Slashdot Mirror

← Back to Stories (view on slashdot.org)

Ask Slashdot: What Type of Asset Would You Not Virtualize?

Posted by ryuzaki0 on from the keeping-it-real dept.

An anonymous reader writes "With IT and Data Center consolidation seemingly happening everywhere our small shop is about to receive a corporate mandate to follow suit and preferably accomplish this via virtualization. I've had success with virtualizing low load web servers and other assets but the larger project does intimidate me a little. So I'm wondering: Are there server types, applications and/or assets that I should be hesitant virtualizing today? Are there drawbacks that get glossed over in the rush to consolidate all assets?"

76 of 464 comments (clear)

  1. Busy databases by DataDiddler · · Score: 4, Insightful

    Shared disk does not make I/O happy.

    --
    Working...
    1. Re:Busy databases by houstonbofh · · Score: 4, Funny

      Also, don't put the VM "control station" on the VM. You would think I wouldn't have to say this, but you would be wrong.

    2. Re:Busy databases by Anonymous Coward · · Score: 2, Informative

      In enterprise, aren't most busy DB servers using storage on the SAN, which would be exactly the same place where it would be if the server was virtualized?

    3. Re:Busy databases by Anonymous Coward · · Score: 2, Informative

      If you refer to the VMware "vCenter" VM, you are wrong.
      Virtualizing it gives you many advantages, the same ones you get from virtualizing any server. Decoupling it from the hardware, redundancy, etc.

      Why would you NOT virtualize it ?

      Just make sure you disable features that would move it around automatically so you can actually know on what host it's supposed to be running.

    4. Re:Busy databases by NFN_NLN · · Score: 2

      Shared disk does not make I/O happy.

      This was addressed during the VMWorld 2011 conference. VMWare is only limited by the amount of hardware you throw at it just like any other x86 platform: Achieving a Million I/O Operations per Second from a Single VMware vSphere 5.0 Host
      http://www.vmware.com/resources/techresources/10211

      You can go with IBM/Power or Oracle/SPARC if you have exceptionally large systems, but if you're coming from x86 applications there are minimal CPU, Memory, IO limitations which can't be resolved. The only limitations for x86 virtualization are proprietary cards, clock skew and overhead (not an issue for 95% of cases).

      In exchange you get hardware abstraction and portability, availability, the ability to scale much easier, consolidation, ease of deployment and management... etc etc.

      If you aren't virtualized you are behind the times; that applies to RISC as well. Just make sure you architect a proper solution to handle the load you intend to run! And when you add more load, expand the infrastructure BEFORE you start having performance issues.

    5. Re:Busy databases by spazdor · · Score: 2

      Very likely, and this does mitigate things.

      If the physical host has a lot of VM's using a lot of LUN's on the SAN, then there may still be contention for bandwidth on the fiberchannel card. Luckily this does not come with the massive overhead that is associated with contention for bandwidth on a local disk drive, but it's still a potential bottleneck to be wary of.

      --
      DRM: Terminator crops for your mind!
    6. Re:Busy databases by Maskirovka · · Score: 4, Interesting

      Shared disk does not make I/O happy.

      PCIE SSDs are advertised to deliver 100,000 to 500,000 IOPs. Has anyone experimented with PCI-Express based SSD solutions in their VM hosts to keep high IO VMs like VDI and SQL from swamping their SAN infrastructure?

      http://www.oczenterprise.com/interfaces/pci-express.html

    7. Re:Busy databases by spazdor · · Score: 4, Funny

      'cause if you knock it offline by accident, your easiest tool with which to bring it back online is gone?

      Kind of like how it's a bad idea to mess with a host's eth0 settings if you're currently logged in via ssh through eth0.

      --
      DRM: Terminator crops for your mind!
    8. Re:Busy databases by NFN_NLN · · Score: 2, Informative

      In enterprise, aren't most busy DB servers using storage on the SAN, which would be exactly the same place where it would be if the server was virtualized?

      In an enterprise environment all VMs (of any type) should be coming from external storage either SAN (FC, iSCSI) or NAS (NFS). Storage, Network and Hosts are usually separated into layers with full redundancy. No single point of failure should exist. Even if a host needs to be taken down for maintenance or upgrades etc the VM is migrated live to another host without interruption. Because the data is external it is accessible to all hosts and the hosts can be treated as a commodity item and swapped in/out.

    9. Re:Busy databases by vux984 · · Score: 2

      The only limitations for x86 virtualization are proprietary cards...

      And license dongles. Some work. Some don't. Worst is when they work "sometimes".

      VMWare is only limited by the amount of hardware you throw at it just like any other x86 platform...

      Consolidating multiple low load servers ... say 9 physical low load servers onto 3 virtual hosts, there's tremendous value there. If one of the hosts goes down, you can even run 4/5 on the remaining two while you fix it... the 3 virtual hosts are cheaper than the 9 original servers, etc... win-win.

      But high load servers? You can the advantages of virtualization out it... but you aren't saving money at the same time. If you have 3 servers that each run dual xeons at high utilization... if you want consolidate them onto a virtual then that host unit needs 6 xeons... and probably will cost more then the original 3 dual xeon servers combined...

    10. Re:Busy databases by batkiwi · · Score: 5, Informative

      Virtualisation != shared disk IO.

      If you're serious about virtualisation it's backed by a SAN anyways, which will get you many more IOPS than hitting a local disk ever would.

      We virtualise almost everything now without issue by setting 0 contention. Our VM hosts are 40 core (4 socket) machines with 256GB ram. Need an 8 core VM with 64GB ram to run SQL Server? Fine.

