configure a virtual network interface within a virtual machine's configuration, you can specify:
1) The type of physical network interface to emulate 2) Mac Address 3) Network you want to connect to 4) Which virtual network you want to connect to
Moving virtual machines between hypervisors is what virtualization feature
Flexibility
NIC teaming in VM
allows you to have a couple of adapters in the first operating system and connect them for additional bandwidth or fault tolerance
Virtual Firewall
implemented vis software on the hypervisor to monitor and filter traffic on the virtual network as it flows between virtual machines
What is DHCP Guard for VMs
prevents the VM from being used as a rogue DHCP server
What is a router guard for the VM
prevents the VM from being used as a rouge router also creates a protected network - meaning if the network node fails, the machine would have another node take over in the cluster
Configure MAC address (parameter)
some hypervisor will allow you to manually assign
T or F virtual VLANS are compatible with physical VLAN hardware
True
Purpose of internal switch on a virtual network device
Virtual machines can talk between themselves and the hosts and cannot go out to the network
Settings and Features
-VLANs vlan identification -bandwidth management -Hardware accerleration ----Advanced -DHCP Gaurd -Router Guard -Port mirroring -NIC teaming
Lab scenario To allow the virtual machines to communicate with the Microsoft update servers on the internet,:
1) Create a new virtual switch configured for bridged (external) networking. 2) Connect the virtual network interfaces in the virtual machines to the virtual switch.
Virtual Networks
1) allow virtual servers and desktops to communicate with each other. Using the host operating system, virtual networks can allow communication to network devices out on the physical network. The following are possible components of virtual networks: 1) Virtual switches allow multiple virtual servers and desktops to communicate on virtual network segments and the physical network. -----Virtual switches are often configured in the hypervisor. 2) Virtual network adapters are created and assigned to a desktop or server in the hypervisor. ----Multiple network adapters can be assigned to a single virtual machine -----Each network adapter has its own MAC address. -------Each network adapter is configured to connect to only one network at a time (a virtual network or the physical network, but not both).
Scenario of lab :To allow the virtual machines to communicate with each other while isolating them from the production network: 2
1) create a new virtual switch configured for host-only internal networking 2) connect the virtual network interfaces in the virtual machines to the virtual switch
The 4 advantages and features of virtualization
Flexibility Testing Server Consolidation Isolation
Network as a Service (NaaS)
Like an offsite virtual network, all NaaS servers and desktops are virtualized and managed by a contracted third party. NaaS virtualizes the entire network infrastructure. -----No physical wiring is needed because the network infrastructure is virtual and the network is run at the service provider's site. A basic network is implemented on the contracted site in order to get out to the service provider's site. Typically, all network administration tasks are handled by the service provider.
An example of Port Mirroring in VM
TCP dump or wireshark
Verifying that security controls are working as designed is what virtualization feature
Testing
Offsite Virtual Networks
Offsite virtual networks allow you to move business-critical networking and other IT-related components to another physical location . This implementation requires minimal hardware at the physical site. Examples of offsite virtual networks include: 1) An offsite datacenter, where a contracted vendor manages the hardware and software to provide the virtual network that is accessed by the end users 2) A virtual PBX, where a virtual phone system handles call routing, voicemail, and conference calling. ------A PBX is typically implemented as dedicated hardware within an organization and can be quite expensive. ------A virtual PBX takes calls internally at the service provider's site and routes them to the correct employee on the contracted site.
Virtual routing vs physical routing
Physical routers can only support one network to one physical device at a time
Isolating a virtual machine from the physical network is what virtualization feature ?
Sandboxing
Performing a physical to virtual migration pv2 is what virtualization feature
Server consolidation
Define network connection (parameter)
There are four virtual network interface you have to configure within a virtual machine
Virtual switches support VLANS differntly in which ways
VLAN membership is defined within the configuration of each individual network interface instead of being connected to a host by UTP cable
Virtual routers and virtualized internetwork
Virtual routers share their routing tables through a routing protocol to route data between networks
Configure Virtual Network devices
Virtual switch manager Should exist before you create virtual machine create private switch (allows switches to only talk to only inside switches & not on the network) connect virtual network cards to virtual machines to a virtual switch
Virtual Switch
allows 1 virtual machine to communicate with a physical switch -implemented as ---software that is integrated within the hypervisor itself ----within the firmware of the hypervisor server hardware itself Floods each frame to learn its routing table( similar to physical switch)
Configure adapter emulation (parameter)
define the type of physicals interface that you want the virtual network interface to emulate
Purpose of external switch on a virtual network device
lets virtual machines use the host's network card directly. one network adapter for both the virtual machine and host If it was a server, two network cards should be used for one virtual machine and one host
Bandwidth management for virtual machine
makes it so the virtual machine cannot take over the network card's bandwidth
Virtual Servers
multiple instances of a server operating system are run on a single physical computer. You can migrate servers on older hardware to newer computers or add virtual servers to computers with extra unused hardware resources.
Port Mirroring in VM
sends a copy of network traffic to another machine if your using it as monitoring
What is Mac address spoofing for VMs
supports network load balancing
