Upgrade ESXi 6.5 using the CLI

Here’s an easy procedure to update your ESXi to the latest build using the CLI and WebUI for Client.

Step1- List latest available packages:

esxcli software sources profile list -d https://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml | grep -i ESXi-6.5

Step2- Select latest, install and reboot:

esxcli software profile update -p ESXi-6.5.0-20171204001-standard -d http://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml
reboot

Step3- Verify latest build:

vmware -vl
VMware ESXi 6.5.0 build-7388607
VMware ESXi 6.5.0 Update 1

Step4- Verify latest client build:

Check version in web ui, under help, about

Client version: 1.24.0
Client build number: 7119706
ESXi version: 6.5.0
ESXi build number: 7388607

Step5- If needed upgrade client to latest using WebUI:

http://download3.vmware.com/software/vmw-tools/esxui/esxui-signed-latest.vib

Polycom Soundpoint 331/335 Upgrade

How to reset and update the Polycom Soundpoint 331 and 335 phone
Default pass: 456 or vonage account number
To reset pass: on boot hold down 1,3,5,7 and enter the MAC address
(use lowercase for any alpha characters)
Caution if you Reset to Factory you will need to reprovision the phone

Update the provisioning server either on boot or through Menu
Settings->Advanced->Admin Settings->Network Config
->Provisioning Server (on older phones this is Server Menu)
Set the provisioning server to: 140.242.64.35/411
Set server type to HTTP
You will need to use # to switch to various characters
Reboot the phone
The phone will show it’s upgrading and will reboot several times

After the upgrade you should be able to get into the web interface
https://[phoneip]
admin/456 or vonage account number
Set local DNS
Set local NTP

As of Dec, 2017 the following versions on 331/335
UC Software Version 4.1.1.0731
BootROM Software Version 5.1.1.0132

Reference:
Polycom Setup
Vonage Setup

Upgrade ESXi to 6.5 using the CLI

Here’s an easy three step procedure to update your ESXi to the latest build using the CLI.

Step1- SSH into your ESXi host and modify the firewall:

esxcli network firewall ruleset set -e true -r httpClient

Step2- List latest available packages:

esxcli software sources profile list -d https://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml | grep -i ESXi-6.5

Step3- Select latest, install and reboot:

esxcli software profile update -p ESXi-6.5.0-4564106-standard -d http://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml

Note I had to run Step3 twice on some hosts.

Upgrade ESXi to 6.5 from a USB Drive

Here’s an easy three step process to update your ESXi host to the latest build using a USB Flash Drive.

Step1- Download latest ISO VMware vSphere Hypervisor(ESXi) 6.5 ISO
https://my.vmware.com/en/group/vmware/evalcenter?p=free-esxi6

Step2- Download and run Rufus
https://rufus.akeo.ie/

Step3- Click the CD icon and point to the ISO you downloaded, leave everything else default and click start
(Note you may get a popup requesting to replace the menu, to avoid issues with the USB key not booting you’ll need to click Yes to download the updated file.)

I have performed this method on versions 5.5 and 6

Boot DBAN from a USB Flash Drive

Here’s a two step process to easily create a bootable DBAN USB dive to permanently erase a hardrive.

Step1- Download the latest ISO from DBAN:
http://www.dban.org/

Step2- Download and run the “Universal USB Installer”, select DBAN from the drop down list:
https://www.pendrivelinux.com/universal-usb-installer-easy-as-1-2-3/

Reference:
https://www.pendrivelinux.com/install-dban-to-a-usb-flash-drive-using-windows/

Postfix send error

Symptom is no email is being received
tail /var/mail/root contains the following error:
Diagnostic-Code: X-Postfix; unknown user:

When you install postfix if your hostname includes your domain then Postfix thinks its receiving mail for the domain, to fix:
vim /etc/postfix/main.cf
remove [yourdomain.com] from mydestination section

restart postfix and retest
postfix stop
postfix start

Reference:
http://stackoverflow.com/questions/32877196/postfix-thinks-the-system-email-is-local

How to manage an ESXi host from OSX

If you need to manage ESXi hosts using your MAC, with “ESXi Embedded Host Client” you can manage it through the browser!
Simply, SSH into your ESXi host and run the following commands, no need to reboot:

esxcli software vib install -v http://download3.vmware.com/software/vmw-tools/esxui/esxui-signed-4493986.vib

esxcli software vib install -v http://download3.vmware.com/software/vmw-tools/esxui/VMware-Remote-Console-9.0.0-MacOS.vib

Reference:
https://labs.vmware.com/flings/esxi-embedded-host-client

Upgrade to ESXi 6.0 Update 2

While upgrading to ESXi 6.0 Update 2 you receive:

VIB VMware_bootbank_esx-base_6.0.0-2.34.3620759 requires vsan >= 6.0.0-2.34, but the requirement cannot be satisfied within the ImageProfile.

Run:

esxcli software profile update -p ESXi-6.0.0-20160302001-standard -d /vmfs/volumes/datastore1/updates/update-from-esxi6.0-6.0_update02.zip

Determine the build number and the latest update applied by running the command:

vmware -vl

Reference:
https://my.vmware.com/group/vmware/patch#search
https://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=2144595

AWS SSH Tricks

Here some simple steps for creating an additional user and copying their public ssh key:

Download private key, secure file:
chmod 600 myPrivateKey.pem

Publish .pem private key to OSX keychain:
ssh-add -K myPrivateKey.pem

Copy publickey to server
scp myPublicKey.pub [email protected]:~

Create user, move key to
sudo adduser [new user] sudo
sudo mv myPublicKey.pub /home/[new user]/

Switch to su [new user]
mkdir ~/.ssh
chmod 700 ~/.ssh
sudo cat myPublicKey.pub >> ~/.ssh/authorized_keys

If errors you may need to take ownership:
sudo chown -R [new user]:[new user] /home/[new user]/.ssh/authorized_keys

Check key and logon:
cat authorized_keys
ssh [~.amazonaws.com]

Secure files:
chmod 600 ~/.ssh/authorized_keys

Copy files and directorys to AWS server:
scp -r * [ip]:~/temp/

Also use this to add pub direct:
cat myPublicKey.pub | ssh [email protected][ip] “cat >> ~/.ssh/authorized_keys”

Reference:
https://help.ubuntu.com/community/SSH/OpenSSH/Keys
https://www.digitalocean.com/community/tutorials/how-to-set-up-ssh-keys–2
http://blogs.aws.amazon.com/security/post/Tx3N8GFK85UN1G6/Securely-connect-to-Linux-instances-running-in-a-private-Amazon-VPC