71 Skillman Avenue, New Jersey 07307 +1 201-588-1385

contact@vmwareguruz.com vmwareGuruz

About Us Contact Us Privacy Policy

HOME VCAP/VCIX GURUZ

INTERVIEW Q&A BOOKSHELF

ADVERTISE Cloud E2E

PARTNERS

VMware Real Time Scenario 21

(Update Manager)

Question: Do you know the

recent security patches
Platinum
released for Intel Spectre and
Meltdown? Have you patched
Sponsor
ESXi servers (Cluster/stand
alone/DMZ/Lab)? Can you
share couple of issues you
ran into while patching those
hosts?

Answer: This is hot topic for

many Administrators not Classic
limited to VMware to start the Sponsors
new year 2018. Some
background for “Meltdown and Spectre” which are critical vulnerabilities
existing in several modern CPU: these hardware bugs allow programs to steal
data which is currently processed on the computer. Meltdown and Spectre can
affect personal computers, mobile devices, server and several cloud services.

Actually, the only way to minimize those security risks is to patch your
operating systems or the hypervisor level (if you are using virtual machines)
and here is the latest VMware KB Article about these patches.
Top 100
vBlog 2017
These kind of questions from the Interviewer to check your awareness to
active issues in the IT Infrastructure space and followed by troubleshoot depth
based on the scenario you picked to explain the answer. Let me share couple
of good scenarios

Scenario 1:   Standalone ESXi host in remote branch o ce

can’t be patched via Update Manager

Sateesh
Thupakula
This blog is
maintained by
Sateesh
ESXUPDATE Log file
Thupakula,
2018-01-11T16:24:39Z esxupdate: 76791: downloader: DEBUG: Downloading who is vExpert
http://vumserver:9084/vum/repository/hostupdate/vmw/vmw-ESXi-6.0.0- 2015/16 and
metadata.zip to /tmp/tmp4m_ng4… VMware
2018-01-11T16:24:39Z esxupdate: 76791: esxupdate: ERROR: An esxupdate Solutions
error exception was caught: Architect,
2018-01-11T16:24:39Z esxupdate: 76791: esxupdate: ERROR: Traceback VCIX 6-NV,
(most recent call last): VCAP 5-
2018-01-11T16:24:39Z esxupdate: 76791: esxupdate: ERROR: File DCA/DCD
“/usr/sbin/esxupdate”, line 238, in main
View Full
2018-01-11T16:24:39Z esxupdate: 76791: esxupdate: ERROR: cmd.Run()
Profile →
2018-01-11T16:24:39Z esxupdate: 76791: esxupdate: ERROR: File
“/build/mts/release/bora-5224934/bora/build/esx/release/vmvisor/sys-
boot/lib/python2.7/site-packages/vmware/esx5update/Cmdline.py”, line 105, in
Run Categories
2018-01-11T16:24:39Z esxupdate: 76791: esxupdate: ERROR: File
“/build/mts/release/bora-5224934/bora/build/esx/release/vmvisor/sys- BOOKSHELF
boot/lib/python2.7/site-packages/vmware/esximage/Transaction.py”, line 73, in
Cloud E2E
DownloadMetadatas
2018-01-11T16:24:39Z esxupdate: 76791: esxupdate: ERROR:
FAMOUS
MetadataDownloadError:
BOOKS
(‘http://vumserver:9084/vum/repository/hostupdate/vmw/vmw-ESXi-6.0.0-
metadata.zip’, None,
FREE TOOLS
“(‘http://vumserver:9084/vum/repository/hostupdate/vmw/vmw-ESXi-6.0.0-
metadata.zip’, ‘/tmp/tmp4m_ng4’, ‘[Errno 4] IOError: [Errno 104] Connection
Interview Q&A
reset by peer’)”)
2018-01-11T16:24:39Z esxupdate: 76791: esxupdate: DEBUG: <<<
 LEVEL 1
You can start the explanation with there is a remote branch office which needs
to be patched by shutting down VM’s (as your design has single ESXi host) LEVEL 2
but failed to apply the required patches with the above error message. Log file
and symptoms are giving the indication about communication failure between LEVEL 3
VMware update manager server and ESXi host. Then you tried to copy the
patches manually to the data store and tried to apply them but failed. As this is Nutanix

problem seems to be complex, then you opened a case with VMware support
PRESS
to resolve it. VMware support requested for log bundle from the ESXi server
BOOKS
and Update manager server to analyze this issue. They found issues with
patch repository which is resolved by renaming the file –
REALTIME
“D:\ProgramData\VMware\VMware Update
Manager\Data\hostupdate\vmw\vmw-ESXi-6.0.0-metadata.zip” and followed
VCAP
by downloading metadata from the patch source.
DIRECTORY

