vSphereAutoLab/Build/Automate/vShield51.ps1

228 lines
7.8 KiB
PowerShell
Raw Normal View History

# Script to add add VMware vShield Manager to the AutoLab infrastructure
#
# Thanks to Alan Renouf (http://www.virtu-al.net/2011/09/14/powershell-automated-install-of-vshield-5/)
# Thanks to Jeff Hicks for the Test-Website Function: http://jdhitsolutions.com/blog/2010/04/hey-are-you-awake/
# Thanks to William Lam for the trick to change the Zebra file: http://www.virtuallyghetto.com/2011/09/how-to-automate-deployment.html
# AutoLab v1.1
#
#
. "C:\PSFunctions.ps1"
Function New-ZebraFile ($vShieldHostName, $vShieldIP, $vShieldID, $vShieldGW) {
$ZebraFile = @"
!
hostname $vShieldHostName
!
interface mgmt
ip address $vShieldIP/$vShieldID
!
ip route 0.0.0.0/0 $vShieldGW
!
line vty
no login
!
"@
$ZebraFile | Out-File $ENV:TEMP\zebra.conf -Encoding "ASCII"
}
Function Post-vShieldAPI ($URL, $Body) {
$wc = New-Object System.Net.WebClient
# Add Authorization headers
$authbytes = [System.Text.Encoding]::ASCII.GetBytes($vshieldUser + ":" + $vShieldPass)
$base64 = [System.Convert]::ToBase64String($authbytes)
$authorization = "Authorization: Basic " + $base64
$wc.Headers.Add($authorization)
$response = $wc.UploadString($URL, "POST", $Body)
}
Function Set-vShieldConfiguration ($vCenter, $Username, $Password, $PrimaryDNS, $SecondaryDNS) {
$Body = @"
<vsmGlobalConfig xmlns="vmware.vshield.edge.2.0">
<dnsInfo>
<primaryDns>$($PrimaryDNS)</primaryDns>
<secondaryDns>$($SecondaryDNS)</secondaryDns>
</dnsInfo>
</vsmGlobalConfig>
"@
Post-vShieldAPI -URL "https://$vShieldIP/api/2.0/global/config" -Body $Body
}
function Wait-vShieldBoot {
do {
$VM = Get-VM $vShieldHostName
Sleep 5
} until ($VM.ToolsStatus -eq "toolsOK")
}
Function Test-WebSite {
[cmdletBinding()]
Param (
[Parameter(
ValueFromPipeline=$True,Position=0,Mandatory=$True,
HelpMessage="The URL to test. Include http:// or https://")]
[string]$url
)
Begin {
Write-Verbose "Begin function"
}
Process {
Write-Verbose "Requesting $url"
$wr=[system.net.webrequest]::Create($url)
#set timeout to 7 seconds
$wr.Timeout=7000
$start=Get-Date
Try {
$response=$wr.GetResponse()
if ($response) {
Write-Verbose "Response returned"
$Status=$response.StatusCode
$StatusCode=($response.Statuscode -as [int])
}
}
Catch [system.net.webexception] {
Write-Verbose "Failed to get a response from $url"
$status = $_.Exception.Response.StatusCode
$statuscode = ( $_.Exception.Response.StatusCode -as [int])
}
$end=Get-Date
$timespan=$end-$start
$ResponseMS=$timespan.TotalMilliseconds
Write-Verbose "status is $status"
Write-Verbose "statuscode is $statuscode"
Write-Verbose "timer is $responseMS"
$obj=New-Object PSObject -Property @{
DateTime=$start
URL=$url
Status=$status
StatusCode=$statuscode
ResponseMS=$ResponseMS
}
Write-Output $obj
} #end Process
End {
Write-Verbose "End function"
}
}
Function Wait-vShieldWebsite {
do {
$web = test-website https://$vShieldIP
Sleep 5
} until ($Web.Status -eq "OK")
}
if ( (Get-PSSnapin -Name VMware.VimAutomation.Core -ErrorAction SilentlyContinue) -eq $null )
{
try {
Write-Host "Loading PowerCLI plugin, this will take a little while" -foregroundcolor "cyan"
Add-PsSnapin VMware.VimAutomation.Core
}
catch {
Write-Host "Unable to load the PowerCLI plugin. Please verify installation and run this script again."
