Hi My question and doubts about ESXi is that this a free edition, not a license version. I will not use HA, DRS or vMotion, so I think is ok, but need a second opinion on this.
Regarding my DMZ and connections. This ESXi will have 4 or 5 VMs and one VM that is the ISA Server. And the host will have 8 pNICs ports(2 quad port PCIe Adapter).
This is what I think needs to be done.
I will create one vSwitch(lets named Internet) and add 1/2 pNICs into this vSwitch and connect into the router. Then in the ISA VM I will add one virtual adapter into this vSwitch that I will use as the External.
Until here I think is ok, next step is my doubts.
I will have a VM Webserver that will receive the connections and will be publish to Internet from the ISA Server. Do I need to create another vSwitch call DMZ and put this sever on it, and also create another adapter on the ISA VM and connect into this vSwitch?
And with this I can add all the Servers that I need to put in the DMZ? If yes, ok this is fix it.
Now I have my Internal LAN. I will create another vSwitch call VM Network. In this vSwitch I will use all my internal VMs(DCs, Exchange, SQL, etc.). I think I need to create another Virtual Adapter in the ISA VM and connect into this vSwitch, that will be used as the Internal.
Question.
In this design, how can I connect the VM webserver into the SQL? Do I need to create another Virtual Adapter in the VM WebServer and connect into the vSwitch VM Network? Is this correct? Is this ok?
How can the Internal Network connect to this Server safely?
I know I can use VLAN(I do not know how to set, but I know that we can do this), but for VLANs do I need to have a physical Switch config with VLANs also?? On the ports where this NICs connect?
Or I can use the ESXi and the vSwitch to create this VLAN(internally) without have any Switch for this?
Sorry all the questions, but this is the part I still not understand.
Thank You
