Getting Started with NC2 on AWS

Questions and Answers

What must be done if new permissions have been added to the IAM roles after running the CloudFormation template?

• Re-run the CloudFormation template. (correct)
• Delete and recreate the CloudFormation stack.
• Manually update the IAM roles.
• Nothing, the permissions take effect automatically.

What is the maximum number of vCPUs supported for an i4i.metal instance?

• 72 vCPUs
• 96 vCPUs
• 48 vCPUs
• 128 vCPUs (correct)

Which action is necessary before deploying a cluster in a specific Availability Zone?

• Check the EBS volume configuration.
• Ensure the EC2 instance type is supported. (correct)
• Run the CloudFormation template first.
• Confirm the vCPU limit is set.

How many vCPUs are supported for the m5d.metal instance type?

96 vCPUs (D)

What will happen if you attempt to deploy a cluster with an unsupported EC2 instance type in the chosen Availability Zone?

You will receive an error message. (D)

What is the size of the EBS volume attached to each AHV cluster node?

100 GB (A)

Which tool should be used to view the service quotas for your AWS account?

AWS Service Quotas Console (D)

What is the total number of EBS volumes attached to each cluster node?

Two EBS volumes (B)

What is the primary instance type supported by NC2 on AWS for GPU-enabled workloads?

G4dn.metal (C)

What is the maximum EBS capacity that can be allocated per host?

80% of the total capacity (B)

Which driver must be installed on each node running G4dn.metal instances when using NC2?

NVIDIA GRID host driver (C)

What is a prerequisite for installing the NVIDIA host driver on G4dn.metal instances?

Use the SSH key pair provided during cluster creation (A)

Which feature is NOT supported with EBS attached nodes?

Manual EBS volume replacement (A)

What command is used to check for NVIDIA GPU PCI devices on AHV hosts?

lspci | grep 'NVIDIA' (C)

How does EBS storage increase across nodes when added to a cluster?

Must remain equal across nodes (A)

What happens if LCM does not detect a compatible NVIDIA GRID driver during updates?

Updates are restricted to AHV (B)

What type of clusters is EBS storage NOT supported with?

Heterogeneous clusters (A)

When expanding the cluster size, what must be manually done for new nodes?

Install the NVIDIA driver (C)

What should be done if IAM roles were created prior to the release of EBS volume support?

Update the CloudFormation stack (B)

If a GPU card is present, what must be done to fetch a compatible NVIDIA GRID driver?

Use LCM to fetch the compatible driver (B)

What billing charge applies when a cluster is hibernated and uses EBS?

Additional charges for EBS volumes (B)

What should be expected about EBS volumes when viewed in different interfaces?

They have different names in different interfaces (D)

What should match between the guest and host drivers for proper functionality?

Driver versions and builds (B)

What is the limit for increasing EBS volumes per host after cluster deployment?

Can only increase, but not decrease (D)

Which aCLI command is disabled in a cluster in AWS?

create_cluster_vswitch (C)

Which nCLI command can be used to list the current switches in a cluster?

list-switch (C)

What change is applied to the API call GET /clusters in a Nutanix cluster running in AWS?

It does not display values for rack and block configuration (A)

Which of the following API operations is supported in a Nutanix cluster running in AWS?

GET /hosts (A)

What can users do after creating a My Nutanix account?

Access the NC2 console (C)

Which nCLI command is NOT disabled in a Nutanix cluster in AWS?

edit-hypervisor-lldp-params (B)

What is the duration of the free trial period for NC2 on all supported clouds?

30 days (A)

Which Nutanix account type allows for the management of NC2?

My Nutanix account (D)

Which instance types allow the attachment of additional EBS volumes?

13.metal, i3en.metal, i4i.metal (B)

What is the main difference between IMDSv1 and IMDSv2 in accessing instance metadata?

IMDSv1 is a request/response method while IMDSv2 is a session-oriented method. (D)

What role is automatically assigned when you create a My Nutanix account?

Account Admin role (D)

Which method is NOT mentioned for connecting an on-premises datacenter to an AWS VPC?

AWS Database Migration Service (B)

What must be configured to protect clusters using the Cluster Protect feature?

