{"id":1372,"date":"2021-11-23T11:06:20","date_gmt":"2021-11-23T10:06:20","guid":{"rendered":"https:\/\/nine30.info\/?p=1372"},"modified":"2021-11-23T11:06:20","modified_gmt":"2021-11-23T10:06:20","slug":"app-discovery-with-vrealize-network-insight","status":"publish","type":"post","link":"https:\/\/nine30.nxt70.com\/index.php\/2021\/11\/23\/app-discovery-with-vrealize-network-insight\/","title":{"rendered":"App Discovery with vRealize Network Insight"},"content":{"rendered":"\n<p>This post is largely based on a project I executed with <a rel=\"noreferrer noopener\" href=\"https:\/\/www.linkedin.com\/in\/atifqadeer\/\" target=\"_blank\">Atif Qadeer<\/a> and I am reusing here some stuff he created. Atif is a vRNI super expert, Hands On Lab creator, Office of the CTO Ambassador for VMware.<\/p>\n\n\n\n<p>vRealize Network Insight (vRNI) is a network operations management solution available On-Premise and SaaS that allows you to securely and confidently manage your network at scale with the following key capabilities: <\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Intelligent Application Discovery, <\/li><li>Network Optimization, <\/li><li>Analytics, <\/li><li>Troubleshooting with Assurance and Verification. <\/li><\/ul>\n\n\n\n<p>In this post I&#8217;ll focus on the Application Discovery capability that is extremely appreciated among users as it provides a great support for some use cases such as: <\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>App migration to cloud, <\/li><li>App modernization,<\/li><li>App security assessment and recommendation. <\/li><\/ul>\n\n\n\n<p><meta charset=\"utf-8\">vRealize Network Insight allows you to discover applications running in your environment and then builds relationships among applications and external services. To discover applications and their relationships vRNI provides some options that can be combined together to improve accuracy and completeness of the discovery process:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Tags (vCenter Server or AWS tags),<\/li><li>VM Names,<\/li><li>Flow,<\/li><li>ServiceNow.<\/li><\/ul>\n\n\n\n<p>In my engagements with customers it is quite rare to find a situation where either tags, naming convention or a CMDB (ServiceNow) is there with the required accuracy and consistency to allow you identify application mapping to infrastructure. For this reason, in this post I focus on the Flow based discovery. vRealize Network Insight uses machine learning and statistical analysis to discover applications automatically and group the VMs into their respective applications and tiers.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Requirements<\/h2>\n\n\n\n<p>Here I am assuming you have an instance of <meta charset=\"utf-8\">vRealize Network Insight On-Premise or Cloud already deployed and ready to go. The screenshots in the rest of this post are taken from vRNI Cloud, but the same applies to the On-Prem deployment.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">Compatibility Matrix<\/h3>\n\n\n\n<p>To leverage Flow based app discovery you need an environment with the followings:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>You needs to have VMware vDS (Virtual Distributed Switch) as vRNI collects IPFIX (Netflow) from vDS<\/li><li>IPFIX is supported on the following VMware ESXi versions:<ul><li>5.5 Update 2 (Build 2068190) and later<\/li><li>6.0 Update 1b (Build 3380124) and later<\/li><li>VMware vDS 5.5 and later<\/li><\/ul><\/li><li>You don\u2019t need to enable IPFIX on vDS, this can be automatically enabled by vRNI when configuring data source in the solution.<\/li><\/ul>\n\n\n\n<h3 class=\"wp-block-heading\">Network Requirements<\/h3>\n\n\n\n<p>Your vRNI Collector needs to access vCenter Server on HTTPs\/443. If you are working with vRNI Cloud your Collector needs outgoing traffic through the firewall (optionally Proxy) to pd.ni-onsaas.com.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\">vCenter Account Privileges<\/h3>\n\n\n\n<p>You need and account on vCenter with the following privileges:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li>Distributed Switch: Modify<\/li><li>dvPort group: Modify<\/li><\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Configure vSphere Data Source<\/h2>\n\n\n\n<p>Start with adding data sources into&nbsp;vRealize Network Insight Cloud&nbsp;to collect data from your data center (vSphere).<\/p>\n\n\n\n<p>F<span style=\"font-size: revert;\">rom the left menu, click <\/span><strong style=\"font-size: revert;\">Settings<\/strong><span style=\"font-size: revert;\"> &gt; <\/span><strong style=\"font-size: revert;\">Settings<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-1 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1400\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/01.settings-1024x557.png\" alt=\"\" class=\"wp-image-1400\"\/><\/figure>\n<\/figure>\n\n\n\n<p>In the new page click on <strong>Accounts and Data Sources<\/strong>. From the&nbsp;<strong><strong>Accounts and Data Sources<\/strong><\/strong>&nbsp;section click the&nbsp;<strong>Add Source<\/strong> button in the upper right corner.