Month: June 2009

DotNetNuke Site Redirects To Localhost

We’re changing the IP address range on the firewalls so we’re adding in the new NAT rules in addition to the old ones for a smooth transition. 

We started with a web server.  The site uses DotNetNuke.  We tested the new IP and the server wouldn’t load the page on clients.  Luckily we’d kept the old IP and could confirm the site was OK on that.  I ran Network Monitor 3.3 on the server (NetMon part of my standard server installation package) and on my client to check things out.  Our network engineer started looking at router and firewall traces.  I could see traffic coming into TCP 80 but the conversation was short.  On the client end I could see the same.  I compared with a working conversation on the old IP address and saw that there was a different HTTP status code at the start.  The failing server was giving me a 302.  In fact, my client was loading localhost instead of the site on the new IP address; that was the 302 code redirect.

I swapped in a default IIS7 site and tested.  It worked perfectly.  The site bindings were the default norms on the hosted site so it wasn’t that.

I decided to google (I cannot bring my self to say I binged or bonged something, Microsoft) for DotNetNuke redirecting to localhost.  Badda-bing!  It appears DotNetNuke has it’s own site binding configuration in a SQL table called PortAlias.  I added in a row and added in the new IP address to test.  That worked perfectly.

I now need to have a long shower after doing developer work 😉

AppLocker Technical Documentation

AppLocker is a feature available to administrators of Windows 7 Ultimate and Enterprise (Software Assurance) editions only.  It allows administrators to use group policy to define what applications can be run on Ultimate and Enterprise computers.  Obviously these policies won’t work on Vista or the other editions of Windows 7, e.g. Business.

Microsoft has released some technical documentation on the feature:

“The AppLocker Technical Documentation for Windows 7 and Windows Server 2008 R2 provides technical guidance about understanding how AppLocker works and how to effectively plan and deploy AppLocker policies.

AppLocker in Microsoft Windows Server 2008 R2, Windows 7 Ultimate, and Windows 7 Enterprise helps administrators control which applications are allowed to run in their organizations. These documents provide technical guidance about understanding how AppLocker works and how to effectively plan and deploy AppLocker policies”.

Microsoft Ireland To Open The New Data Centre

MS Ireland is opening the new data centre in Dublin tomorrow (July 1st 2009).  It’s down the Nangor Road, near the Air Corps base, and across from the Grange Castle golf course.  Why there?  That’s the most connected road in Ireland, thanks mainly to the presence of DataElectronics (DEG).  DEG is an Irish colo hosting facility and just so happens to be the one we use at work.

This data centre will host MS internal service but also the hosted services.  Being American, it’s subject to the Patriot Act so companies worried about the European/Irish data protection directive might not be able to consider those services.  Otherwise, there’s some seriously cool offerings for small, medium and large businesses.

Grangecastle is “is the first “mega-data center” Microsoft has built outside the U.S. The 303,000 square foot first phase of the building will be supported by 5.4 megawatts of electricity and have a Power Usage Effectiveness (PUE) rating of 1.25, the company said. The $500 million project will eventually include about 550,000 square feet of space”.  This data centre will run “hot”, i.e. not at the usual 19C or 21C but at 30C.  This saves a fortune on air conditioning power consumption and is fully supported by HP, MS’s (and mine) preferred supplier of servers and storage.

A Chicago data centre will also be opening.  This is the first of MS’s next generation data centres based on a fault tolerant, scalable, economic and power efficient container model.  Each module is a pre-build container that is dropped into place and connected to a permanent corridor.

EDIT#1:

PS Microsoft, I’ll be just around the corner if you feel like giving me a tour tomorrow 😉

VMM 2008 Pre-P2V System Scan Fails Because of TCP 443

I’ve just been doing some P2V work when I encountered the below warning for the first time.  I had just run a system scan:

“There is already an SSL certificate associated with port 443 on machine MachineToP2v.yourdomain.com.