      We save BUCKETS on power, hardware, and licensing (Windows Server 2008 R2 datacenter licensing is per socket of the physical host) by virtualising.

    11. Re:Busy databases by NFN_NLN · · Score: 5, Informative

      'cause if you knock it offline by accident, your easiest tool with which to bring it back online is gone?

      Kind of like how it's a bad idea to mess with a host's eth0 settings if you're currently logged in via ssh through eth0.

      In Oracle VM Server for x86 and VMWare vSphere (and probably most other virtualization platforms) the VMs run on hosts independent of the management platform, ie vCenter for vSphere.

      vCenter is not considered critical for the operation of VMs. If vCenter dies your VMs will continue to run without interruption. You simply lose the ability to use advanced features such as vMotion, Storage vMotion, DRS, HA and vDS. However, you can still log into an ESXi host and start up another instance of vCenter. This is no different if the physical machine hosting vCenter died.

      As far as I know, the upcoming highly available version of VMWare vCenter (heartbeat) which runs two instances of vCenter together is ONLY available in VM form, I don't know of a physical deployment for vCenter Heartbeat (but I could be wrong).

    12. Re:Busy databases by The1stImmortal · · Score: 3, Insightful

      In which case the answer is either more fibre ports or changed storage design, no?

    13. Re:Busy databases by Burning1 · · Score: 3, Informative

      This isn't really a problem. First, if you have a reasonable sized infrastructure, it makes sense to build a redundent vCenter instance... And IIRC, it may be clustered. Second, if you kill your vCenter instance, you can still connect directly to your ESXi hosts using the vSphere client. You'll still retain the ability to manage network connections, disks, access the console, etc.

    14. Re:Busy databases by Electricity+Likes+Me · · Score: 3, Insightful

      You usually know you shouldn't mess with eth0 in that situation...but you do it anyway.

    15. Re:Busy databases by vanyel · · Score: 3, Informative

      A corollary to this is to make sure you have a local physical nameserver configured in all of your systems. Basically, go through a cold start power up sequence and figure out what you need in what order to get things back online. Testing the resulting procedure would be good idea too ;-)

    16. Re:Busy databases by ppanon · · Score: 2

      Database I/Os tend to use random access patterns much more than other I/O workloads, such that latency is frequently the key performance factor, not throughput. SANs can give you lots of IOPS when most of those IOPS are substantially sequential and can take advantage of a large stripe block being read into a cache from multiple drives at once. However if each IO requires a head seek, a SAN's performance won't be substantially better than local disk and, when a DB's IO requests are queued with other VM IO requests against a shared spindle set, the SAN latency will be worse than local disk if the active data set substantially exceeds the SAN's shared cache.

      If you've got some wimpy databases of a few GB or less, then the SAN should handle the load fine because you can take advantage of the shared cache. But if you're talking about serious Terabyte+ DBs effectively interspersed on a SAN with large shared file repositories? Ouch.

      --
      Laissez lire, et laissez danser; ces deux amusements ne feront jamais de mal au monde. - Voltaire
    17. Re:Busy databases by meerling · · Score: 2

      For some reason you guys have reminded me of all the calls I used to get where people had moved their windows swap file to a ramdisk and they couldn't figure out why their systems destabilized and spit up digital hairballs when the machine was under a heavy work load.

    18. Re:Busy databases by cwj123 · · Score: 2

      Couple of corrections. HA (high availability) works without vCenter, if a host running vCenter dies HA will restart it on another host like any other VM. A vDS will continue to function you just can't connect VMs to the distributed switch. Lastly vCenter Heartbeat has been around for at least a year and can run in a few configurations. You can run it with two VMs (active/passive), maybe on different hosts/data stores or even buildings. You can also run it with the active vCenter on a physical machine that'll failover to a VM if need be.

    19. Re:Busy databases by mysidia · · Score: 4, Informative

      It's just fine to do that. However, a few things are important:

      (1) You need at least 1 point of access to the environment at all times -- e.g. You need a "backup way" in that works and gives you full control, even if for some reason no VMs are running (worst case).

      (2) You need to ensure there are no circular dependencies -- if all VMs are down, your environment is still sufficiently operational for you to correct any issue. An example of a circular dependency would be that you have virtualized a VPN server/firewall required to gain access to your ESXi hosts; yeah, it's secure from an integrity standpoint, but what about secure from an availability standpoint, and secure from a disaster recovery standpoint?

      (3) If you have virtualized your active directory servers, you should ensure you have a backup plan that will allow you to authenticate to all your hypervisors, virtualization management, and network infrastructure/out of band management, EVEN if AD is crippled and offline.

      (4) If you have virtualized DNS servers, you should have at least 2 DNS servers that will probably not fail at the same time, because you have eliminated as many common failure modes as possible.

      (a) Redundant DNS servers should not be on the same server. Ideally you would have two sites, with separate virtualization clusters, separate storage, and 2 redundant DNS servers at each site.
      (b) Redundant DNS servers should not be stored on the same SAN, or the same local storage medium.
      (c) If your Hypervisor requires a DNS lookup to gain access to the SAN, you should have a backup plan to get your environment back up when all DNS servers are down. Each virtualized DNS server should be stored either on separate DAS storage, or on shared storage that can be accessed even when DNS is unavailable.

    20. Re:Busy databases by batkiwi · · Score: 4, Insightful

      One of the systems I manage has a 1.3TB ms sql server database. It absolutely flies.

      The same SAN also hosts a few 8-10TB oracle databases with no issues.

      What idiot shares spindle sets on a VM DB setup? OS goes to the shared pool, each DB gets its own set of LUNs depending on performance needs. This isn't rocket surgery.

