Organizations, vDCs, pools, regions
I cannot access vCloud Director though there are funds on my account
Probably, you are trying to access the Moscow vCloud Director account through the web panel of the Saint Petersburg vCloud Director (or vice versa). If so, please check the web panel address:
vCloud Director account will be blocked for 10 minutes after 5 failed password entry attempts. You can change the password in the Users tab of the Selectel control panel.
I cannot see my vDCs in the vCloud Director panel. What could I do?
Our infrastructure has 2 vCloud Director panels — for Moscow (https://vcd-msk.selectel.ru) and Saint Petersburg (https://vcd.selectel.ru) resources Each vCloud Director only has data regarding the vDC of its region. Therefore, Moscow resources are managed through the Moscow vCloud Director and Saint Petersburg resources through the Saint Petersburg vCloud Director.
To open the vCloud Director of the corresponding region, click the title to the vDC card in the control panel.
With Multisite, you can put two regions in the single panel. Read more in the documentation.
How to move the VM from one pool to another?
You only can change the VM pool for the entire vApp:
Move the VM to another vApp.
Disable this vApp in vCloud Director and then select Move to in the context menu.
In Virtual Data Center, select the data center with another pool type.
For the Windows-operated VM, submit a request through the ticket system.
For the VM with up to 40 GB of the disk volume, migration will take no longer than 10 minutes.
I need to move the vDC to another account. Is it possible?
Yes, it is. It is possible but there are some restrictions and limitations:
the new account must have no vDCs,
you can only move all vDCs from the old account to the new,
the migration is Organization-level—i.e. the entire Organization and all vDCs are moved,
no VM idle time,
all the Organization users are saved and also moved.
To order migration, submit a request through the ticket system.
What are the limits on vDC resources and quantity?
Standard vDC resources limits:
vDCs per account: 5.
At the client's request, we can lift the limits on vDC resources and quantity.
How to remove the vDC?
You can only remove empty vDCs. Beforehand, remove all vApps, VMs, vApp templates, and catalogs through vCloud Director.
In the Selectel control panel, go to VMware-Based Cloud. Expand the menu (⋮) in the vDC card and click Remove Data Centers.
How many networks can I create within one vDC?
One vDC can comprise up to 50 networks. At the client's request, we can raise the limit.
What about the local network to other services?
vDC networks can be connected into the local network of dedicated servers, colocated servers, stands, and leased network equipment.
You can use any addressing within the local network.
QnQ is not supported. If you use QnQ in the physical local network, you will have to create the new VLAN and connect it to VMware. Submit a request through the ticket system. In the request, specify the vDC that will contain the network, addressing in the physical network, and the desired addressing in the VMware network.
What is Edge Gateway (EG)?
EG is the software-based router through which the VM accesses the network.
EG is the technical implementation of the NSX functionality. This drives such mechanisms as DHCP, firewall, VPN, NAT, balancing, and routing. By switching the EG to Advanced mode, you will access the NSX extended settings. Read the detailed instructions in the official VMware documentation.
When creating the vDC, the Compact-size EG is created automatically (Compact is the mode of the lowest performance and price). You can manage the created EG and adjust its size.
EG prices can be found on the service page.
Is any redundancy provided for Edge Gateway? If yes, how does it work?
Yes, Edge Gateway has the option called High Availability (HA). This option is connected upon the request, through the ticket system.
The price is calculated as follows: no-HA EG x 2.
When the user enables EG HA (do not confuse it with vSphere HA — those are different mechanisms), another VM with the same EG is launched. The primary VM goes in the primary mode, the secondary will be standby. Also, the machines will exchange heartbeat messages. If the primary VM does not respond to the heartbeat, the standby VM becomes the primary. Practically, such a configuration ensures fail-free EG operation in case of the virtualization host outage—by means of the quick (up to 15 seconds) switch to the standby EG that had another virtualization host.
High Availability essence and instructions for use are comprehensively given in the VMware documentation.
Is any network equipment redundancy provided?
Yes. All the network equipment — from switches to routers — is completely redundant. The VM will remain available from public and local networks even if any of the network devices fail.
How do I add public IPs?
You can add IPs to existing Edge routers. To do so, submit a request through the ticket system. The price per address is given on the service page.
Can I assign a public IP directly to the VW, without NAT?
Yes, you can. We will provide the /29 or /28 Direct Connected subset. If needed, you can order the subnet of up to /24 through the ticket system. You can use any available address within the provided dedicated subnet. The price per address block is given on the service page.
The address is assigned automatically when the machine is deployed, provided that the following conditions are met:
the VM has vmware-tools (Windows)/open-vm-tools (*nix) installed,
the machine network interface is connected to the relevant network.
VM cannot access its external IP via NAT. What could I do?
Enable NAT reflection (aka NAT hairpinning, NAT loopback). Example:
Act Interface Source Port Destination Port Proto
DNAT WAN 22.214.171.124 80 10.60.0.6 80 TCP
DNAT LAN 126.96.36.199 80 10.60.0.6 80 TCP
SNAT LAN 10.60.0.6 any 188.8.131.52 any any
NAT/Firewall is unavailable. What is wrong?
If the firewall is disabled, NAT rules will not function.