VCAP GURUZ
Scenario 2:   Failed to migrate VM’s from ESXi host while
trying to keep it in Maintenance Mode VCAP-DCA

VCAP-DCD

VMWARE
Q&A

VSPHERE 6.0

Migrate virtual machine:

The vMotion failed because the destination host did not receive data from the
source host on the vMotion network. Please check your vMotion network
settings and physical network configuration and ensure they are correct
Subscribe
to Blog via
This scenario is kind of V-Motion issue stopping your patching activity as this Email
is only way to perform live migration of running virtual machines and keep the
ESXi maintenance mode. You started checking the V-Motion related settings Enter your
like VMKernel, IP address and port group settings but all of them looks good. email address
You tried to perform vmkping command from source to destination host but it to subscribe to
failed. It seems there is communication issue for the V-Motion network and this blog and
VLAN associated with it. When you engaged Network team to validate the receive
connectivity, they confirm no firewall rule changes and other IP’s are able to notifications of
communicate in the same subnet. This scenario forced you to check other new posts by
settings. Upon more investigation you found that these are HP Blade servers email.
and V-Motion network is configured as Internal network which doesn’t have an
uplink associated. HP confirmed it’s known issue with the current Join 2,277
Openview/c7000/Flex backend network settings. After contacting HP support other
they suggested to move the V-Motion network to another port group where subscribers
communication is not broken. This helped you to migrate all the VM’s to other
ESXi servers in the cluster to complete the patching activity. Email Addr

Subscribe
“Be social and share it with social media, if you feel worth
sharing it”

Tags
 1741 total views, 2 views today
esxtop

esxtop quick

reference
Related
evo evo sddc

fling Iaas
VMware VMware Real Time VMware Real Time
HealthAnalyzer 5.3.1 Scenario 10 Scenario 18 (vSAN) interview
April 3, 2018 July 19, 2015 June 16, 2017 vmware
In "Cloud E2E" In "REALTIME" In "Interview Q&A"
interviewvmw
K8 nsx
January 18, 2018 By Sateesh Thupakula LEVEL 1
LEVEL 2 LEVEL 3 REALTIME
nsx-t
NSX 6.3
VMWARE Q&A Leave a comment
NSX 6.4
interview vmware realtime realtime vmware
nsx architecture
scenario vmware questions vmware questions realtime
Pivotal Container
vmware scenario
Services

PKS

Platform Services
About the author
Controller

rail

VMware NSX 6.4 – Application Rule Manager Enhancements realtime

Pivotal Application Service with VMware NSX-T real time
realtime
vmware
VCAP-DCA

Related posts
VCAP-DCD

vcap certified

vcenter best

practices

vcloud Air
 VMware VMware VMware vcloud air disaster

Real Tim Real Real recovery

Scenario Time Time VMware

(vRA – Scenario Scenario Books
vRealize 19 18 vmware cloud
Automati (vCenter (vSAN) foundation
VMware VMware VMware
November 6.5 HA) June 16, VMware
Real Real Real
2017 Septembe 2017 cloud on AWS
Time Time Time
30, 2017
Scenario Scenario Scenario vmware fling

17 16 15 vmware interview
(vSphere (vSphere November
vmware
Design) 6.5) 28, 2016
nsx
Leave aMay
Reply
12, March 18,
vmware press
2017 2017
Your email address will not be published. Required fields are marked * vmware

production

Comment VMware
questions
vmware
realtime
vmware vsan
vmworld2015

VMworld 2017

vsphere 6.0
vSphere
You may use these HTML tags and attributes: <a href="" title=""> <abbr Integrated
title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> Containers
<del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>
vvd
zerto 5
Name* Zerto
installation
Email*

Website

Notify me of follow-up comments by email.

Notify me of new posts by email.

Submit clear form

Website Designed By Kranthi Kumar

All rights reserved@VMwareGuruZ Technologies Pvt. Ltd Kukkala
2017