VMware Cloud Community
jmapt
Contributor
Contributor
‎02-24-2014 10:56 AM

vSwitch between two hosts -- best approach?

Hello:

Looking for some input on a best approach for a two-host setup.  I have two Cisco ASA 5505's in an active/passive failover and am looking to add some redundancy to my VMware setup.  As such I have purchased two hosts that are for all intensive purposes, identical in terms of specs and local storage.  Both hosts have 8 available gigabit network interfaces.

I am wondering if it makes sense to add a physical switch layer between the hosts and the ASA's or if I could get away with not having the physical switch layer.  What I envision is something like:
Host A is directly connected to Host B on 4 interfaces.

Host A connects twice to ASA A, and twice to ASA B.  Uses 4 interfaces.  Same for Host B.

ASA A and ASA B are connected to each other via two cables setup as trunk ports (since their interfaces are basically switch interfaces).

All ASA interfaces are 100Mbps only not 1000Mbps.

Given that, and using standard vSwitches, would this be plausible?  The issue I foresee is that the VMs in specific VLANs in order to route would have to travel to the ASA, which would mean they would only use 100Mbps links.

But if say VLAN 4 had a VM on one host and a VM on the other host, would those traverse using the direct links between hosts?

What would be a good way of approaching or tackling such a setup?  Looking to achieve some redundancy and was planning on using vSphere replication to replicate hosts from one host to the "backup" host for that vm.  That way either host could fail and the replica would in theory be bootable.  Not true HA, but pretty close.

Thanks in advance!

2 Replies
weinstein5
Immortal
Immortal
‎02-24-2014 12:49 PM

It is possible to direct connect the hosts but I would not recommend it because then the configuration of your VMs becomes tricky - I would connect the physical NICs to your ASA directly - you will be able to route traffic between the VMs and to the internet and I think you will find that 100 MB is going to be sufficient -

If you find this or any other answer useful please consider awarding points by marking the answer correct or helpful
jmapt
Contributor
Contributor
‎02-24-2014 12:57 PM

Thanks!

I am actually really thinking the gigabit will make a difference for inter-vm communication and for things like vMotion/replication.  But in those cases, I can actually just use those direct links for that intercommunication and for backups I could always attach a second NIC to a vm and use that for the backup/replication traffic as that NIC would only go to the hostonly vSwitch.  Then the main data/internet traffic routes off the main vSwitch regardless of host.

That way I make use of my available links but also don't purely limit myself to 100Mbps.

If anyone else has any input or ideas, I appreciate it!

0 Kudos