During the last Virtualization Security Podcast, our guest had to postpone so we discussed to several interesting topics all related to Digital Forensics and how encryption would best work within the virtual environment. Our very own Michael Berman, in a previous life was a forensic investigator and had some great insights into the problem of digital forensic within the virtual environment.
One thing I have learned in the time I have spent working in IT is that no software product, out of the box, will do everything that you want it to do. This especially goes for VMware’s vCenter Server. This is a great product but yet still has its shortcoming. vCenter will perform a lot of the tasks that we need to do and has the ability to report on a information we need to know about in our virtual environments but unfortunately not everything we need to know about can be easily found in bulk about multiple servers.
Infrastructure Performance Management is the single most important performance and capacity management issue that owners of a virtual environment need to address. The reason for this is that since the low hanging fruit has been virtualized, what is left is business critical and performance critical applications in the hands of applications owners and their business constituents. In order to convince these groups that the virtual infrastructure is performing acceptably in support of these important applications Operations groups in charge of virtual environments need to move beyond trying to infer infrastructure performance from resource utilization patterns.
• • 1 Comment
VMware intends to in an 18 to 24 month period come out with a true management stack that addresses capacity management, infrastructure performance, applications performance (and service assurance), configuration management, lifecycle management, extended provisioning and wrap all of that into a service catalog that lets IT provide a menu of services that can then be automatically provisioning on a dynamic (or even a cloud based) virtual infrastructure.
Security baselines and security health checks are an important part of any modern day infrastructure. These checks are done periodically throughout the year, usually ever quarter. In my opinion this is a good thing to check and make sure your security settings are following the guidelines that the company has set out to achieve. Here is where I do have a problem. When setting up the guidelines for the different technologies in your infrastructure it would make the most sense that the people establishing the guidelines need to fully understand the technology they are working with. After all, would you really want the midrange or mainframe group to write the policies and guidelines for the Microsoft Windows Servers in your environment?
Cloud Computing ...
• • 2 Comments
Existing VMware offerings competed in the Resource and Availability Management space prior to the acquisition of the Ionix assets, and the acquisition has done nothing to change the fact that vendors in this space face strong competition from VMware (or certainly will do so once Hyperic is integrated and ships as a VMware product). Infrastructure Performance Management is the key category that IT Operations needs to focus upon to understand the performance of their virtual environment, and the acquisitions do not change the positions of Akorri, CA/NetQos, Virtual Instruments and Xangati in this space. Adding ADM to VMware’s assets in the APM space adds a significant capability, but at the end of the day does not yet put VMware in the position to be able to provide an APM solution across physical and potentially multiple virtual environments as can AppDynamics, BlueStripe, Coradiant, New Relic and OPNET.
Veeam has introduced a new product named SureBackup. SureBackup is designed to not only use Veeam’s Backup technology to backup your virtual machines (VMs) but will also test the restoration of each of these VMs to ensure that they at least boot and at most the applications involved are actually running within the VM.
In many ways, the IT world has gone certification happy. Nearly every job requirement lists certifications as well as length of service, however, in the realm of cloud computing and virtualization what do these certifications mean? Are they even valuable? Is there a general enough certification that covers all the hypervisors, is there a third party certification available?