Make sure the firewall is enabled and it has the rules set to allow the relevant traffic. Otherwise, enable the firewall and manually add the relevant rules.
What firewall is used?
We suggest using the NSX-integrated firewall.
Virtual disk speed
The table below presents the overall performance of disks for all operations (read & write), by 32-kB block:
Can I connect virtual disks from different pools to the same VM?
No, you cannot. When creating the virtual machine, you can use different disk types — but only within the pool in which the VM was created. For instance, you can use vSSD and Fast vSSD, or vHDD and Fast vHDD. You can create VMs in different pools and see them in your organization in vCloud Director and integrate them into the single network.
How to use and control VM Snapshots?
You can create, delete, and restore snapshots in vCloud Director.
One VM, one snapshot. When creating a VM snapshot, snapshots are created for all disks connected to the VM. There are no limitations on disk snapshots.
You cannot create a disk from a snapshot. You can restore the VM version created in the snapshot. Documentation.
Do not keep the snapshot longer than 72 hours. If you do so, it may lead to deterioration of the VM disks performance. For long-term backup, use the backup service.
In which formats can templates be imported?
vCloud Director supports the following template formats: ova and ovf. An ovf template has to be imported with the accompanying files, namely: vmx, mf, vmdk.
I cannot select the storage policy when creating a VM from the template in the html5 console.
When you create a VM, the last column of the Templates table only shows the template storage.
You can adjust the storage policy after creating the VM:
Click Details in the created VM's card.
In Storage Policy, select the most preferable and click Save.
Note: you can select the storage policy relevant to the vDC pool (vHDD and Fast vHDD for Silver, vSSD and Fast vSSD for Gold).
How is backup organized?
Backup is based on Veeam Backup and Replication (VBR). To control the backups, Veeam Enterprise Manager is used.
Read more about backup in the documentation.
How do I manage the backup?
Veeam Backup and Replication (VBR) is connected individually for enterprises based in Moscow and Saint Petersburg.
To access Veeam Enterprise Manager, use this link
https://vbr.selectel.ru/vCloud/<org-name>/ for Saint Petersburg,
https://vbr-msk.selectel.ru/vCloud/<org-name>/ for Moscow,
where <org-name> is the enterprise name.
To log in, enter the credentials of the appropriate-region account.
How do I monitor the VM load?
Go to vCloud Director. In the VM card, click Details. Find the last tab, Monitoring Charts. There you will see VM load charts — overall for all the VM disks.
Metrics are captured by means of the hypervisor, so you do not need to install any other software to your VM.
vCloud Director UI has disk.read.average and disk.write.average metrics. Those are used for classic data storage systems. For disks of VMs located in vSAN, virtualDisk.read.average and virtualDisk.write.average are used.
Does VMware support nested virtualization?
Yes, but we cannot guarantee adequate operating performance. Read more in the VMware documentation.
Max VM CPU, RAM, disk volume
For the performance-guaranteed VM, max properties are as follows:
vCPU ― 32,
vRAM ― 256 GB,
virtual disk ― 10 TB.
Is Microsoft software supported by the VMware cloud?
Yes, it is. You can create a VM from the standard templates of Windows Server editions:
Windows Server 2019 Standard,
Windows Server 2016 Standard,
Windows Server 2012R2 Standard.
You can use the server version with the pre-installed Desktop Experience package.
License price per core: ~RUB 277/month or 38 kopecks per hour.
Hourly rate only applies to active Windows-based VMs.
If the VM was activated for 10 minutes within an hour, the license will be billed for the full hour.
The VM license cannot be revoked—you only can delete the VM itself.
If you moved the VM or created one with the Windows Server from your image, please let us know. We will enable the license for such a VM manually.
Can Selectel engineers access the customer vDC or data?
Only few Selectel specialists can access the client's infrastructure and data. We need this access to fulfill our obligations regarding supporting the performance of the infrastructure we provide to the customer.
However, this access is strictly regulated and controlled by Selectel security service. As per the regulation, customer data cannot be copied, nor modified, nor removed without the customer's explicit permission.
How are customer clouds isolated from each other? If a customer loads the host, will it affect their digital neighbors?
Such a situation is technically impossible. In vSphere, there is a tool called DRS (Distributed Resource Scheduler). This tool automatically and stealthily moves neighbors to less loaded hosts.
How could I move my VMs to the Selectel infrastructure?
You can use vCloud Director® Extender to move your virtual machines. Read more about configuring the client in Setting Up the VMware vCloud Director® Extender Client.
Alternatively, you can export/import your VMs through the OVA template:
To export the machines, move them to the individual vApp. Expand the menu in the vApp card and click Download. You will download the OVA template.
Then import this template to vCloud Director (Selectel infrastructure-based instrument). Use the guide Virtual Machine Import.
Is Terraform support available?
Yes, you may want to find more about it here: https://www.terraform.io/docs/providers/vcd/index.html
What APIs are available?
We recommend our customers to use vCloud Director API to control VMs, networks, disks, and other facilities. Go to VMware website to look through the documentation:
We use vCloud Director 9.5, API 31.0. The service supports API versions from 20.0 to 31.0 (this is the latest version that supports versions from 20.0 to 26.0).
We will provide the individual Selectel API for organizing the virtual data centers. Currently, this API and related documentation are being developed.