VMware Cloud Community
mnovey
Contributor
Contributor
‎01-18-2010 01:54 PM

Disk Encryption on VMWare ESX 3.5

I am setting up an ESX 3.5 server that will serve as a replication server for our VMs. This will be stored at a remote unmanned site. I am concerned about the security of the data should the site be vandalized and the server stolen. Is there a solution for securing the hard drives via some type of full disk encryption or via any other means such that it would render the data useless in the event of the theft.

Clearly I dont want anyone to be able to hack the box and access sensitive data that is contained in the VMs. I have explored this with our disk encryption vendor, WinMagic, as well as a few others and don't see anything out there that can encrypt outside the VM at the disk level. I am open for any suggestions. Thanks.

0 Kudos
5 Replies
AndreTheGiant
Immortal
Immortal
‎01-19-2010 09:26 AM

How do you copy the VM on the remote site?

Do you need to have the VM playable on the remote site?

Which kind of guest OS are you using?

VMFS does not have encryption function, so or you protect the VM files from the COS (but in this case the VM will be not playable) or your protect the data from the guest OS.

Andre

Andrew | http://about.me/amauro | http://vinfrastructure.it/ | @Andrea_Mauro
0 Kudos
AntonVZhbankov
Immortal
Immortal
‎01-19-2010 10:46 PM

You can encrypt disks on storage level or guest OS level. ESX can not encrypt disks.


---

MCSA, MCTS, VCP, VMware vExpert '2009

http://blog.vadmin.ru

EMCCAe, HPE ASE, MCITP: SA+VA, VCP 3/4/5, VMware vExpert XO (14 stars)
VMUG Russia Leader
http://t.me/beerpanda
0 Kudos
mnovey
Contributor
Contributor
‎01-20-2010 06:47 AM

We are using VizionCore's replicator software. I am not replicating a guest OS that is encrypted so I need to encrypt outside of that at the disk level preferably.

0 Kudos
mnovey
Contributor
Contributor
‎01-20-2010 12:30 PM

I need to encrypt at the disk level if possible. The replication ESX server is just using local storage. We dont have a SAN at that site. What app can support disk encryption on a server running ESX 3.5? Or do I need to simply purchase some basic iSCSI appliance that offers encryption at the disk level if there are any out there supporting this.

0 Kudos
AndreTheGiant
Immortal
Immortal
‎01-22-2010 04:19 AM

You can try with a NFS (or iSCSI) NAS that has this feature to use as a datastore for the remote site.

Andre

Andrew | http://about.me/amauro | http://vinfrastructure.it/ | @Andrea_Mauro
0 Kudos