exit
}
}
$PCLIver = (((Get-PowerCLIVersion).Major * 10) + (Get-PowerCLIVersion).Minor)
If ($PCLIver -ge 51) {
$null = Set-PowerCLIConfiguration -DisplayDeprecationWarnings:$false -InvalidCertificateAction Ignore -Confirm:$false -Scope "Session"
} Else {
Write-Host "Upgrade PowerCLI to version 5.1 or later"
Write-Host "This version cannot deploy thin provisioned vApps"
Read-Host "Press <Enter> to exit"
Exit
}
for ($i=1;$i -le 2; $i++){
$vmhost = "host$i.lab.local"
$ping = new-object System.Net.NetworkInformation.Ping
$Reply = $ping.send($vmhost)
if ($Reply.status <EFBFBD>ne "Success") {
Write-Host $vmhost " not responding to ping, exiting" -foregroundcolor "red"
Write-Host "Re-run this script when both ESXi hosts are running" -foregroundcolor "red"
exit
}
}
$vShieldHostName = "vShield"
$vShieldFQDN = "vshield.lab.local"
$vShieldCluster = "Local"
$vShieldIP = "192.168.199.40"
$vShieldID = "24"
$vShieldGW = "192.168.199.2"
$vShieldPrimaryDNS = "192.168.199.4"
$vShieldSecondaryDNS = "192.168.199.4"
$vShieldUser = "admin"
$vShieldPass = "default"
$vCenter = "192.168.199.5"
$vcUsername = "Lab\vi-admin"
$vcPass = "VMware1!"
$Newproperty = New-VIProperty -Name ToolsStatus -ObjectType VirtualMachine -Value {
param($vm)
$vm.ExtensionData.Guest.ToolsStatus
} -Force
Write-Host "Connecting to vCenter"
try {
$Connect = Connect-VIServer -Server $vCenter -User $vcUsername -Password $vcPass -ErrorAction Stop
$VMhost = Get-Cluster $vShieldCluster | Get-VMHost | Select -First 1
}
catch {
Write-Host "Unable to connect to to $vCenter. Exiting."
exit
}
# Work out which iSCSI datastore has the most free space
$vShieldDS = Get-Datastore -name iSCSI* | Select Name, FreeSpaceGB | Sort-Object -Property FreeSpaceGB | Select-Object -Last 1
if (Test-Path "\\192.168.199.7\Build\vCD_51\VMware-vShield-Manager-5.1.*.ova") {
$vshieldOVA = (Get-ChildItem \\192.168.199.7\Build\vCD_51\VMware-vShield-Manager-5.1.*.ova).FullName
Write-Host "Importing the vShield OVA"
try {
$va = Import-VApp -Name $vShieldHostName -Datastore $vShieldDS.Name -VMHost $VMHost -Source $vshieldOVA -DiskStorageFormat Thin -ErrorAction Stop
$null = Get-VM $vShieldHostName | Set-VM -MemoryMB 512 -Confirm:$false
$null = Get-VMResourceConfiguration -VM $vShieldHostName | Set-VMResourceConfiguration -MemReservationMB 0
Write-Host "Starting the vShield VM"
$Start = Start-VM $vShieldHostName -Confirm:$false
Wait-vShieldBoot
Write-Host "vShield Manager import complete."
}
catch {
write-host "Unable to import vShield. Exiting."
exit
}
} else {
Write-Host "vShield OVA not found. Please copy the file to the Build share and try again."
}
### Commented out due to issues with vShield VM authentication during Invoke-VMScript
# Write-Host "Waiting until the vShield VM has started"
# Wait-vShieldBoot
# Write-Host "Setting the initial IP address after boot"
# $Zebrafile = New-Zebrafile -vShieldHostName $vShieldFQDN -vShieldIP $vShieldIP -vShieldID $vShieldID -vShieldGW $vShieldGW
# $Password = ConvertTo-SecureString -AsPlainText $vShieldPass -Force
# $cred = new-object -typename System.Management.Automation.PSCredential -argumentlist "admin", $Password
# $invoke = Invoke-VMScript -VM vShield -ScriptText "mv /common/configs/cli/zebra.conf /common/configs/cli/zebra.conf.bak" -ScriptType Bash -GuestCredential $cred
# $ReIP = Copy-VMGuestFile -VM $vShieldHostName -Source $ENV:TEMP\zebra.conf -Destination "/common/configs/cli/" -LocalToGuest -GuestUser $vShieldUser -GuestPassword $vShieldPass
# Write-Host "Powering Off the vShield VM"
# Sleep 5
# $Stop = Stop-VM $vShieldHostName -Confirm:$false
# Write-Host "Starting the vShield VM"
# $Start = Start-VM $vShieldHostName -Confirm:$false
# Write-Host "Waiting until the vShield VM has started"
# Wait-vShieldBoot
# Write-Host "Waiting until the vShield Management site has started"
# Wait-vShieldWebsite
# Write-Host "Linking vShield to vCenter and set DNS entries"
# $SetIP = Set-vShieldConfiguration -vCenter $vCenter -Username $vcUsername -Password $vcPass -PrimaryDNS $vShieldPrimaryDNS -SecondaryDNS $vShieldSecondaryDNS
# Write-Host "Configuration Complete"
if (Test-Path "C:\Program Files\VMware\VMware Tools\VMwareToolboxCmd.exe") {
Read-Host " Configuration complete, press <Enter> to continue."
}
exit