some of you maybe encountered following issue during the deployment of the Azure Stack RTM PoC.
Lets look on the field configuration:
- One server HP DL360 G8
- NIC Type 1GBE Intel i360 (HP OEM Label)
- Two Public IPv4 Adresses published directly to the host and host configured as exposed host in the border gateway firewalls
- No Firewall Rules for that host on the gateways
- Switchports for that host configured as Trunk/Uplink ports with VLAN tagging enabled
- We use Azure AD for Authentication
In my case, the important point is the port trunk and the VLAN tagging.
Normally VLAN tagging is no issue because the deployment toolkit should set the tag automatically during deployment for all VMs required and the host system.
In my case and during many test and validation deployments, that didn’t happen. After I start the deployment, a new virtual switch will be deployed and a virtual NIC named “deployment” will be configured for the host. Afterwards the deployment starts. Around 3 hours later, the deployment stops in step 60.120.121 and could not connect to the identity provider.
Whats the reason for the failure?
First you should know, that the Azure Stack Deployment switches between host and BGPNAT VM for internet communication. Mostly all traffic runs through the NAT VM but in that case, the host communicates directly with the internet.
So what happend? After creating the “deployment” NIC for the host, the deployment tool didn’t set the VLAN Tag on that virtual NIC. That breaks the network communication for the host, for the VMs there isn’t any issue because the VLAN is set for the NAT VM correctly.
What is the Workaround?
- Start the deployment and configure it like normal
- Let the deployment run into the failure
- Open a new PowerShell with admin permissions (Run as Administrator)
- Type in following Command:
<span lang="EN-US" style="margin: 0px; color: black; font-family: 'Lucida Console'; font-size: 9pt;">Set-VMNetworkAdapterVlan -ManagementOS -VMNetworkAdapterName "Deployment" -Access -VlanId "VLAN ID" </span>
- Rerun the deployment with
<span lang="EN-US">.\InstallAzureStackPOC.ps1 -rerun</span>
From the installation folder.
Afterwards the deployment runs smoothly.
Please be aware, after the installation, the VLAN ID is removed again. So you need to set it one more time.
Many things happen short after another. After I needed to lay down the MVP title on the 1st of July, something awesome happened last night.
Short before midnight, I got a mail from the MVP Reconnect program which invited to join the group of reconnected MVP 🙂
I’m extremely happy about and very thankful 🙂 I really loved to be part of the MVP Community and that’s the chance to be part again, even as a Microsoft employee.
it’s more than one year since I became an MVP and join that awesome program but it will be my first and last year as regular MVP. I decided to leave the program and join Microsoft itself.
With the beginning of July I will start my career at Microsoft Germany. I will start as Cloud Solutions Architect and follow awesome guy’s and friends like Daniel Neumann, Anton Staykov or Alessandro Cardoso. Aidan Finn would say “I will go blue” referring to my new batch color which is changing from purple (Microsoft Partner) to blue (Microsoft Employee).
Even as Microsoft FTE I will continue my community and try to support you with the new experiences I will make in the future.
Thank you for your great support over last years and thank you to all my MVP Friends, Microsoft PG and the MVP Program Leads. 🙂
as many of you already know. Last year around that time I started together with Oliver Michalski (MVP Azure) and Jan-Henrik Damaschke (MVP Cloud & Datacenter Management) to write a book about implementing Azure Solutions. After one year of hart work and many struggles and even more changes because of the rapid development of Azure, the book is now ready for order via Packt and Amazon 🙂
We are very happy with the result. Hopefully you have as much fun ready than we writing the book.
Order via Amazon.com // Order via Packt
|What this book covers
|Chapter 1, Getting Started with Azure Implementation, … Within that chapter the reader will get an overview about Cloud service models, Cloud deployment models, Cloud characteristics, and Azure services.
|Chapter 2, Azure Resource Manager and Tools, … Within that chapter the reader will learn all about the Azure Resource Manager and his concepts (Azure Resource Groups/ Azure Resource Tags/ Locks), The reader will also get an introduction in the working with ARM Templates area.
|Chapter 3, Deploying and Synchronizing Azure Active Directory, … Within that chapter the reader will get an overview about the deployment, management and functionalities of Azure Active Directory and its relation to a Microsoft Azure Subscription.
|Chapter 4, Implementing Azure Networks, … Within that chapter the reader will learn how networking in Azure works, how to plan Azure network components and how to deploy the different network components within Azure.
|Chapter 5, Implementing and Securing Storage Accounts, … Within that chapter the reader will learn all about Azure Storage Management and his concepts (Blob / Table / Queue / File). The reader will also get some basic storage configurations.
|Chapter 6, Planning and Deploying Virtual Machines in Azure, … Within that chapter the reader will learn the difference between the Azure Virtual Machine types, the common use cases for the different types and how to deploy Virtual Machines.
|Chapter 7, Implementing Cloud Services, … Within that chapter the reader will learn all about Azure Cloud Services, the Cloud Service architecture, Azure Cloud Service vs. Azure App Services and how to create your first Cloud Service.
|Chapter 8, Exploring and Implementing Containers, … Within that chapter the reader will learn the basic knowledge about the Azure Container Service area and how to create your first container service. The reader also learns the necessary steps for working with the service afterwards.
|Chapter 9, Securing an Azure Environment, … Within that chapter the reader will learn all about Azure Security concepts (Identity Management with Azure AD / Role based Access Control / Azure Storage security) and the Azure Security Center.
|Chapter 10, Best Practices, … Based on a common use case and migration scenario, the reader will get a basic overview how classic applications and services can be placed in the Microsoft Cloud ecosystem and which tools can be used for the migration.