    21. Re:Busy databases by Paul+Carver · · Score: 2

      We're running vCenter on a pair of physical (non-VM) servers with heartbeat. Heartbeat is a huge pain to get working and apparently pretty much requires Windows Active Directory and MS SQL (we would have preferred Oracle since we already had that in place, but our VMWare support folks couldn't get the combination of vCenter, Heartbeat and Oracle working together.)

    22. Re:Busy databases by philip.paradis · · Score: 2

      For situations where changes might cause loss of easy SSH access, It's not difficult to preserve the original networking config, fire up a screen session, issue a networking config restore/restart command followed by a sleep of $seconds, make your changes, restart networking, and terminate the screen session if everything worked out okay. I'm sure you thought of that, though. Right? I'm also sure you have out of band console access to servers that matter to you, just in case something goes wrong. Right?

      --
      Write failed: Broken pipe
    23. Re:Busy databases by mysidia · · Score: 4, Informative

      'cause if you knock it offline by accident, your easiest tool with which to bring it back online is gone?

      However, your vCenter is much more likely to fail hard if you place it on a separate physical server.
      Physical servers fail all the time. By virtualizing vCenter, what you accomplish is that you protect it using HA; if one of your VM hosts fails, you can have two hosts standing by to start the VM.

      You can also use HA to protect the SQL server that vCenter requires to work, and you can establish DRS rules to indicate which host(s) you prefer those two to live on.

      If some operator erroneously powers this off, or mucks it up, there is still an easily available tool, the VPX Client; vSphere Client, can be used to connect directly to a host and start the VM.

      You can also have a separate physical host with the vSphere CLI installed, to allow you to power on a VM that way. It does make sense to have perhaps 2 cheap physical servers to run such things, and maybe double as a DNS or AD server, to avoid circular dependency problems with DNS or authentication; these would also be the servers your backup tools should be installed on, to facilitate recovery of VM(s) (including the vCenter VM) from backup.

      That's fine and valid, but vCenter itself should be clustered. Unless you are paying through the nose for vCenter Heartbeat, running it as a VM is the best common supported practice for accomplishing that.

    24. Re:Busy databases by cwj123 · · Score: 2

      There's not a vCPU limit in HA as of at least ESXi 4.1 (or if there is it's really high). Maybe your're thinking of FT? That has some strange limitations.

    25. Re:Busy databases by swb · · Score: 3, Interesting

      At most places you don't get to buy SAN often enough or large enough to have the luxury of allocating a dozen spindles to three RAID-10 sets. Eventually management's store everything spend nothing philosphy causes those dedicated RAID-10 sets to get merged and restriped into the larger storage pool, with the (vain) hope that more overall spindles in the shared pool will make the suck less sucky.

      In that kind of situation, it's not always crazy to spec a big box with a dozen of its own spindles for something performance oriented because you can't be forced to merge it back into the pool when the pool gets full.

    26. Re:Busy databases by NFN_NLN · · Score: 3, Interesting

      Couple of corrections. HA (high availability) works without vCenter, if a host running vCenter dies HA will restart it on another host like any other VM. A vDS will continue to function you just can't connect VMs to the distributed switch.

      You are correct, it is only the ability to reconfigure HA and vDS that is lost with vCenter. Loss of vDS would be critical to the operation of VMs.

      I have never actually run vCenter Heartbeat. They effectively make you pay for 2 copies of vCenter and 1 copy of heartbeat. I've had customers interested... until the price comes up. Can't say I disagree.

    27. Re:Busy databases by houstonbofh · · Score: 3, Interesting

      I posted this and everyone went "Vcenter!" But it could also be Vsphere (which was the case) or Xen management tools, or KVM management tools... In other words, don't make it easy to lock your keys in the car...

    28. Re:Busy databases by Anonymous Coward · · Score: 2

      We have seen the same. This is especially relevant if you are paying per-core licensing for Oracle or something of that ilk. A $75k FusionI/O in a $5k server will run circles around a multi-million-dollar superVM stack on top-end SAN for IO intense applications. (Facebook's solution)

    29. Re:Busy databases by DeathElk · · Score: 2

      If my VMware cluster has problems, not having the vCenter server around makes it harder to get things working again

      Not sure why it would - why not just use vSphere client to connect directly to the host/s? If you're running HA, you can try the SuSE/Postgresql based VMWare vCenter Server Appliance.

    30. Re:Busy databases by Cylix · · Score: 3, Interesting

      That is more of an issue of accounting.

      At a shop I used to work out we broke out the cost per spindle and that purchase had to be paid by the org that need the resources. Absolutely everyone and their mother wanted completely horrendous amounts of resources for every 2 bit project. However, since we were in the business of actually ensuring there was a return on the investment we had to enforce resource allocation.

      This translated to a few interesting things. Projects had to be approved and had to be assigned a budget. Resources were fairly well managed and projected utilization was also fed into the overall purchase. We could not actually purchase new hardware without funds and you can be damn sure we weren't dipping into our org funds to pay for someone elses project. If the PHB had enough power to say "do it" he also had the power to allocated resources.

      Probably the only thing that made any of this actually work were that budgets were real. ie, this is the cash you get to fund your project... don't waste it all on licensing or else you get no hardware. (I also said a few things) Head count was also tied to this resource allocation. We had man hours to apply to given amount of staff and the only way to get more help was to ensure budgets were enforced. We were pretty good about ensuring budgets were enforced from even the lowliest tech because over expense could very well end that lowly guy on the food chain. (Being consciously aware of these makes helps to turn your most ineffective resource into the most effective!)