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-2 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1404\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/02.accounts-1-1024x557.png\" alt=\"\" class=\"wp-image-1404\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Click the&nbsp;<strong>VMware vCenter<\/strong>&nbsp;option<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-3 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1403\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/03.account.vcenter-1024x557.png\" alt=\"\" class=\"wp-image-1403\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Input the required info to connect your vCenter and than click <strong>Validate<\/strong>. Once the access to vCenter is validated select <strong>Enable Netflow (IPFIX) on this vCenter<\/strong> to enable IPFIX. After enabling this option you can select those VDS&#8217;s to be IPFIX enabled. <\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-4 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1402\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/04.account.vcenter.withdata-1024x557.png\" alt=\"\" class=\"wp-image-1402\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Scroll down and click <strong>Submit<\/strong> to add the vCenter Server system.<\/p>\n\n\n\n<p>Once the Data source configuration is complete, verify that it shows under the list in <strong>Accounts&nbsp;\u200band Data Sources<\/strong>.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-5 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1405\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/05.new_.vcenter.inthelist-1024x557.png\" alt=\"\" class=\"wp-image-1405\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Before proceeding you need to allow the solution to collect data for at least 24 hours to&nbsp;ensure you get good and&nbsp;accurate data. Once you have waited at least 24 hours then&nbsp;proceed to next&nbsp;steps.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Configure Flow Based Application Discovery<\/h2>\n\n\n\n<p>From the <strong>Home<\/strong> page, click on <strong>Applications<\/strong><\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-6 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1407\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/06.home_.app_-1024x557.png\" alt=\"\" class=\"wp-image-1407\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Click on <strong>Discover Applications<\/strong> to configure the discovery process.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-7 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1409\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/07.application-1.png\" alt=\"\" class=\"wp-image-1409\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Under the <strong>Discover<\/strong> tab, click on <strong>Flows<\/strong> (1 in the picture below) and start the discovery (2 in the picture below) if paused or not enabled. Once the discovery is started wait for about 30 minutes. <\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-8 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1410\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/08.discovery.configure.jpg\" alt=\"\" class=\"wp-image-1410\"\/><\/figure>\n<\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">Work with Discovered Applications<\/h2>\n\n\n\n<p>Review the list of applications that are automatically discovered, please note that the list of application will vary based on your vSphere and application footprint.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-9 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1413\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/09.discovered.applications-1024x557.png\" alt=\"\" class=\"wp-image-1413\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Save those applications that are accurate as per the vRNI provided confidence (e.g. high\/medium) and your knowledge.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-10 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1415\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/10.discovered.applications.save_-1-1024x557.png\" alt=\"\" class=\"wp-image-1415\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Give your application a friendly name and than click <strong>Submit<\/strong> and close this window.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-11 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1416\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/11.app_.saved_-1024x557.png\" alt=\"\" class=\"wp-image-1416\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Repeat the steps in this section for all the applications you\u2019d like to save.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Explore Saved Applications<\/h2>\n\n\n\n<p><span style=\"text-decoration: underline;\">Disclaimer:<\/span> here my intent is just to provide you an high level Application walkthrough in vRNI, I do not pretend to provide here a full Application analytics guide.