Re: ESXi uses which Linux based/type firewall tool...

upg3 · ‎01-04-2016

We know in VSP4, ESX comes with a firewall that controls traffic into and out of the Service, which is based on the Linux iptables firewall.

Is there any similar firewall in VSP5.x or later version of ESXi as well???....i mean iptables or any such similar in Linux.

Thanks.

abhilashhb · ‎01-05-2016

ESXi 5.0 has a new firewall engine that is not based on iptables.

Some other important points about the firewall can be found in the below command.

VMware KB: About the ESXi 5.x and 6.0 firewall

Abhilash B
LinkedIn : https://www.linkedin.com/in/abhilashhb/

upg3 · ‎01-05-2016

Thanks Abhilash for your response and for the KB link.

From the KB article we come to know that ESXi 5.0 and later versions has a new firewall engine that is not based on iptables.

Any idea what is the new firewall engine named 5.0 onward and if it is based on or similar to any of such firewall tool used in Linux?

JarryG · ‎01-05-2016

ESXi is using its own firewall engine, which is *NOT* based on any linux filtering tool.

It is simply ESXi-firewall. It is very "basic", and lacks a lot of functionality of modern firewalls and can not be compared to iptables at all (not even to ipchains or ipfwadm). Personally I do not understand why VMware did not adopted iptables, but that was their decision. Ultimately, ESXi-firewall is not designed to serve as the only protection layer for ESXi...

_____________________________________________ If you found my answer useful please do *not* mark it as "correct" or "helpful". It is hard to pretend being noob with all those points! 😉

All

ESXi uses which Linux based/type firewall tool?