Ensure that no application on machine MachineToP2v.yourdomain.com listens for HTTP traffic on TCP port 443 during the conversion. Alternatively use registry key HKLMSoftwareMicrosoftMicrosoft System Center Virtual Machine Manager ServerSettingsP2VBITSTcpPort on the VMM server to change the P2V transfer port number and add the necessary firewall rule for TCP port 443 on machine MachineToP2v.yourdomain.com.

ID: 13252”

The physical server I am going to convert to virtual (P2V) is running an IIS site on TCP 443 or SSL.  This would interfere with the P2V conversion because it runs on 443 by default.

The solution was simple:

  • Identify an alternative port that you figure is free on your entire network, e.g. I picked 30666.
  • Ensure that there are no communication problems between the physical machine and the VMM 2008 server on your alternative port.  Check physical and Windows firewalls.
  • Add a REG_DWORD called “P2VBITSTcpPort” to “HKLMSoftwareMicrosoftMicrosoft System Center Virtual Machine Manager ServerSettings”.  Set the decimal value to your alternative port number.
  • Restart the Virtual Machine Manager Service on the VMM 2008 server.
  • Start the P2V all over.

That worked fine for me.

RDS Virtualized On Hyper-V 2008 R2 With SLAT

Clive Watson posted on his blog about the performance increase SLAT can give to Remote Desktop Services (the renamed and expanded Terminal Services) on Hyper-V running on Windows Server 2008 R2.

SLAT (Second-Level Address Translation) is available on the newest processors from Intel (EPT feature) and AMD (RVI feature) offer this functionality, e.g. Nehalem.  It optimises memory management on Hyper-V, i.e. it offloads the mapping of physical to virtual memory to the CPU so that the parent partition is not involved.  That reduces RAM overhead on heavily loaded hosts.

According to a quote that Clive posted for RDS virtual machines running on Hyper-V 2008 R2: “SLAT enabled processors increased the number of sessions by a factor of 1.6x to 2.5x compared to non-SLAT processors”.  That’s a significant workload improvement.

I’ve been looking at pricing for new HP servers and components.  At least when it comes to shelf prices the G6 chassis is more expensive but their processors are much cheaper than G5 ones.

MDT 2010 Beta 2 Available On Connect

Johan Arwidmark, another Minasi forum poster, has posted about the latest beta (2) build of the MDT 2010 (Microsoft Deployment Toolkit).  It is available now to download on Connect.  MDT is the free toolkit from MS that you can use to optimise your Windows 7 and Windows Server 2008 R2 deployments.  Johan, a deployment MVP, is one of the gurus on this stuff and a regular source of answers on the trickier side of deployment; I think he has some training media coming out soon so watch out for that.

Microsoft Fixes SPLA DataCenter Hyper-V Licensing

There’s a new SKU in the July price list for SPLA (Service Providers Leasing Agreement – AKA hosting licensing) called DataCenter Per Processor Outsourcer.

One of the perks for retail/volume licensing (non-hosted) was that you could by DataCenter edition for each of your hosts physical processors.  That gives you unlimited free Windows Server licensing for VM’s running on that host.  That’s a major money saver on hosts with lots of VM’s.

In SPLA up to now, we only had a SKU for anonymous DataCenter.  This only allows anonymous free licensing for VM’s.  Anonymous means that Windows can play no role in authenticating the users, e.g. SharePoint, Exchange, Active Directory, etc.  You cannot run authenticated (those where Windows plays a role in user authentication) licenses on VM’s on this host, even if you pay for them!  This meant that you either:

  • Ran 2 Hyper-V clusters: 1 using Enterprise for authenticated and one running DataCenter for anonymous in larger installations.  This doubled your hardware costs.
  • Or just run 1 Hyper-V cluster: running Enterprise where you didn’t get the benefits for anonymous licensing.  This put smaller companies at a pricing disadvantage to larger companies.  It was also pretty expensive compared to the new model.

The new Outsourcer SKU’s replace the authenticated licensing model.  It also adds DataCenter to the list, fixing a major flaw with SPLA licensing for hosting companies using Hyper-V for virtualisation.  There is also a new 3 year license which saves a bit of money over the per month model.

