VMware vSphere

 View Only
  • 1.  tech details of encrypted vmotion?

    Posted Aug 16, 2018 04:12 AM

    i just did some googling about the technical details about encrypted vmotion

    however, nearly all the articles only discuss the configurations and functions except for

    this one VMware vSphere Security with Encrypted vMotion - vembu.com and

    this blog https://blogs.vmware.com/performance/2017/01/vsphere-6-5-encrypted-vmotion-architecture-performance.html 

    i would like to understand the details of encrypted vmotion:

    1. is it performed only on VM-based?

    2. the AES encryption is applied on tcp header, not the payload?

    3. if VM encryption is already enabled on VMs, will the encrypted vmotion still work and secure the traffic?(regardless of single VCSA or cross VCSA)

    any reply will be appreciated.:smileyhappy:

  • 2.  RE: tech details of encrypted vmotion?
    Best Answer

    Posted Aug 16, 2018 08:20 AM

    Starting with vSphere 6.5, vSphere vMotion always uses encryption when migrating encrypted virtual machines.

    For encrypted virtual machines, migration across vCenter Server instances is not supported.

    Below article gives you more data:

    VMware vSphere 6.5 Documentation Library

    Please consider marking this answer as "correct" or "helpful" if you think your questions have been answered.