Cluster Protect prerequisites (A)

What is required for the NC2 console to successfully provision Nutanix clusters in AWS?

Outbound internet access on the AWS VPC (A)

Which statement about AWS VPC configuration is true?

Creating a VPC is optional during cluster creation. (C)

How is access granted to the Admin Center and Billing Center portals in Nutanix?

By acquiring the Account Admin role when invited to a workspace (C)

What is the maximum number of nodes supported in an NC2 cluster?

28 nodes (D)

Which statement is true regarding the tenancy types in an NC2 cluster?

You cannot mix dedicated host tenancy and default tenancy instances. (A)

Which types of clusters can be created using i3.metal instances?

Heterogeneous and homogeneous clusters (A)

Which of the following CIDR notations should not be used when deploying an NC2 cluster?

192.168.5.0/24 (B)

What happens to a dedicated host in the NC2 environment?

It cannot be hibernated. (B)

What is the default memory size for CVMs on NC2 with AOS 6.7?

32 GB (D)

Which limitation applies to the ENIs in an NC2 cluster?

Maximum of 14 ENIs are permitted per host. (C)

What must be true about VPCs when creating a new cluster using the NC2 console?

No other clusters can be deployed in a new VPC being created. (D)

Flashcards

vCPU Limit

The maximum number of virtual CPUs (vCPUs) that can be allocated to a single instance of a specific EC2 instance type.

Bare-metal Instance

A specific type of EC2 instance designed for high-performance computing, offering a large number of vCPUs and high memory capacity.

Availability Zone

The physical location within a region where EC2 instances can be deployed. Each Availability Zone is isolated from other Availability Zones, providing fault tolerance.

Cluster Deployment

The process of configuring a cluster to meet the required performance and capacity needs, taking into account the vCPU limits, instance types, and availability zones.

EBS Volume

A storage volume that is attached to a specific EC2 instance and used to store data. EBS volumes are persistent, meaning data is not lost when the instance is stopped or terminated.

Volume Encryption

An encryption method that uses a unique key for each volume to ensure data confidentiality and integrity.

CloudFormation Deployment

The process of running a CloudFormation template to provision and configure resources in AWS.

Sufficient vCPU Limit

The minimum number of vCPUs required to create a cluster. Insufficient vCPUs may lead to cluster creation failure.

What is a bare-metal instance?

A specialized instance type designed for high-performance computing workloads that run on bare-metal hardware, providing direct access to the underlying physical resources.

What is an NVIDIA T4 GPU?

A specific type of GPU designed by NVIDIA for accelerating graphics and compute-intensive tasks, often used in virtualized graphics environments.

What is the NVIDIA grid host driver?

A software driver that enables communication between the host operating system and the NVIDIA GPU to ensure proper functionality.

What are vGPUs?

A set of virtualized GPUs that are allocated to virtual machines, allowing each VM to access a dedicated portion of the GPU's resources.

What is LCM (Life Cycle Manager)?

A mechanism in the Nutanix platform that automates the update process for the host operating system and other software components, ensuring compatibility and security.

What is Cluster Expansion?

A way to expand the size of a cluster by adding new nodes, providing additional computing resources.

What is the CVM (Cluster Management Virtual Machine)?

A tool used to manage and access virtual machines within a cluster, offering functionality like power management and remote access.

What is Volume Encryption?

A method of securing data by encrypting it with a unique key, ensuring confidentiality and integrity.

Instance Metadata Service (IMDS)

An AWS service providing access to instance metadata, offering both request/response (IMDSv1) and session-oriented (IMDSv2) methods. Enables interaction with instance information like ID and region.

Cluster Protect

A feature of NC2 on AWS that protects your clusters by enabling data replication to an AWS VPC.

My Nutanix Account

A Nutanix account that provides access to the NC2 console, required for creating NC2 subscriptions and managing clusters.

Direct Connect

A method of connecting on-premises datacenters with AWS VPCs securely, offering high bandwidth and low latency.

AWS VPC

A virtual private cloud on AWS, providing a secure and isolated environment for your resources.

Configure Connectivity

The process of configuring a connection between your on-premises datacenter and an AWS VPC using protocols like VPN or Direct Connect.