<\/p>\n\n\n\n<p>Click on the <strong>Applications<\/strong> tab and review saved applications (1 in the picture below) and toggle checkboxes to articulate application dependency (2 in the picture below). Click on the application name (3 in the picture below) to proceed.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-12 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1418\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/12.saved_.applications-1024x557.png\" alt=\"\" class=\"wp-image-1418\"\/><\/figure>\n<\/figure>\n\n\n\n<p>By clicking on the application name you can start dissecting it. Here we will walk through some analysis. In my case, I clicked on the app named <em>cp-app<\/em> to explore its functionality.<\/p>\n\n\n\n<p>The upper section of the application <strong>Overview<\/strong> let you get the application landscape, here you can find some useful insights. For instance, if this application is a target for a cloud migration it is quite useful to double click on the Countries to understand where traffic for this app is directed and coming.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-13 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1422\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/13.app_.details.summary-1024x557.png\" alt=\"\" class=\"wp-image-1422\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Scrolling down a little you can get the <strong>Application Topology<\/strong> that lets you understand the tier communication. Please, note that we get all of these info and details without deploying any agent! Use legend to better understand what&#8217;s happening with your app.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-14 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1423\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/14.app_.topology-1024x557.png\" alt=\"\" class=\"wp-image-1423\"\/><\/figure>\n<\/figure>\n\n\n\n<p>If you further scroll down you can access the <strong>Metric<\/strong> section, which is key to support your analysis especially if you are working in a migration project. Use these data as a baseline for your application as-is to-be scenarios.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-15 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1424\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/15.app_.metrics-1024x557.png\" alt=\"\" class=\"wp-image-1424\"\/><\/figure>\n<\/figure>\n\n\n\n<p>Just below <strong>Metric<\/strong>, click on <strong>Microsegmentation<\/strong> to start analyzing network security and traffic distribution for your application.<\/p>\n\n\n\n<figure class=\"wp-block-gallery has-nested-images columns-default is-cropped wp-block-gallery-16 is-layout-flex wp-block-gallery-is-layout-flex\">\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" data-id=\"1425\" src=\"https:\/\/nine30.info\/wp-content\/uploads\/2021\/11\/16.app_.ms_-1024x557.png\" alt=\"\" class=\"wp-image-1425\"\/><\/figure>\n<\/figure>\n\n\n\n<p>To catch up: vRealize Network Insight provides an extremely powerful yet super easy to setup application discovery capability. This can be used for application migration planning as well as the starting point for an app modernization journey. Hope this can be helpful for you.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This post is largely based on a project I executed with Atif Qadeer and I am reusing here some stuff he created. Atif is a vRNI super expert, Hands On Lab creator, Office of the CTO Ambassador for VMware. vRealize Network Insight (vRNI) is a network operations management solution available On-Premise and SaaS that allows&hellip; <a class=\"more-link\" href=\"https:\/\/nine30.nxt70.com\/index.php\/2021\/11\/23\/app-discovery-with-vrealize-network-insight\/\">Continue reading <span class=\"screen-reader-text\">App Discovery with vRealize Network Insight<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":1433,"comment_status":"open","ping_status":"open","sticky":false,"template":"templates\/template-cover.php","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[4],"tags":[15,16,35,56,64,94,108,114,153,174,175,178,185,191],"class_list":["post-1372","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-tech","tag-app","tag-applications","tag-cloud","tag-discovery","tag-flow","tag-ipfix","tag-migration","tag-netflow","tag-services","tag-virtualmachines","tag-visibility","tag-vmware","tag-vrealize","tag-vsphere","entry"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/posts\/1372","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/comments?post=1372"}],"version-history":[{"count":0,"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/posts\/1372\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/media?parent=1372"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/categories?post=1372"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nine30.nxt70.com\/index.php\/wp-json\/wp\/v2\/tags?post=1372"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}