VMware Cloud Community
andy_l
Contributor
Contributor
‎04-04-2010 05:36 AM

ESXi with DMZ config

Hi

I'm currenty setting up a ESXi 4.0 server that will be used for hosting my home lab, mailserver, etc.

Currently I've been running a setup with one physical NIC, handling the managment network and LAN connection. I'm now about to add a second NIC that would be used for my DMZ, so I can virtualize my SMTP rely and webserver.

The plan was to add a new virtual switch that that handles the DMZ network This vSwitch is then bound to the second NIC that is connected to the DMZ port of my firewall. So to sumarize, physical NIC1 is connected to my LAN and physical NIC2 is connected to my DMZ port on the firewall.

Is this a correct setup? Keep in mind, this is a single ESXi box just hosting my LAB/Home servers.

/Andy.l

Tags (2)
0 Kudos
2 Replies
athlon_crazy
Virtuoso
Virtuoso
‎04-04-2010 07:46 AM

Nothing wrong with the setup if you do port based isolation network. But with 2x vmnic, I'll do network isolation based on subnet and configure redundancy on vmnic for DMZ & LAN on same vSwitch (active/standby and vice versa) as below :

LAN - vmnic0 active, vmnic1 standby

DMZ - vmnic1, active, vmnic0 standby






vcbMC-1.0.6 Beta

vcbMC-1.0.7 Lite

http://www.no-x.org

http://www.no-x.org
0 Kudos
andy_l
Contributor
Contributor
‎04-05-2010 03:23 AM

What do you mean by port based isolation network?

/Andy

0 Kudos