      Now, I had one moronic group under-spec and over spend their budget. I had to knock on some doors, but I effectively managed to get them donated hardware from groups who way over-killed on budget planning. They were grateful and I brought costs down by not putting more junk on the dc floor. However, I sometimes think I should have let survival of the fittest win out there.

      --
      "You should always go to other people's funerals; otherwise, they won't come to yours." -- Yogi Berra
    31. Re:Busy databases by Eric+Seppanen · · Score: 2

      The argument against PCIe is that if anything on that particular server fries, all of your data is now trapped inside a dead server; there's no way to fail over quickly. If you care about high availability you probably want to look into a SAN flash appliance, i.e. Pure Storage. (shameless plug)

      --
      314-15-9265
    32. Re:Busy databases by Doc+Ruby · · Score: 2

      As long as you think there's no difference between terrorists and hippies, I'm not interested in anything else you say.

      --

      --
      make install -not war

    33. Re:Busy databases by NFN_NLN · · Score: 2


      Don't use RAID5 for busy databases. Don't dare use RAID6 for any database.
      Don't use SATA drives for busy databases.
      In fact, if you are serious about consolidation,
      don't use RAID5 or RAID6 period.

      Treat the storage like a black box. Come up with an IOPS, bandwidth, and response times and ensure the metrics are hit.

      IBM sells an XIV composed entirely off the shelf components on SATA (http://opensystemsguy.wordpress.com/). EMC has dynamically allocated tiering called FAST (http://www.emc.com/about/glossary/fast.htm) over SSD/SAS/SATA. NetApp has cach acceleration but uses RAID-6. They all produce systems to meet enterprise level loads while violating those rules.

      Let the vendor size out a system that meets your requirements (metrics) without putting stipulations like above in the RFQ. They only cause problems and often eliminate viable options.

    34. Re:Busy databases by mysidia · · Score: 2

      For those with an aversion to running a Windows SQL box just for vCenter, try the SuSE/Postgresql based VMWare vCenter Server Appliance.

      If it were PostgreSQL, and didn't have so many limitations, VCSA would have been a welcome addition. Last I checked the VCSA is SuSE + Oracle Express DB, and if you choose an external DB with the VCSA, it has to be IBM DB2 or Oracle; SQL Server is not a supported external db of the VCSA. With the VCSA Oracle express, you have some significant limitations, just like you have with MS SQL Express.

      And my experience with the VCSA is that it has been flaky at best, at least in the initial setup process -- it is presumably more reliable once up and running.

    35. Re:Busy databases by mysidia · · Score: 2

      Let the vendor size out a system that meets your requirements (metrics) without putting stipulations like above in the RFQ. They only cause problems and often eliminate viable options.

      Treat the storage like a black box. Come up with an IOPS, bandwidth, and response times and ensure the metrics are hit.

      Spoken like a true salesdroid; "Please ignore the man behind the curtain," just trust our performance claims, even when they defy what physics and math says the avg performance should be. The vendor will size out their equipment alright, and they'll be drooling, with their RAID5 solution, knowing full well you'll be coming out with another RFQ within a year to deal with the performance issue, probably requiring you to spend ever increasing amounts of $$$ for more and more cache, because your applications' working set sized up, and it wouldn't have been an issue if your spindle config could actually tackle your average workload on a raw IOPS basis.

      IOPS and response times are not all we care about. Performance consistency under ever-varying loads, graceful degradation, component reliability, headroom, extent of degradation in event of failure, cost per performance, cost per capacity unit are important too.

      NetApp has cach acceleration but uses RAID-6. They all produce systems to meet enterprise level loads while violating those rules.

      NetAPP's product is not RAID6; it's RAID-DP. What they are implementing is definitely not RAID6, specifically they have implemented a proprietary scheme, and it is only marginally less performant than RAID10.

      IBM sells an XIV composed entirely off the shelf components on SATA

      And XIV is not a good solution for large performance-critical applications and mixed workloads that require excellent IO response times. You can get decent performance off XIV in the aggregate; but there is a lack of performance consistency, and wide striping gets you in trouble as amount of disk space used increases, unexpected sudden 20, 30% degradations are never cool.

      Specifically, the raw disk performance of the XIV units totally suck compared to a comparable capacity 10kRPM SAS array. Good "Performance" relies entirely on effective caching, and this doesn't work for various busy DB workloads, cache misses will kill your application.

      It's not a good solution if you can use SATA spindles, but you'll require 6 times as many spindles and a bunch of SSDs, to get average acceptable performance, the cost will be high.

      SAS disk drives are more expensive than SATA drives, but not so much more expensive that it is a good tradeoff to switch to SATA if 3 - 6x the spindles will be required as a result, and 60-70% of the extra capacity that SATA drives offer must be left unused in order to maintain performance.

    36. Re:Busy databases by afidel · · Score: 2

      It depends, by default you'd have to login to one or more hosts directly and fire up VM's. I have my vcenter setup to only run on the first two hosts in my production cluster so for me I would login to those two and fire up vcenter (this is if it didn't come up on its own, which it should since I changed the properties of my vcenter server and a few other critical VM's (domain controllers, database servers, etc) to power on with host, but that is not the default out of the box. Bringing up vcenter would just make things faster, it's not a requirement.

      --
      There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
    37. Re:Busy databases by Anonymous Coward · · Score: 2, Interesting

      Here in the datacentre where I work, we have many VMs running of a PCI-Express SSD from virident and the performance is impressive. Really impressive, beating any other solution we've tried with SANs. We've sen two problems so far:

      a. Size of the SSD is small, so the amount of VMs is limited.
      b. It's not always easy to create a HA environment with two servers running these VMs. Scalability is also an issue.