EDIT #1:

Our SPLA LAR called me up to ask a technical question.  Then he warned me not to go making plans on the Outsourcer SKU.  He’s seen an issue in the text that MS needs to rectify immediately before the July price list takes effect.  Hopefully it will be sorted out soon.

Free Hyper-V Training

Virtual Boy posted about some free training that’s going for Hyper-V:

“Microsoft is offering some free Hyper-V training. You will need to enter a specific access code 9350-Y2W6-3676 and sign in with your Live ID.  The course “Collection 6319 – Configuring Hyper-V in Windows Server 2008” includes the following modules:

  1. An overview of the Hyper-V technology
  2. Creating a virtual environment
  3. Deploying systems in a virtual environment
  4. Configuring high availability in a virtual environment
  5. Administering a virtual environment with SCVMM”

You can sign up here.

USA Pricing For Windows 7 Announced

MS announced the Windows 7 pricing for the USA market:

  Home Premium Professional Ultimate
Full $199.99 $300 $320
Upgrade $119.99 $200 $220

 

Remember that European customers will get a version of Windows 7 with no IE in it?  That means we can’t do an upgrade so there won’t be an upgrade edition.  MS are promising us Full installation media at upgrade prices.  I’ve got to think they will check for a pre-existing license some how.

European prices?  I’ve no idea.  I guess the price will be similar to above but will swap the $ for a €.  That’s what they did with Vista with the reason being “exchange rates”.  It made no sense to us because the price was way higher for us, e.g. back then €1 = $1.25.  Now it’s bouncing around €1=$1.35.  Hopefully they won’t make that mistake again.  I’ve read the prices are around 10% less than the original Vista pricing.  That’s good.

PC’s bought from June 26th get a free upgrade.  There’s also an early adopter price for upgrades.  That looks to be around half price and start on June 15th.

VMM 2008 R2 Quick Storage Migration

One of the nice new additions in VMM 2008 R2 is Quick Storage Migration or QSM.  This allows you to migrate a VM from one storage device to another, e.g. from one SAN to another, one LUN to another or from a per LUN installation to a CSV (Cluster Shared Volume).

Edwin Yuen (senior dude at Microsoft on virtualisation), talks about the mechanics of QSM in an excellent blog post.  The short story is:

  • A Hyper-V snapshot is taken by VMM 2008 R2 of the VM.
  • This means our VM is running from AVHD’s, a form of differencing disk.  All writes now happen to the AVHD’s.
  • VMM 2008 R2 is free to copy the original VHD(s) to the new destination.
  • The VM is put into a saved state and the AVHD’s are merged into the VHD’s at the destination.  This takes probably around a minute, depending on how long the VHD copy took and how much data was written to the AVHD’s.
  • The VM starts up on the destination, running only from the VHD’s.

There’s something to watch out for here in moving from “1 VM/1 LUN” installations.

Imagine you have a VM with 100GB of disk and 2GB RAM.  How big do you think the LUN will be for that on a Hyper 2008 cluster?  Probably only around 113GB ( (VHD+RAM)*1.1 = (100+2)*1.1 = 113 ).  That’s because you can’t waste disk.  You’ve just enough space for your VHD’s, the config files and a save state for the RAM.  If you snapshot that VM it will (by default) create a snapshot in the same location.  That AVHD will start out small but will grow.  If the file VHD copy takes a while and there’s lots of write activity to the AVHD then there will be an issue.  Your LUN will fill and your VM will pause during quick storage migration (QSM).

I don’t have the gear to test VMM 2008 R2 so I’m going to ask about this.  VMM 2008 doesn’t have a field to specify an alternate LUN for snapshots but the Hyper-V console does.  Maybe you could use that to relocate the snapshot AVHD’s in advance of a QSM from a per-LUN installation to a CSV?  I suspect this should work … you can change that Hyper-V setting while a VM is running.  It’s times like this I wish I had €20-€30K of gear to test with!!!!

EDIT #1:

I contacted Ben Armstrong (Virtual PC Guy) via the MVP newsgroups and he got onto the VMM team.  The answer is "yes" to the problem and solution.