Bare-metal Instance (13.metal, i3en.metal, i4i.metal)

A specific instance type offered by AWS designed for high-performance computing, providing significant vCPU and memory capacity.

nCLI on AWS

A CLI used to manage Nutanix clusters, where certain commands are disabled in an AWS environment. Examples include network management commands like adding or deleting switches, and managing the hypervisor.

aCLI on AWS

A CLI designed for managing Nutanix clusters, but certain commands are not available on an AWS-hosted cluster.

NC2 Free Trial

A 30-day trial period for using Nutanix Cloud on all supported clouds.

NC2 Console

The interface used to manage Nutanix Cloud (NC2) after creating a My Nutanix account.

API Operations on AWS

API calls that are disabled or modified in a Nutanix cluster running on AWS. Includes actions like entering/exiting maintenance mode, fetching cluster rack configurations, and managing disks.

What is the maximum number of nodes in an NC2 cluster?

NC2 clusters on AWS can only have a maximum of 28 nodes in a single cluster.

Why are single-node clusters not recommended in production?

NC2 does not recommend using single-node clusters for production use cases because they are not as resilient when a failure happens.

Can you mix dedicated host instances with default tenancy instances?

NC2 clusters do not allow mixing instances with different tenancy types (dedicated host and default tenancy). This ensures consistent resource allocation and security.

Can you create a heterogeneous cluster with g4dn.metal instances?

NC2 does not support the creation of heterogeneous clusters with g4dn.metal instances. This means that you can't mix g4dn.metal instances with other instance types in the same cluster.

Can NC2 clusters share AWS subnets?

NC2 clusters cannot share AWS subnets with other clusters. This ensures proper network isolation and security.

What IP address type does NC2 support?

NC2 clusters only support IPv4 addresses and do not currently support IPv6 addresses.

What type of CIDR is supported for subnets on NC2 on AWS?

Public CIDR addresses are not supported for subnets in NC2 on AWS deployments when associated with Cloud subnets. Only private CIDR addresses should be used.

Are unmanaged networks supported in NC2?

Unmanaged networks are not supported in the current release of NC2. This means that network connectivity and management must be handled by Nutanix.

EBS Volume Support in AOS 6.8

EBS volumes can only be attached to new clusters created with AOS 6.8 and later. Adding EBS volumes to existing clusters is not supported.

EBS Volume Capacity Limit

EBS volume capacity is limited to 80% of the total capacity of the instance.

EBS Volume Management in NC2

With EBS volumes, only the NC2 model supports automated node replacement with similar EBS configurations. Manual replacement of EBS volumes is not supported for NC2. You can only increase EBS storage per host and cannot decrease it.

EBS Volume Support with Features & Heterogeneous Clusters

Features like Hibernate/Resume, Cluster Protect, and Software data-at-rest encryption are all supported when using EBS volumes. EBS storage is not supported in heterogeneous clusters.

EBS Storage and Bare-Metal Instances

When adding EBS storage to bare-metal instances during cluster creation, you can only add hosts of the same bare-metal instance type with EBS storage. EBS storage per host can be increased but cannot be decreased after deployment.

EBS Volume License and Permissions

EBS volume support is available only with NCI Ultimate and AOS Ultimate licenses. You need to update the CloudFormation stack to ensure the IAM roles have the necessary permissions for EBS volume support.

EBS Volume Display in Prism Element and Central

EBS volumes are displayed as CLOUD-SSD tier on the Prism Element Web Console UI while they are listed as SSD-PCIe on the Prism Central UI.

AWS Billing for EBS Volumes

AWS charges you for EBS volumes and S3 storage when the cluster is in a hibernated state. You will also be charged for any new node added for data or VM evacuation when a node becomes unhealthy.