      # lspci |grep Virident
      15:00.0 FLASH memory: Virident Systems Inc. FlashMAX Drive (rev 04)

      X.

    38. Re:Busy databases by Thumper_SVX · · Score: 2

      You can't, (or at least you couldn't at the time, not sure about vSphere 5), initiate any vmotions without vcenter, so when you have an esx host with intermittent storage connectivity problems that made your vCenter VM hang, you can't easily vmotion the remaining VM's off of that physical host without vCenter.

      You do realize how easy it is to re-register your vCenter VM on another host, right? Once it comes up it'll clean up the "orphaned instance". Just power it off, log into another host directly, browse the datastore, register and boot. Dead simple. I did this in our DR test environment last week when we had vCenter problems and as soon as vCenter connected to all the hosts and realized there was another copy of the VM it just made the appropriate assumption that the one that was powered on was the one I wanted. Voila. Probably quicker than a vMotion :)

    39. Re:Busy databases by vlm · · Score: 2

      An example of a circular dependency would be that you have virtualized a VPN server/firewall required to gain access to your ESXi hosts; yeah, it's secure from an integrity standpoint, but what about secure from an availability standpoint, and secure from a disaster recovery standpoint?

      Simpler example, all your virtualization hosts get their address from a mac addrs hard coded DHCP server... And the DHCP server is virtualized. I almost accidentally did this one.

      --
      "Science flies us to the moon. Religion flies us into buildings." - Victor Stenger
    40. Re:Busy databases by drsmithy · · Score: 2

      vCenters recommendation is 2 vCPU's - means you can't HA the vCenter VM.

      You are thinking of FT, not HA.

      (Which is easy to do, since really their names are back to front with regards to functionality.)

    41. Re:Busy databases by PetiePooo · · Score: 2

      If you're running that command in a plain shell outside of screen, it may not complete. Specifically, ifdown would complete, closing all TCP connections, including your SSH session. When sshd dies, it closes its pseudo-tty, and kills all commands spawned in that tty, including the shell that was forking an ifup process. It's a classic race condition. It may have time to start and run ifup before the tty is killed, but it may not.

      The way around this, as others have mentioned, is to use screen. When the login tty is killed, the shell running in your screen session stays running, so your ifup command doesn't get terminated.

  2. First choice by PPH · · Score: 5, Funny

    Virtualize management.

    --
    Have gnu, will travel.
    1. Re:First choice by aaronb1138 · · Score: 5, Funny

      Already done. Most companies have hundreds of managers sharing the processing, memory, and storage facilities of one brain. Too bad the power and wasted space savings don't scale.

  3. Not virtualize by amicusNYCL · · Score: 5, Funny

    Assets not to virtualize:

    1) Women
    2) Beer
    3) Profit

    --
    "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
    1. Re:Not virtualize by theshowmecanuck · · Score: 5, Funny

      This is Slashdot. Your list is actually a priority list of thing to virtualize.

      --
      -- I ignore anonymous replies to my comments and postings.
    2. Re:Not virtualize by LateArthurDent · · Score: 5, Funny

      Going from zero girlfriends to one imaginary girlfriend could, I suppose, be counted as an improvement. Going from one real girlfriend to one imaginary girlfriend... not so much, although, mathematically speaking, all girlfriends are partially imaginary.

      I assume that by "partially imaginary" you mean they are all complex.

      You would then be right.

    3. Re:Not virtualize by hairyfish · · Score: 3, Funny

      Assets not to virtualize:

      1) Women

      I've already virtualised all the hot chicks in the office in my head. That's what gets me through those cold lonely nights....

    4. Re:Not virtualize by stretch0611 · · Score: 3, Funny

      Wrong... This is slashdot... Virtual Women are a necessity.

      --
      Looking for a job?
      Want your resume written professionally?
      DON'T USE TUNAREZ!!!
  4. cognos by alen · · Score: 2

    ibm even says give it its own physical machine if you're going to virtualize it.

    1. Re:cognos by codepunk · · Score: 2

      That is because each box is running a java container requiring a terabyte of ram to render some html output.

      --


      Got Code?
  5. To be serious for a moment... by danaris · · Score: 3, Insightful

    How about backups?

    Consolidating and virtualizing your backup servers sounds like a recipe for trouble to me.

    Dan Aris

    --
    Fun. Free. Online. RPG. BattleMaster.
  6. Sure by FranTaylor · · Score: 4, Funny

    I would not virtualize the servers that are running the virtual machines.

    1. Re:Sure by The1stImmortal · · Score: 3, Interesting

      VMware ESXi is actually a supported guest for VMware Workstation...

      Whilst that may sound crazy, it makes system design, testing, and generally skilling up a lot easier.

  7. Databases and Heavy memory java apps by codepunk · · Score: 2, Informative

    Well yes Databases would make a poor virtualization target. Also your heavy memory usage java app like the company app server using a terabyte of ram to display the department wiki.

    --


    Got Code?
  8. Anything with strict timing constraints by Anonymous Coward · · Score: 5, Insightful

    Don't virtualize anything requiring tight scheduling or a reliable clock, such as a software PBX system performing transcoding or conferencing.

    http://www.vmware.com/files/pdf/Timekeeping-In-VirtualMachines.pdf

    1. Re:Anything with strict timing constraints by Zocalo · · Score: 2, Interesting
      +1 This. The situation is a lot better than it used to be, but VM software tends to have a problem with keeping an accurate clock and that can bite you in some interesting ways, such as:
      • Pretty much anything to do with authentication; that means Active Directory, Kerberos and LDAP for sure, and depending on your setup might also include backends hosted in those systems such as AD/LDAP integrated DHCP/DNS if you have short TTLs.
      • NTP servers. Just don't go there. It should be obvious why, given the statement above!
      • System logging - you can forget about having accurately time synchronised system logs on VMs. The best solution here is to send all your VM logs to a central server and make sure the timestamps come from that server and not the remote one. Needless to say, this also needs to be a physical machine.

