Browsing Posts in vDesign

Runecast is a powerful tool to monitoring and check a vSphere environment and recently also for a VSAN environment. But it’s not over, actually there is a beta for the new version (Runecast version: 1.7.6 probably) that can analyze also NSX-V environments and this could be quite cool, considering the potentially complexity of a NSX infrastructure. I’ve tested the beta on a small lab, just to see how does it work.

During the last ZertoCON 2018, Zerto has announcement its IT Resilience Platform™ to converge backup, disaster recovery and cloud mobility converged in a single, simple, resilient, scalable platform. The core is the new version Zerto 7 will add new capabilities to its IT Resilience Platform to change the way that backup is done.

NAKIVO Backup & Replication v7.3 has been introduced in Nov 2017 with some minor new features. But now NAKIVO has just released the release of NAKIVO Backup & Replication: the new version 7.4 for VMware, Hyper-V, and AWS seems to be a big milestone if we count the improvements and features:

Unitrends has announced the release of a new backup solution, targeted for VMware environments, called VM Backup Essentials (vBE) and designed (and priced) for SMB use cases. The vBE product converges enterprise-grade virtual backup software, ransomware detection, and fully integrated cloud storage options (with WAN acceleration) into a powerful, easy-to-use product that is aggressively priced at $105 per socket per year, with a subscription model, but with a version full options.

Veeam has started an interesting collaboration with Pure Storage some years ago, but probably the most notable collaboration was during the last Pure Storage Accelerate at San Francisco where both the companies have provided a compelling solution for businesses that are undergoing a digital transformation. The main intent was to provide a storage integration between Veeam Backup & Replication and Pure Storage. This integration was planned to be available early 2018 to provide businesses with the ability to leverage storage snapshots for significantly improved RPO and reduced infrastructure impact.

Storage management is something unique and quite depending by the storage vendor. Solutions like VMware Virtual Volumes can simplify it by providing a common interface, but it’s more on the usage and consuming part, rather than the storage management part. The SNIA (Storage Network Industry Association) Swordfish specification is a standard that helps to provide a unified approach for the management of storage and servers in hyperscale and cloud infrastructure environments, making it easier for IT administrators to integrate scalable solutions into their data centers.

Datrium announced the shipment of DVX 4.0 Software, the third major software release in less than a year. Datrium DVX converges Tier 1 hyperconverged infrastructure (HCI) with scale-out backup and cloud disaster recovery (DR) and Cloud-Native Data Services. Datium promises that DVX enables up to 10 times more VMs to run at lower latency than HCI, enables 10 times faster VM restores than scale-out backup products, and with Cloud DVX, offers backup to cloud with up to 10 times lower AWS fees than many cloud backup providers, all in the same simple converged system.

Now that Meltdown and Spectre vulnerabilities are almost fixed, there is a new critical vulnerability for several Intel CPU called BranchScope, discovered by some researchers from four universities. It’s again a speculative execution issue, in the method a processor uses to predict where its current computational task. By exploiting this flaw, attackers with local access could pull data stored from memory that’s otherwise inaccessible to all applications and users.

NAKIVO Backup & Replication v7.3 has been introduced in Nov 2017 with some minor new features. But now we are quite close to a new release with a lot of new features. The v7.4 Beta for VMware, Hyper-V, and AWS seems to be a big milestone if we count the improvements and features:

Altaro is a fast-growing software company with easy to use and affordable (also for the price) backup solutions for small- to medium-sized businesses, specializing in backup for virtualized environments. After a beta period, with several different build, they have now officially released the new version 7.6.4.

VMware has released (on Feb, 15th) a new vCSA version: vCenter Server 6.5 U1f, with build number 7801515. This release patches the vCSA operating system (Photon OS) mainly against two vulnerabilities: bounds-check bypass (Spectre-1, CVE-2017-5753) and rogue data cache load issues (Meltdown, CVE-2017-5754). As of now, there is still no patch for branch target injection vulnerability (Spectre-2, CVE-2017-5715). VMware has also updated the security advisory dealing with all of its virtual appliances updates for Spectre and Meltdown vulnerabilities, VMSA-2018-0007. But note that VMSA-2018-0004.2 has not been updated yet, and it still report that the suggested version for […]

We are still far from a solution for the Meltdown and Spectre, considering the delay of the microcode releases and the complexity of the possible Spectre fixes… And now, some security researchers from NVIDIA and Princeton have discovered new variants of the Meltdown and Spectre flaws that may be more difficult to be fixed (but also to be exploited) than the originals.

The mitigations for Meltdown and Spectre issues have involved a combination of different type of fixes: some software based, such as Microsoft and Linux versions of the “kernel page table isolation” protection, but also fome hardware based, like the Intel’s microcode updates (part that is still missing in most cases). Both type of patches can cause performance overheads and have some kind of impact on your environment. But how can you estimate it (before apply the patches) and how can you measure it (when the patches have been applied)?

In June 2017, a team constituted of independent researchers, university research labs, and some of Google’s Project Zero members and cyberus technology discovered two security vulnerabilities enabled by the widespread use of speculative execution in most of the CPU. The problem was also independently discovered by other researchers, at about the same time. These vulnerabilities, called Meltdown and Spectre, were made public in January 2018. Meltdown and Spectre are critical vulnerabilities existing in several modern CPU: these hardware bugs allow programs to steal data which is currently processed on the computer. Meltdown and Spectre can affect personal […]

© 2018-2011 vInfrastructure Blog | Hosted by Assyrus