Howto create a Virtual Swich for External without creating a Virtual NIC on the root

When you use the Virtual Network Manager to create a new switch and assign it a physical Network Adapter, this NIC is assigned to the new switch exclusively and a new Virtual NIC is created in the parent partition. There might be confugurations where you might not want the parent partition to be connected to this network. The simplest way is to disable this virtual NIC or unbind all protocols.

However, with some scripting, you can create a new switch and connect a physical NIC without a virtual NIC created on the parent partition.

 Here are the steps in vbscript.

1. Create a swich using the vb script on https://msdn.microsoft.com/en-us/library/cc136783(VS.85).aspx As paramter pass the switch name. E.g "HV LAN1"

2. Bind a unused NIC to the Virtual Switch using vb script on https://msdn.microsoft.com/en-us/library/cc136768(VS.85).aspx As Paramter pass the friendly NIC name. E.g. "Broadcom NetXtreme 57xx Gigabit Controller" which can be found on the NIC properties.

3. Create a port on the switch using the vb script on https://msdn.microsoft.com/en-us/library/cc136782(VS.85).aspx As Paramter pass the Switch name you used in 1. and a Port name. E,G "HV LAN1" "HVLAN1ExternalPort"

4. Connect the switch port to the NIC by using below script. As Paramter pass the Switch name you used in 1. the Port name from 3. and the NIC name from 2. e.g.: "HV LAN1" "HVLAN1ExternalPort" "Broadcom NetXtreme 57xx Gigabit Controller"

Now you should have a new switch connected to the external NIC. This Switch can now be used to connect NICs to your VMs only.

Cheers

-Robert 

 

#ConnectSwitchPort2NIC.vbs 

option explicit

dim objWMIService
dim switchService
dim fileSystem

const wmiStarted = 4096
const wmiSuccessful = 0

Main()

'-----------------------------------------------------------------
' Main
'-----------------------------------------------------------------
Sub Main()
    dim computer, objArgs
    dim switchFriendlyName, switchPortFriendlyName, switch, switchPort
    dim vmName, vmEthernetPortType, vmEthernetPortClassName
    dim NICFriendlyName, vmEthernetPort, vmEthernetPortEndPoint

    set objArgs = WScript.Arguments
    if WScript.Arguments.Count = 3 then
       switchFriendlyName = objArgs.Unnamed.Item(0)
       switchPortFriendlyName = objArgs.Unnamed.Item(1)
       NICFriendlyName = objArgs.Unnamed.Item(2)
    else
       Usage()
    end if    
   
    set fileSystem = Wscript.CreateObject("Scripting.FileSystemObject")
    computer = "."   

    set objWMIService = GetObject("winmgmts:\\" & computer & "\root\virtualization")
    set switchService = objWMIService.ExecQuery("select * from Msvm_VirtualSwitchManagementService").ItemIndex(0)
   
    set switch = GetVirtualSwitch(switchFriendlyName)
    if (switch Is Nothing) then
        WriteLog Format1("Unable to find switch {0}", switchFriendlyName)
        WScript.Quit(1)  
    end if
   
    set switchPort = GetVirtualSwitchPort(switch, switchPortFriendlyName)

    if (switchPort Is Nothing) then
        WriteLog Format1("Unable to find switchPort '{0}'", switchPortFriendlyName)
        WScript.Quit(1)  
    end if 

   
    set vmEthernetPort = GetEthernetPort(NiCFriendlyName)
  
    if ConnectSwitchPort(switchPort, vmEthernetPort) then
        WriteLog "Done"
        WScript.Quit(0)
    else
        WriteLog "ConnectSwitchPort failed"
        WScript.Quit(1)
    end if

End Sub

'-----------------------------------------------------------------
' Display command line help
'-----------------------------------------------------------------
Sub Usage()

 WScript.Echo "usage: cscript ConnectSwitchPort SwitchFriendlyName " &_
      "SwitchPortFriendlyName NiCName"
 
 WScript.Quit(1)

End Sub

'-----------------------------------------------------------------
' Retrieve VirtualSwitch
'-----------------------------------------------------------------
Function GetVirtualSwitch(friendlyName)
    dim query
    set GetVirtualSwitch = Nothing
    query = Format1("select * from Msvm_VirtualSwitch where ElementName = '{0}'", friendlyName)
    set GetVirtualSwitch= objWMIService.ExecQuery(query).ItemIndex(0)
End Function