      In addition, it should be pretty much a no-brainer that anything that tends to saturate I/O, whether that's CPU, disk, network or something else generally doesn't play well with co-hosted VMs when it's doing its thing, things like number crunchers, database servers, busy web servers and so on, all need to be evaluated on a case-by-case basis.

      --
      UNIX? They're not even circumcised! Savages!
    2. Re:Anything with strict timing constraints by tconnors · · Score: 2

      Don't virtualize anything requiring tight scheduling or a reliable clock, such as a software PBX system performing transcoding or conferencing.

      Pffft. We're running cisco's voip stuff one one of their cisco UCS chassis here. Not a problem, and entirely supported.

      NTP hasn't been a problem for years, so long as you read and understand the VMware document and have some reasonable knowledge of NTP (more knowledge than the people packaging ntp for redhat, is unfortunately required).

      Don't *ever* fallback to local disciplining perhaps except for a single master ntp server for your organisation (if you expect to have an unreliable network to the outside world). Why the fecking hell did Redhat decide that workstations and non-ntp servers would fallback to local disciplining?

      Set 'tinker panic 0' in ntp.conf

      Get nagios to monitor each VM, and each host (meh, not so important - only for esxi host logfiles), compared to the ntp server(s), and compare the server against a smattering of external hosts (perhaps including your country's official time standard if you're a government organisation). We're monitoring 250 VMs here, and none of them have ever been more than 0.1seconds out.

      I've seen some really screwy ntp and time configurations out there (including using cron to rdate to a local server) - it's a pity that competent ntp knowledge isn't a requirement of law. Maybe it's something North Carolina should persue after they've finished passing the sea-level-isn't-really-rising-all-that-much legislation.

    3. Re:Anything with strict timing constraints by tconnors · · Score: 3, Interesting

      Get nagios to monitor each VM, and each host (meh, not so important - only for esxi host logfiles), compared to the ntp server(s), and compare the server against a smattering of external hosts (perhaps including your country's official time standard if you're a government organisation). We're monitoring 250 VMs here, and none of them have ever been more than 0.1seconds out.

      I forgot to say: monitor against external ntp providers (asking Networks to punch holes through firewalls for your monitoring host(s) appropriately) even (especially) when using super expensive GPS clocks as your stratum 1 source. You have to remember that GPS receivers are manufactured by cheapest bidder incompetent fools who don't even understand how TAI-UTC works, hence why they're lobbying to abolish UTC time. Symmetricom, I'm looking at you. Good thing leap seconds are updated in the ephemerides at UTC=0, so on the east coast of Australia, are applied erroneously 3 months early when optical telescopes aren't observing the sky.

  9. Non x86 HW/Software or Certified systems by thb3 · · Score: 2

    The only workloads that you can't really virtualize tend to be things like OS/400, but that is where things like LPARs can come in OR workloads that do a lot of privileges calls to the CPU or a specific instruction set. Also there are a slew of non-technical reasons I've seen like in Healthcare or Pharma where a specific machine is written into a specification for drug manufacturing or such.

    Even still there really aren't any workloads you can't virtualize and realize some sort of benefit from. Even those with high requirements for CPUs or Memory hogs can be virtualized. It's not always the best financial decision from the hardware cost and licenses, but most organizations benefit then from the ability to move the VM from one physical host to another to avoid downtime and easier backups. Having worked on a lot of the largest VMware deployments out there, I've yet to find an application we can't virtualize for some gain in performance (newer hardware) or get better resiliency (less downtime, easier backups, HA features outside of the OS).

    --
    I can only please one person a day. Today is not your day, and tomorrow does not look good either.
  10. A few types I'd refrain from virtualizing by Anonymous Coward · · Score: 2, Informative

    - Telephony and rea-time voice/video servers (Asterisk for example). You don't want to explain to your big boss why his phone lines are having hiccups
    - Real-time servers, like game servers (Minecraft), as they constantly take up resources.
    - NTPD servers (Network Time Protocol). Worst case, run it at layer 0 (host machine). But not VM :) Preferable to have an old Pentium running that one somewhere.

    If you look at the pattern, these are all real-time services that have very little leeway for latency. Yes, it's possible to virtualize them, but it's more work than it's worth, really.

    For me, IMHO, everything else is fair play. Had good luck with Windows Active Directory servers (yes even PDC), SVN, web services, file servers, databases, memcache, and many others.

  11. High Performance Clusters by Tynin · · Score: 2

    Makes little sense to not run on metal when using an HPC. I can understand the benefit of being able to better utilize the hardware you have, as well as the potential lessening of your datacenter footprint in space, cooling, electric, etc. but when you are dependent on having quick(and ever quicker) turn around times because of business needs, it hasn't been my experience that the cloud makes sense, at least in production environments. Granted, for Dev & QA HPCs, go for it, but not for production.

  12. Network Gear by GeneralTurgidson · · Score: 3, Informative

    Firewalls, load balancers, anything that is typically hardware with dedicated ASICs. These virtual appliances typically are very taxing to your virtual infrastructure and cost about the same as the physical box. Also, iSeries, but I'm pretty sure I could do it if our admin went on vacation for once :)

    1. Re:Network Gear by gethoht · · Score: 2

      While networking in general represents one of the last things to be widely virtualized, it also represents one of the next big jumps in virtualization. Juniper, Xsigo, Nicira and a whole host of companies would beg to differ with your conclusion. In fact they're betting large sums of money that you're wrong.