Study Notes

Getting Started With NC2 on AWS

• To get started with NC2 on AWS, ensure you are registered on the My Nutanix portal. Ensure you understand NC2 Licensing and Billing. Release Notes and Software Compatibility documents provide further details.
• After creating an AWS cluster, set up the network and security infrastructure for your virtual machines (VMs). This includes configuring User VM Network Management and Network Security using AWS Security Groups.
• Prior knowledge of the Nutanix stack and AWS services such as EC2, VPC, and CloudFormation is recommended for effective deployments.
• NC2 on AWS requires an AWS account with CreateRole access.
• Use a CloudFormation script to create IAM roles for NC2 on AWS. Necessary permissions include IAMFullAccess and AWSCloudFormationFullAccess.
• These roles are essential for communication with AWS APIs and for managing your bare-metal instances, using the Nutanix-Clusters-High-Nc2-Cluster-Role-Prod and Nutanix-Clusters-High-Nc2-Orchestrator-Role-Prod roles.
• You can review the related CloudFormation script from the provided URL.
• Review available vCPU limits for different instance types supported by AWS.
• The CloudFormation template was updated on September 18, 2024. The template needs to be run to ensure consistency with updated permissions
• AWS supports various instance types. Ensure the selected instance type is supported by the desired availability zone.
• NC2 utilizes several ports and protocols for communication. Refer to the Ports and Endpoints Requirements document for details on inbound and outbound communication.
• NC2 supports EC2 bare-metal instances in various AWS regions. Refer to the Table 1. EC2 Bare-metal Instance Details and Table 2. AWS Clusters – Available Regions and Supported Bare-metal Types for specific details.
• NC2 supports different AWS tenancy models, including a default option for bare-metal instances that can migrate across hosts during operation, and a dedicated host option for instances that remain on the same physical host.

Network Requirements

• Configure network connectivity between on-premises datacenters and AWS VPC using either VPN or Direct Connect.
• Explore AWS Site-to-Site VPN and AWS Direct Connect for respective information on setup and configuration.
• Allow outbound internet access for NC2 console to provision and orchestrate Nutanix clusters in AWS.
• Detail VPC (Virtual Private Cloud) configuration, encompassing options for new VPC creation or usage of existing VPCs.
• Address DNS resolution to avoid failure to resolve necessary FQDNs in cases of AWS Directory Service deployments
• Use the default AWS DNS server, or a custom DNS server, along with associated DNS attributes for NC2 on AWS deployments
• Ensure the proper configuration of the default AWS DNS server for resolution of S3 and EC2 private endpoints

CIDR Requirements

• Define specific CIDR ranges for VPCs, subnets, and other network components (e.g., Private management subnet, Public subnet, UVM subnets).
• If using NC2 with Flow Virtual Networking, adhere to specific CIDR requirements for Prism Central and Flow Virtual Networking subnets.

IMDS Requirements

• NC2 on AWS supports accessing instance metadata using the Instance Metadata Service Versions 1(IMDSv1) and 2 (IMDSv2).

My Nutanix Account Requirements

• Configure a My Nutanix account to access the NC2 console.
• Upon account creation, a default workspace is created with an Account Admin role, which is crucial for NC2 subscription and access to the Admin Center and Billing Center.
• Create a new workspace to use for NC2, or join an invited one, with the Account Admin role required for subscription purposes.

Cluster Protection Requirements

• Meet additional requirements if using the Cluster Protect feature. Refer to the Prerequisites document.

Ports and Endpoints Requirements

• Detailed information on specific ports and protocols used for communication by NC2, including outbound and inbound communication and related Microservices Infrastructure details.

Supported Storage Volumes

• NC2 utilizes NVMe solid state drives for local storage.
• EBS volumes (encrypted gp3) are used for boot volumes for AHV and CVM instances
• AOS 6.8 and later versions support additional EBS volume attachment. Scaling storage independently from compute capacity is supported.
• EBS volume capacity can be up to 80% of the total capacity
• Supported volumes may depend on metal instance type for NC2 running on AWS.
• EBS Storage is not supported with heterogeneous clusters
• EBS storage can only increase capacity after the deployment.

Instance Storage

• Provide a tabular format listing various metal types and their associated storage and memory details according to specific regions.

Limitations

• Maximum number of nodes in a cluster is 28.
• Single-node clusters are not recommended in production environments.
• Other limitations: such as two-node clusters and IP address limits per node are part of the supported instance limitations on different platforms and environments
• Other limitations: AWS-specific limitations such as dedicated host tenancy and partition placement are important considerations.

nCLI and API Operations

• Provide details on disabled or changed nCLI and API operations in an AWS deployment.

Creating My Nutanix Account

• Steps for creating a My Nutanix account and how to navigate the account creation process, including password policies and email requirements.