Create a service mesh for VMware HCX

  • 5 minutes

After the site pairing, networking profiles, and compute profile configurations finish, the next step involves setting up a service mesh for VMware HCX Manager. The service mesh also allows VMware HCX Manager to migrate virtual machines (VMs) from a VMware HCX-enabled source site (on-premises) into a VMware HCX-enabled destination site (Azure VMware Solution).

What is a service mesh?

A service mesh provides a dedicated infrastructure abstraction layer that helps ease network transport between a source and destination site. The service mesh allows workloads and application services to decouple the networking components required for communication between sites. The service mesh enables a secure and optimized networking transport fabric between any two sites managed by VMware HCX Manager. After you enable the service mesh, you can migrate VMware vSphere VMs to Azure VMware Solution.

Create a service mesh

To successfully establish a service mesh with Azure VMware Solution, you must meet the following networking requirements:

Requirement Reason
UDP ports 500/4500 These ports need to be open between the VMware HCX Connector uplink and the Azure VMware Solution HCX Cloud uplink network profile addresses.
VMware HCX Manager required ports See the VMware HCX URL at the end of this module. The URL provides a comprehensive list of required open ports between source and destination sites.

After you confirm the networking ports and test them as open, take the following steps to enable a service mesh:

  1. From within the VMware HCX Connector dashboard on-premises, under Infrastructure, select Interconnect > Service Mesh > Create Service Mesh.

    Screenshot of options to select when you're creating a service mesh between the on-premises HCX Connector and Azure VMware Solution.

  2. Review the pre-populated sites created during site pairing, then select Continue. If this site is the first service mesh configuration, the first screen doesn't need modification.

  3. Select both the source and remote compute profiles from the dropdown lists, then select Continue. These selections define where VMs can use VMware HCX services for migration.

    Screenshot that shows selecting the source compute profile in the on-premises HCX Connector.

    Screenshot that shows selecting the remote compute profile in Azure VMware Solution.

  4. Review the services that will be enabled during the service mesh configuration, then select Continue.

    Screenshot of where to review the services enabled for Azure VMware Solution.

  5. In Advanced Configuration - Override Uplink Network profiles, select Continue. This is an optional configuration.

    Screenshot of the optional advanced configuration to override uplink network profiles.

  6. In Advanced Configuration - Network Extension Appliance Scale Out, locate the checkbox next to the distributed switch configuration that you configured for the vMotion network profile. You should see that this checkbox is already selected. Simply leave the checkbox selected and select Continue.

  7. When you reach Advanced Configuration - Traffic Engineering, select Continue.

    Screenshot displaying that application resiliency can't be selected because there isn't an HCX Enterprise license key.

  8. Review the topology preview, then select Continue.

    Screenshot of the review topology preview pane during creation of the service mesh.

  9. Enter a user-friendly name for this service mesh, then select Finish to complete the configuration.

    Screenshot of the final configuration pane before creating the service mesh for VM migration.

  10. Select View Tasks to monitor the service mesh deployment.

    Screenshot of the button for viewing service mesh configuration tasks in the on-premises HCX Connector.

  11. When the service mesh deployment finishes successfully, all services will show as green.

    Screenshot of a finished deployment, where the service mesh displays all services as green in the on-premises HCX Connector.

  12. Verify the health of the on-premises service mesh, by selecting Interconnect > Appliances. The tunnels should be green and indicate Up.

    Screenshot of checking the health status of the on-premises HCX appliances.

  13. Next, verify the health of the service mesh in Azure VMware Solution. To do this, in the same Appliances pane, examine the appliances deployed underneath the on-premises appliances.

    Screenshot of interconnect appliances that were deployed to Azure VMware Solution by enabling the service mesh.

In the next unit, we'll cover how to migrate VMs from on-premises vSphere to Azure VMware Solution by using VMware HCX.