      --
      All things are subject to interpretation, whichever interpretation prevails at a given time is a function of power and n
  13. gotta have a night light server by jakedata · · Score: 5, Informative

    Imagine coming up from a stone cold shutdown. What would be a super thing to have? How about DNS and DHCP? AD too if that's your thing. Some nice little box that can wake up your LAN in 5 minutes so you can start troubleshooting the boot storm as the rest of your VMs try to start up and all get stuck in the doorway like the Three Stooges.

  14. Depends on your expected ROI by kolbe · · Score: 4, Informative

    Depending on the environment and the available assets to the IT Department.

    As an example:

    Assume you have VMWare ESXi 5 running on 3 hosts with a vCenter and a combined pool of say 192GB of RAM, 5TB of disk, 3x1Gbps for NAS/SAN/iSCSI and 3x1Gbps for Data/connectivity.

    It would become unwise in such an environment (without funds to expand it) to run any system that causes a bottleneck on your environment and thus decrease performance for other systems. This can be:
    - Systems with High Disk load such as heavy DB usage or SNMP Traps or Log collection or Backup Storage Servers;
    - Systems with High Network usage such as SNMP, Streaming services or E-mail;
    - Systems with High RAM usage.

    For this example, any of the above utilizing say 15% of your total resources for a single instance server would ultimately become cheaper to run on physical hardware. That is, until your environment can bring that utilization number down to 5% or is warranted/needed/desired for some reason.

    In my environment, we have a total of 15 ESXi v5 hosts on Cisco UCS Blades with 1TB of RAM and 30TB of Disk on 10GbE. We do however refrain from deploying:
    - Media Streaming servers
    - Backup Servers
    - SNMP/Log Collection Servers

    Hope this helps!

    1. Re:Depends on your expected ROI by kolbe · · Score: 2

      Cisco UCS is a costly, yet very effective solution. The high costs lay around the requirement for the Cisco 61x0 port extender, gbic costs, licenses for it, expensive PDU's and other costly management features. I really dig the UCS Manager and KVM Manager for the UCS though as it allows for some really large scale deployments with minimized management and implementation. In my opinion, the UCS is really best suited for companies who want/need LOTS of nodes though... 30+ would be a good starting point. In the long run, I think my company would have been better off sticking with HP C7000 BladeCenters, but they wanted to reduce our vendor "footprint" in the datacenter. Cisco/EMC/VMWare won on a majority of fronts for that in the end.

      When you think of the UCS, think of StorageTek/Sun v215 & v245 servers... the technology behind them and their design is HEAVILY modeled after those old Sun designs. The Cisco UCS Blades are also way ahead of HP/Dell in terms of capabilities and capacity limits, but it really does cost a lot more than we expected them to.

  15. My 45 cents.... by bruciferofbrm · · Score: 5, Informative

    You can actually virtualize a whole lot of things. The real key is to put a lot of money into the virtualization hosts. CPUs/cores, ram, a really good storage system.

    For the small budget, you can get by on a lot less.

    I have virtualized several entire development stacks (app servers, DB servers, storage servers, reporting servers). {But you trade a bit of performance for a reduced physical server count (10 or 15 to 1? A pretty good tradeoff if done right)}
    You CAN virtualize SQL servers. Most business DB servers at the small shop end are fairly light load (like finance systems) and virtualize well. {But if performance makes you money (ie: you have a SAAS product - then stay physical }
    You CAN virtualize an entire Cognos stack (it is made up of many servers depending on how complex your environment is). {However, IBM is correct that in a heavy BI workload environment deserves physical servers. I run over 18,000 reports a day on my produciton stack. Not going to virtualize that any time soon.}
    You CAN virtualize entire profit generating websites. {As long as you keep an eye on host CPU and perceived performance at the end user level}
    You can virtualize a lot of this in relatively small environments.

    But.. Everyone here who has said it is correct: DISK IO is a major contention point. If you stuff all of your virtual machines inside one single giant data store (VMWare term for a single large disk partition) and expect super fast performance 100% of the time, then you will be greatly disappointed. One of my own stacks would grind to very intollerable performance levels whenever someone restored a database to the virtualized DB server. We moved that DB server virtual machine's disk load onto dedicated drives while leaving the machine itself virtiaulize, and all those problems went away.

    Do not virtualize anything thar requires multiple CPUs (cores) to operate efficently. SQL Server is an example fo something that works better with multiple CPUs at its beck and call. In virtualization though, getting all the CPU requests to line up into one availabe window bogs the whole virtual machine down (jsut the VM, not the host). If your workload can't survive on a single virtual CPU, or two at most (single core each), then you are best to keep it on a physical server.

    Time sensative systems and high compute workload processes are also ideally to be left out of virtualization. Except.. If you can put a beefy enough box under them, then you might get away with it and not notice a performance impact.

    The biggest mistake made when going into virtualization (besides not planning for your DISK IO needs) seems to be over provisioning too many virtual machines on a host. This is a dark trap if you are lucky to have the money to build out a high availability virtualization cluster. You spread you load across your nodes in the cluster. Then one day one goes off line and that workload moves to another node. If you only have two nodes, and one is already over subscribed, suddenly the surviving node is way over its head and everything suffers until you get in and start throttling non esscential workloads down.

    So, what do you not virtualize? Anything where performance is critical to its acceptance and succcess. Anything that a performance drop can cost you money or customers. (Remember that internal users are also customers).

    Plan ahead ALOT. If you feel like your not going in the right direction, pay for a consultant to come in and help design the solution Even if it is only for a few hours. (No. I am not a consultant. Not for hire.)

