In a nutshell, vRealize Network Insight delivers intelligent operations for software-defined networking and security. It helps customers build an optimised, highly-available, and secure network infrastructure across multi-cloud environments. It accelerates micro-segmentation planning and deployment, enables visibility across virtual and physical networks, and provides operational views to manage and scale the VMware NSX deployments.
There are two main flavours of vRNI, an on-premises installation or VMware’s SaaS offering, Network Insight Cloud. The latter comes with all the benefits of a cloud-based solution (namely managed updates, integration with the suite of VMware Cloud products, etc.); however, there is no difference in functionally between the two vRNI options.
This article focuses on the on-premises flavour and, specifically, version 5.3.0 (released 2020-07-14).
Firstly, you’ll need to download the OVA files required to get this solution up and running. Visit your My VMware account and download both the Platform and Proxy (Collector) OVA files as shown in the below screenshot.
First of all, we’ll need to deploy the Platform appliance. This is the brains of the operation, and where all that nice data you collect will be stored. The Platform appliance also provides the analytics, user interface and data management for Network Insight.
The other component is the Proxy VM (aka – Collector appliance) which is used to connect to the various data sources supported by Network Insight – vCenter Server, NSX, as well as physical network devices.
The hardware requirements of various ‘brick’ sizes for a single platform and a single Proxy/Collector appliance are as follows:
|Brick Size||Cores required for 2.1 GHz CPU||Cores required for 2.3 GHz CPU||Cores required for 2.6 GHz CPU||RAM||Disk|
|Medium||10||9||8||32 GB||1 TB|
|Large||15||14||12||48 GB||1 TB|
|Extra Large||20||18||16||64 GB||2 TB|
Note, the reservation for the CPU speed and RAM for each node must be 100% of the value specified above.
Platform Appliance Deployment
1. From vSphere, deploy a new OVF Template and browse to the Platform OVA file you downloaded earlier, and work through the usual deployment requirements (assign the VM to a suitable VM Folder, select an appropriate compute resource, accept EULA, select desired deployment configuration, select storage and network, etc.)
2. Once the appliance has successfully deployed, power-on, and open a console window. When prompted, log in using the default Network Insight credentials – Username: consoleuser, Password: console.
3. When prompted, create passwords for the support and consoleuser users.
4. Enter the appliance’s IP address, subnet mask, default gateway, DNS, and domain accordingly.
5. Enter your NTP server information.
6. If appropriate, enter your web-proxy details.
7. NTP will now sync and, once complete, will finalise the last of the configuration steps.
8. Once the appliance reports successful configuration, open a web browser and browse to the appropriate FQDN/IP address of the appliance. When prompted, provide the license key and click Activate.
9. You will now be presented with a Collecter VM Shared Secret. This will be required when deploying the Collecter (Proxy) appliance in the next set of steps. Keep this screen running while we look at deploying the Collecter appliance.
The deployment of the Platform VM is complete.
Collector (Proxy) Deployment
10. From vSphere, deploy a new OVF Template and browse to the Proxy OVA file you downloaded earlier, and work through the usual deployment requirements. IMPORTANT – When prompted to enter a shared secret, copy the Shared Secret from Step 9 above and paste into the Shared Secret for Proxy field. Once complete, click Next.
11. Once the Proxy/Collector appliance has successfully deployed, power-on, and open a console window. When prompted, log in using the displayed credentials, and run through the same configuration as the Platform appliance.
12. Once complete, the Proxy appliance will begin processing the Shared Secret provided earlier. Grab a coffee and monitor both consoles until the Platform appliance detects the Proxy/Collector.
…Back to the Platform Appliance User Interface
13. As the Proxy/Collector appliance is now visible, click Finish.
14. Finally, login utilising the admin@local credentials defined during deployment.
This concludes the deployment of VMware vRealize Network Insight Platform and Proxy/Collector appliances.
In this article, we performed a simple deployment of the on-premises vRNI Platform and Proxy/Collector appliances.
In Part 2 we will add our vCenter Server(s) and NSX-T Managers as data sources before, in Part 3, configuring identity and access management via LDAP to enable users to login with domain credentials.
In Part 4 we will begin discovering our applications and, Part 5, we begin analysis the collected traffic flows.