VMware and DMZ

Home
Topics
Server virtualization infrastructure and architecture
Network virtualization
VMware and DMZ

VMware and DMZ

As with many IT shops, an on-going consideration is being discussed sharing a VMware ESX host with Internet and Intranet facing guests running Windows 2000 Web sites. What is the risk of having the same ESX host, serving up Internet facing content, while having other guests on the same host serving up Intranet type Web and applications services? What are the proposed methods in using VMware in a DMZ?

Requires Free Membership to View

Login

When you register, my team of editors will also send you the latest expert resources covering all areas of server virtualization, such as platforms, architectures and strategies, server hardware, managing virtual environments, application issues and more.

Cathleen A. Gagne, Senior Editorial Director

By submitting your registration information to SearchServerVirtualization.com you agree to receive email communications from TechTarget and TechTarget partners. We encourage you to read our Privacy Policy which contains important disclosures about how we collect and use your registration and other information. If you reside outside of the United States, by submitting this registration information you consent to having your personal data transferred to and processed in the United States. Your use of SearchServerVirtualization.com is governed by our Terms of Use. You may contact us at webmaster@TechTarget.com.

The risk for such a venture is proportionate to the amount of trust you place in VMware ESX's networking stack. If you place the Internet and Intranet hosts on a separate Virtual Switch (or port group) and turn off promiscuous mode, IP spoofing, and MAC spoofing, then you will have architected the most secure networking design possible with ESX. However, if you are wary of the goings-on of how VMware has implemented all of this under the covers, then an alternative design would be to segregate ESX servers not just by access to shared storage (the typical segregation decision), but also by role (Internet, Intranet). If you would like to know more please feel free to email me. Hope this helps!

Dig Deeper

People who read this also read...
Related tags
- dmz

Show me more

This was first published in November 2007

More from Related TechTarget Sites

VMware
Windows Server
Cloud computing
Virtual Desktop
Data Center

VMware
- Using VMware Fusion for Mac to get more from your Windows VM
  
  VMware Fusion for Mac is a boon for IT pros that work with various OSes. VMware Fusion 4, in particular, can create snapshots and allow a Windows VM to use built-in Mac devices.
- VMware ESXi security FAQ: Guarding the hypervisor, hosts and more
  
  As the sole hypervisor of vSphere 5, you need to know the ins and outs of VMware ESXi, especially when it comes to securing the hypervisor and ESXi hosts.
- Storing VMware ESXi syslog events on a remote Linux server
  
  Designating a remote Linux server to record VMware ESXi syslog events allows you to access that important information, even if the ESXi host crashes.
Windows Server
- Managing access control with Windows Rights Management Services
  
  Active Directory's Rights Management Services is a good way of managing access to data, but there are caveats.
- Bringing Windows RDS to the web: Designing the DMZ
  
  Remote Desktop Gateway secures Internet access for Remote Desktop Services applications – if you set it up properly.
- Deciding between blade and rack-mount gear for Windows Server 2008
  
  Are you looking for scalability or performance? It's important to understand your needs before choosing a Windows Server hardware solution.
Cloud computing
- Keys to integrated cloud application management
  
  Seamless cloud application management isn’t a pipe dream. By following a few steps, cloud admins can monitor cloud app performance from one interface.
- Cloud infrastructure providers remain hot commodities
  
  Cloud infrastructure providers attracted acquisitive suitors last year. Profitable cloud vendors this year will catch the eye of telecoms.
- Digging deeper into IBM SmartCloud for private clouds
  
  IBM SmartCloud services give enterprises some options to build private and hybrid clouds and may give IBM a chance to improve its lagging cloud image.
Virtual Desktop
- Defining VDI users: Who should really be using virtual desktops?
  
  To figure out whether your company really needs VDI, break down who your potential VDI users are and what exactly they need.
- How virtual desktops enhance a virtualization disaster recovery strategy
  
  When disaster strikes a virtual infrastructure, it's a mad dash to get apps back on track. But with virtual desktops in your DR strategy, you won't be out of breath.
- VMware vSphere Storage Appliance could lower the cost of small VDI
  
  Using the vSphere Storage Appliance with VMware View could help small VDI implementations save money up front and make it easier to grow.
Data Center
- HP previews ProLiant refresh as users eye Cisco UCS
  
  HP touts new management capabilities for the forthcoming Generation 8 of its ProLiant servers, but some users say they are already looking elsewhere.
- DevOps, Opscode Chef automate online auction site’s private cloud
  
  A darling of the DevOps crowd, the Opscode Chef cloud configuration and automation tool is now the central point of IT control for MercadoLibre’s sprawling online auction site.
- Data center experts push back on ASHRAE economizer requirements
  
  An addendum to the ASHRAE 90.1-2010 energy standard could ease energy efficiency requirements on anyone building or significantly expanding data centers in the U.S.

All Rights Reserved, Copyright 2006 - 2012, TechTarget