Andre,

Forgive me but doesn't that defeat the purpose of seperating my storage traffic?  If they are on the same subnet then they are not seperate so now my management and storage get to fight each other?  Am I not understanding this?

Management will be on a separate subnet, but the IP address assigned to your VM kernel port group used for IP storage will be on the same subnet as your storage. We use this configuration successfully for all our NFS storage, an have even disabled the gateway on this VLAN to ensure that NFS traffic is not routable to other parts of the network. The IP storage VLAN is basically a layer 2 subnet.

I think you misunderstood what I said. As also mentioned by jrmunday it's the VMkernel port for the storage traffic which has to be on the same subnet as the storage system. The VMkernel port for Management will be on another - usually routed - subnet.

André

Yea, I guess I am not following.  I'm sorry I'm sure this is something stupid but it's just not sinking in.

So VMkernel #1 Management - Vlan 18 - 172.27.18.104 / GW: 172.27.18.1

VMkernel #2 Storage - Vlan 40 - 172.27.40.40

Or are you saying to use another Vlan 18 address on the second VM kernel also?  so VMkernel #2 Storage would be say 172.27.18.x?

VM told me to just configure the second VMKernel and ignore the Gateway but when I do this I cannot ping the address.  I tried setting the Vlan tag to 40 and everything with no luck.  If someone could give me an example it would be greatly appreciated I'm sure it will be one of those "duh" moments when I finally realize whats going on.

Thank you for your patience on this one guys,

Greg

Please post a screen shot of the ESXi host's current virtual network setup. I assume the physical switch ports are configured as trunk/tagged ports (dot1q)!?

André

Andre,

I included 2 screen shots.  One that shows my Access Port config, Core vlan Config for vlan 40 and then the vmkernel for my storage.  The other shows my virtual network view for the host.  Thank you for your time.

How are the ports configured to which the "storage vmkernel nic" is connected? Are you sure they are also configured as VLAN trunks? If they are not then there is no need to provide a VLAN ID. If you stay in the same network then Support is right there should be no need to specify a VLAN.

OMG, Guys I had my "Ahh Ha" moment this morning and boy oh boy do I feel like an idiot.  So this whole time I've been sitting here going I can't ping 172.27.40.110 (Storage Vmkernel) well Im on the 172.27.17.x Vlan and without the gateway I can't ping it... I don't even know what I was thinking... I've been on Dayquil for the last few days but still this was a big "Duh" moment.  So I added a device onto the .40 vlan and Im good to go kinda!

A couple things that are confusing me still but I think these fall back onto my Netapp SAN vs VMware.  My netapp SAN is setup on my vlan 40 which can interroute so maybe that is why but before I setup a vmkernel for my 40 storage vlan I was able to connect to my NFS share with my default vmkernel which is on Vlan 18.  So how do I make sure that my SAN uses this new VMkernel I created and doesn't try to just use the first one?

Hurrah - It's awesome when the penny finally drops and things make sense (well for me anyway)!

I suspect you NFS exports are not locked down so can be accessesd from any subnet (in your case both the 18 and 40 VLAN's)? Check this and restrict them to the IPStorage VM Kernel port IP addresses on VLAN 40 (or the entire 172.27.40.x subnet if you like, but it's more secure using the specific IP's).

Jon,

Excellent point yes in testing I allowed the 18 vlan to connect.  I just removed that only allow my vmkernel port to connect and tested it successfully.  I have one more question for you Jon just really logisitics here on how you setup your network there. You have your Mgmt and your storage setup as Active/Passive but you have your vmotion and standard networks setup as active/active.  Management I can understand you are just adding the redundantcy there isn't a huge need for bandwidth but wouldn't you want your storage to load balance active/active?

Jon/Andre and everyone else on this thank you for being patient with me on this matter.  You guys have been a tremendous help!  Hopefully one day I will be able to be on the other side of these forums too!

For IPstorage, we currently only have 1GB uplinks and can't use link aggregation to increase the aggregate bandwith for our NFS traffic we chose this configuration so that we could favour paths (ISL) to NetApp Filers (we use FAS3240 in a MetroCluster configuration).

On the vSwitch used for vMotion, we have configured an additional VM Kernel port (requires another IP address) and have set the two VM Kernel Port groups to override the vSwitch failover order and use an Active/Passive (but with inverse vmnic selections). This ensures that we use all the uplinks and still have redundancy. It also allows us to double the vMotion speed and half the time for tasks such as putting a host into maintenance mode.

Configured as follows;

- vSwitch1 with 2x uplinks (vmnic4 and vmnic8) - Active/Active

- First VM Kernel port group, overrides switch failover order and uses vmnic4 and vmnic8 in a Active / Standby configuration

- Second VM Kernel port group, overrides switch failover order and uses vmnic8 and vmnic4 in a Active / Standby configuration

This use of both uplinks applies even when doing a vMotion for a single VM. See sample graphs below for a single vMotion operation.

Source host (this host use vmnic5 and vmnic7 - but the principal is the same);

Destination Host;

This doesn't seem to be showing im my previous message, so have added it again here ... +1 point

... This use of both uplinks applies even when doing a vMotion for a  single VM. See sample graphs below for a single vMotion operation.

Source host (this host use vmnic5 and vmnic7 - but the principal is the same);

Destination Host;