Hi;
I wanted to know if there is a way to exploit the communication between Guest OS and ESX Server.
Any tty/debug port or something else where I can talk on shell to a guest os from ESX with the loggging into the system.
There has to be way cause the ESX ui gui vmware is able to display the vm machines so there has to be a way based on the machine id or somethign rather than IP Address.
That would tend to run contrary to the isolation of the VMs as a security feature. From the COS you can adjust the state of the VMs in may ways, you can even change the hardware configurations, but as to being able to say stop and start a Windows service on a windows VM or open a shell on a Unix VM. I do not think this can be done but like many things in life someone else may know better.
If I have misunderstood your request I am sorry.
Hi;
I am having a problem where I want to update the IP and HOSTNAME automatically from the ESX Server.
so that is why I asked this question ..
Hello,
This is not possible from ESX itself, however you can use the VIX API to do this through some other means.
The ESX COS can not see inside the VM through any API. Communication via the VMware Backdoor is actually a one sided query from within the VM not the other way around.
What you describe wanting to do would a very serious security issue. I would investigate VIX as a way to do this, or perhaps some other scripted mechanism provided by the Guest OS in use.
Best regards,
Edward L. Haletky
VMware Communities User Moderator
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs: http://www.astroarch.com/wiki/index.php/Blog_Roll
Top Virtualization Security Links: http://www.astroarch.com/wiki/index.php/Top_Virtualization_Security_Links
Hi;
Thx for the answer ;
here is what I intend to do ..
from ESX server create automatic win or rhel cones automatically.(This step is completed).
Now the step which is not completed is that how can I easily set up/change the hostname and ip address of these clones.?
This is what I intend to do and thus would allow me to create VMs automatically and destroy them when not using.
My current setup is I am using ESX 3.5 and I call the vmware-cmd and vmkfstools interface to clone my systems.
Any better way to automatcially change the hostname and upaddress would be helpful.
Thx u
I do the same thing and have done a bit of research into renaming the machines after they are cloned. It would require the ability to at least attach to the machine and access WMI (on windows virtuals). Therefore, it would probably require a scripting/programming language that can create and use wmi objects. I will do a bit more research into this. I don't know if it's possible or if it's something I'm willing to tackle right now.
The only definite way I know of, since I work for Altiris (now Symantec), is to use the Altiris Deployment Solution or its ASDK to create an image of a new virtual machine and do a post-imaging configuration job.
Hi,
already gave you the answer on this: use VIX.
Here's an example of retrieving IP addresses:
http://www.vi-toolkit.com/wiki/index.php/Vmrun_return_all_IPs_for_running_VMs
It would be trivial to change that code into what you want to do, eg. set hostname and IP.
--
Wil
_____________________________________________________
Visit the new VMware developers wiki at http://www.vi-toolkit.com
Thanks, but VIX (and vmrun) doesn't exist in ESX 3.5. See: http://communities.vmware.com/thread/173575. There is no vmrun command on my esx 3.5 server, at least that I can see. Everything indicates that there is no way to run a process, copy files to/from a guest, etc. from the esx shell.
That correct - there is no current way to do what you want to do.
--Matt
I remember when I took my install and configure class the presenter made a point of how ESX was the only Visualization platform that the U.S. military would use where secure and insecure systems would run in the same physical resource pool. So it is not a matter that ESX could not be made to do it if Vmware really wanted to, but that it is a selling point that it can't
Hi,
It depends.. the thread you are referencing is from last October, it is a bit of a chicken and egg problem
If you are looking for a solution that must work on the long run.. VIX is your answer.. if you need an answer now.. I'm not sure there is one. (There's always an answer, but I can't help you as I simply do not have the time to investigate further)
No it still isn't officially supported as in there's no VIX in VMware ESX itself yet.. however..
It can be done using VIX... see also:
http://blogs.vmware.com/vix/2008/07/what-is-vix-and.html
A special note on managing VMware ESX with VIX.
Starting with VIX 1.5 and VMware ESX 3.5 update 1, it is possible to manage VMware ESX using VIX
As your request is bit of a trivial one, why not approach it in another way? For example, to name a few wild ideas (not so wild really) Set the IP using DHCP tagged on mac address or hostname. You can set mac address in the vmx file.
Get the hostname from a CD rom image that you automatically attach to the VM upon first boot or use PXE.. there's many roads to get to Rome.
--
Wil
_____________________________________________________
Visit the new VMware developers wiki at http://www.vi-toolkit.com
Hello,
The latest VIX works with ESX. Do not expect everything to work however.
Best regards,
Edward L. Haletky
VMware Communities User Moderator
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs: http://www.astroarch.com/wiki/index.php/Blog_Roll
Top Virtualization Security Links: http://www.astroarch.com/wiki/index.php/Top_Virtualization_Security_Links
If it is a linux vm that you are cloning, you can install sshd on it. Then when your script is done cloning you script ssh to edit the text files that hold this information, then you restart the network daemon. What files you have to change is dependent on what distrobution you are using. There are a lot of details I am not explaining but it is definately doable.
With a Windows VM it is probably trickier, although I imagine you could mount the vmdk from another vm and mount the registry to change the network settings. Scripting all this is the tricky part.
Good luck!
Can anyone please mention how to restart the network daemon? It would be kind if you can mention the command
Hello,
Moved to Virtual Machine and Guest OS forum.
To restart the LINUX network daemon within RHEL use:
service network restart
Best regards,
Edward L. Haletky
VMware Communities User Moderator
====
Author of the book 'VMWare ESX Server in the Enterprise: Planning and Securing Virtualization Servers', Copyright 2008 Pearson Education.
Blue Gears and SearchVMware Pro Blogs -- Top Virtualization Security Links -- Virtualization Security Round Table Podcast