Where Are My VMware Cloud Foundation Logs?

From time to time we all need to look at logs, whether its a failed operation or to trace who did what when. In VMware Cloud Foundation there are many different logs, each one serving a different purpose. Its not always clear which log you should look at for each operation so here is a useful reference table.

Log Type VM Location log Location
BringUp Cloud Builder

JSON Generator – /opt/vmware/sddc-support/cloud_admin_tools/logs/JsonGenerator.log

Platform Audit – /opt/vmware/sddc-support/cloud_admin_tools/logs/PlatformAudit.log

Bringup – /var/log/vmware/vcf/bringup/vcf-bringup-debug.log
Licensing SDDC Manager /var/log/vmware/vcf/operationsmanager/operationsmanager.log
Network Pool SDDC Manager /var/log/vmware/vcf/commonsvcs/vcf-commonsvcs.log
Host Commission/Decommission SDDC Manager /var/log/vmware/vcf/operationsmanager/operationsmanager.log
VI (WLD domain) SDDC Manager /var/log/vmware/vcf/domainmanager/domainmanager.log
vRLI SDDC Manager /var/log/vmware/vcf/domainmanager/domainmanager.log
/var/log/vmware/vcf/commonsvcs/vcf-commonsvcs.log
vROPS SDDC Manager /var/log/vmware/vcf/domainmanager/domainmanager.log
/var/log/vmware/vcf/commonsvcs/vcf-commonsvcs.log
vRA SDDC Manager /var/log/vmware/vcf/domainmanager/domainmanager.log
/var/log/vmware/vcf/commonsvcs/vcf-commonsvcs.log
vRSLCM SDDC Manager /var/log/vmware/vcf/domainmanager/domainmanager.log
/var/log/vmware/vcf/commonsvcs/vcf-commonsvcs.log
Upgrade: /var/log/vmware/vcf/lcm/lcm.log
 
vRSLCM /var/log/vlcm/vmware_vrlcm.log
LCM SDDC Manager /var/log/vmware/vcf/lcm/lcm.log
API Login SDDC Manager /var/log/vmware/vcf/commonsvcs/vcf-commonsvcs.log
SoS SDDC Manager /var/log/vmware/vcf/sddc-support/vcf-sos-svcs.log
Certificate Operations SDDC Manager /var/log/vmware/vcf/operationsmanager/operationsmanager.log

NSX IPSec VPN between datacenters (multi site/region)

I’m doing some lab work with my team at the moment and we were gifted some hardware to do some multi region validation. Both systems (a VxRack SDDC & a VxRail) are in 2 separate datacenters, and both are using private IP addressing that is not routable between datacenters. As part of the validation we need both systems to be able to communicate with each other, however we dont control the inter lab switching to put in place the necessary routes to enable this. Rather than go through a change control process with the keepers of that gate we decided to get creative and have some fun (and hopefully learn something!) by setting up an NSX IPSec VPN between the labs.

Disclaimer: There are many better ways to do this for a permanent lab setup (i.e. BGP to the core with routes) but this was done on borrowed kit that was never initially designed with inter lab routing as a requirement, with no direct control on the inter lab switches, and we would also like to put it back the way we found it so dont want to make sweeping architectural changes!

Continue reading “NSX IPSec VPN between datacenters (multi site/region)”