  16. Clock stuff by Charliemopps · · Score: 4, Informative

    I work for a telco and we've virtualized a lot of stuff, including telephone switches. We ran into a lot of problems with things that required reliable clock/syncing. 2 way video, voice, television, etc... using virtualized services on a VM machine doesn't seem to work very well either. So if you're using SAS or other cloud based stuff and your users on a virtual machine you run into all sorts of weird transient issues. Lastly, it may seem silly, but if you're company is anything like mine, you have a lot of people that have built their own little tools using Microsoft Access. We didn't realize just how many MS Access tools were out there and how important they were to some departments until we put them on virtual machines and found out that the MS Jet database is a file system based database and definitely does not work well with virtualization... so bad in fact that in many cases it corrupted the database beyond repair. We even tried moving some of the more important ones over to Oracle backends (because frankly, if they're important they should've been all along) but even MS Accesses front end couldn't deal with the virtualization... even though it was an improvement. We finally ended up having all these micro-projects where we had to put all these custom made tools, many of them made by people that didn't know what they were doing and didn't even work for us anymore intro real DBs with real web-based frontends. Reverse engineering some of those was a nightmare. It's a can of worms we likely wouldn't have opened if we had the foresight. I'd personally like to see MS Access treated just like Visual Studio in that only IS is allowed access to it... but I don't make the rules so... whatever.

  17. Stone age technology. by Alex+Belits · · Score: 2, Interesting

    Virtualization is a stone-age technology, useful for crippling hostile environments. This is why "cloud" providers love it, and developers use it for testing. Incompetent sysadmins use it in hope that they can revert their mistakes by switching to pre-fuckup images, having this strange fantasy that this shit is going to fly in a production environment.

    If you REALLY need separate hosts for separate applications in production environment (what you almost certainly don't in presence of package manager and usable backup system), there is host partitioning -- VServer, OpenVZ, LXC-based environments, up to schroot-based chroot environments.

    --
    Contrary to the popular belief, there indeed is no God.
  18. There are exceptions... by bertok · · Score: 3, Informative

    There are a few "workloads" that just don't like to be virtualized for one reason or another.

    Active Directory Domain Controllers -- these work better now under hypervisors, but older versions had a wonderful error message when starting up from a snapshot rollback: "Recovered using an unsupported method", which then resulted in a dead DC that would refuse to do anything until it was restored from a "supported" backup, usually tape. I used to put big "DO NOT SNAPSHOT" warnings on DCs, or even block snapshots with ACLs.

    Time-rollback -- Some applications just can't take even a small roll-back in the system clock very well. These have problems when moved from host-to-host with a technology like vMotion. It's usually a coding error, where the system clock is used to "order" transactions, instead of using an incrementing transaction ID counter.

    DRM -- lots of apps use hardware-integrated copy protection, like dongles. Some of them can be "made to work" using hardware pass-through, but then you lose the biggest virtualization benefit of being able to migrate VMs around during the day without outages.

    Network Latency -- this is a "last but certainly not least". Some badly written applications are very sensitive to network latency because of the use of excessively chatty protocols. Examples are TFTP, reading SQL data row-by-row using cursors, or badly designed RPC protocols that enumerate big lists one item at a time over the wire. Most hypervisors add something like 20-100 microseconds for every packet, and then there are the overheads of context switches, cache thrashing, etc... You can end up with the application performance plummeting, despite faster CPUs and more RAM. I had one case where an application went from taking about an hour to run a report to something like five hours. The arithmetic is simple: Every microsecond of additional latency adds a full second of time per million network round-trips. I've seen applications that do ten billion round-trips to complete a process!

  19. Don't guess... do some analysis by adosch · · Score: 2

    Although most things are no brainers like you mentioned in your post, I'd say my best advice is: Don't guess and do analysis. Clearly you invested into virtualization for a reason and not just because you convinced your boss it was the 'trendy' thing to do. I'm glad to see you're not picking random systems because some poser sys-admin who makes bullshit conjectures said it was a good idea.

    On the Windows side, there's plenty of tools to use to gauge virtualization candidacy; I've mostly used perfmon and cross-referenced it with my current performance on VMFS storage luns and what CPU/memory resources I have to spare in what resource pools are available. Linux (which is my primary line of expertise), IMHO, is much easier to gauge. You've got sar, iostat, vmstat (heck the whole sysstat pkg for that matter), not to mention if are a GUI trending fanboi, you've got xymon, nagios, cacti, big brother, etc. to graphically trend performance with nice rrd-tool graphs.

    Also, my other factor is your line of business, where your datacenter is and annual budget towards technology update/refresh.

  20. Re:Beh by Rob+Riggs · · Score: 2

    I don't mind virtualized 17th century Dutch paintings, but my 10" tablet screen doesn't do justice to The Night Watch.

    --
    the growth in cynicism and rebellion has not been without cause
  21. Delivery truck by DogDude · · Score: 2

    I wouldn't virtualize our delivery truck. That's be bad.

    Oh, and our stores' inventory. That'd be bad virtualized, too.

    --
    I don't respond to AC's.
  22. Comment removed by account_deleted · · Score: 2

    Comment removed based on user account deletion

  23. Slashdot Market Research by __aawavt7683 · · Score: 2

    The whole article is worded as though written by an advertiser. This is nothing but Slashdot Market Research. Either it will be a hit business article, "What Not to Try and Virtualize, Straight from the Engineers" or research into how segments of the industry can convince you to virtualize that anyway.

    Must be nice, buy one website and you end up with a corralled group of wise and experienced IT gurus. Then slaughter them like sheep. This post was nothing but Market Research. Move along.