2/27/2008 - Firewall VMs and Virtual Switch Security - Comments

On the Tech Tues chat yesterday a question came up about setting up a firewall VM by connecting one of the NIC ports on the ESX server to external Internet. The question was - Is this a good idea? Is it secure? What is the best practice?

I did a little research this morning and found a white paper from VMware that mentions the exact scenario of having one VM connected externally and acting as a firewall. On page six of VMware Networking Concepts (located at http://www.vmware.com/files/pdf/virtual_networking_concepts.pdf ) there is a diagram and discussion about it.

There is another VMware doc titled ESX 3 Best Practices Guide that I found attached to a VMTN discussion ( http://communities.vmware.com/message/861839#861839) that covers networking best practices. It also has the same recommendation that using virtual switches is very secure and allows for things like firewalls to be setup in a VM.

Todd

Latest page update: made by todd_muirhead , Jul 9 2008, 1:07 PM EDT (about this update - complete history)

Keyword tags:

More Info: links to this page

Bookmark:

Del.icio.us

StumbleUpon Facebook

Post a new thread

Threads

There are no threads for this page.

JavaScript must be enabled in order for you to contribute to this wiki.
To start contributing, enable JavaScript by changing your browser options, then try again.

Wiki pages

Home

Top Contributors

Subject:
Message:
Quote:
Keyword tags:

2/27/2008 - Firewall VMs and Virtual Switch Security - Comments

Threads

Start a New Thread as Reply as Anonymous (Get credit for your thread)