'-----------------------------------------------------------------
' Retrieve VirtualSwitchPort
'-----------------------------------------------------------------
Function GetVirtualSwitchPort(switch, switchPortFriendlyName)
    dim query, switchPort, switchPorts
    set GetVirtualSwitchPort = Nothing
    query = Format1("ASSOCIATORS OF {{0}} WHERE resultClass = Msvm_SwitchPort", switch.Path_.Path)
    set switchPorts= objWMIService.ExecQuery(query)
    for each switchPort in switchPorts
        if lcase(switchPort.ElementName) = lcase(switchPortFriendlyName) then
            set GetVirtualSwitchPort = switchPort
        end if
    next
End Function

'-----------------------------------------------------------------
' Get Ethernet port
'-----------------------------------------------------------------
Function GetEthernetPort(NicFriendlyName)
dim strComputer, objWMIService, niccollecion, nic

set GetEthernetPort = Nothing

strComputer = "."
Set objWMIService = GetObject("winmgmts:\\" & strComputer & "\root\virtualization")
Set niccollecion = objWMIService.ExecQuery("SELECT * FROM CIM_LANEndpoint ",,48)

For Each nic in niccollecion

       if lcase(nic.ElementName) = lcase(NicFriendlyName) then
            set  GetEthernetPort = nic
     Wscript.Echo nic.ElementName
        end if
   
Next

    if (GetEthernetPort  Is Nothing) then
        WriteLog Format1("Unable to find specified NIC", NicFriendlyName)
        WScript.Quit(1)  
    end if
   
End Function

'-----------------------------------------------------------------
' Connect switch port with  Ethernet endpoint
'-----------------------------------------------------------------
Function ConnectSwitchPort(switchPort, lanEndpoint)
    dim objInParam, objOutParams
    ConnectSwitchPort = false
    set objInParam = switchService.Methods_("ConnectSwitchPort").InParameters.SpawnInstance_()
    objInParam.LANEndPoint = lanEndpoint.Path_.Path
    objInParam.SwitchPort = switchPort.Path_.Path

    set objOutParams = switchService.ExecMethod_("ConnectSwitchPort", objInParam)
   
    if objOutParams.ReturnValue = wmiSuccessful then
        ConnectSwitchPort = true
    else
        WriteLog Format1("ConnectSwitchPort failed with error code {0}", objOutParams.ReturnValue)
    end if

End Function

'-----------------------------------------------------------------
' Create the console log files.
'-----------------------------------------------------------------
Sub WriteLog(line)
    dim fileStream
    set fileStream = fileSystem.OpenTextFile(".\ConnectSwitchPort.log", 8, true)
    WScript.Echo line
    fileStream.WriteLine line
    fileStream.Close

End Sub

'------------------------------------------------------------------------------
' The string formating functions to avoid string concatenation.
'------------------------------------------------------------------------------
Function Format2(myString, arg0, arg1)
    Format2 = Format1(myString, arg0)
    Format2 = Replace(Format2, "{1}", arg1)
End Function

'------------------------------------------------------------------------------
' The string formating functions to avoid string concatenation.
'------------------------------------------------------------------------------
Function Format1(myString, arg0)
    Format1 = Replace(myString, "{0}", arg0)
End Function

Comments

  • Anonymous
    December 03, 2008
    The comment has been removed

  • Anonymous
    December 04, 2008
    Hi Bryant, it depends on which Networks/Subnets you connect your NICs. A common scenario is to have multiple NICs in the same host connected to the same subnet. You use one as dedicated for the host, but all the autocreated ones are then redundant. The host has then multiple ways to talk to the same subnet and will pick one he thinks to be the best one. No load balancing or failover will take place in this scenario though. It's not desireable that the host picks one of the autocreated ones. So in this configuration I'd recommend to disable them or use the script, so you don't get them in the first place. If your host needs to be multihomed in different subnets, you will need the autocreated NICs. Regarding security, if your VMs are connected via the switch to a "unsecure" network, having the autocreated NIC enabled, with bindings, exposes the host as well to this network. Just as without Hyper-V.. Cheers Robert

  • Anonymous
    December 06, 2008
    The comment has been removed