VMware Cloud Community
Sherlock02
Contributor
Contributor

Configuring vNetowrks for virtual firewall

Hello,

I am looking to use Vyatta to act as a firewall to a set of VMs in vSphere. The goal of this is to create a development virtual network with that is restricted to the internet. If someone could provide guidance as to what would needed to be configured on the network side in vSphere that would be great. I am not quite sure how to go about this.

0 Kudos
2 Replies
srinivass
Contributor
Contributor

If Cisco Nexus 1000V is used with VMWare, it's latest release has Virtual Service Domain Feature supported. VSD feature will support third party virtual firewall appliance, provided the Virtual appliance meets the VSD requirements.

The following link details the VSD configuration

http://www.cisco.com/en/US/docs/switches/datacenter/nexus1000/sw/4_0_4_s_v_1_2/security/configuratio...

In the above link, the ServiceVM is the third party virtual firewall appliance.

Srini.

0 Kudos
Texiwill
Leadership
Leadership

Hello,

Best way with VMware vSwitches (not Nexus)

Internet <-> pSwitch <-> pNIC <-> vSwitch <-> portgroup <-> Vyatta <-> portgroup <-> 2nd vSwitch <-> pNIC <-> Development network

If you substitute Internet for Production that will also work.


Best regards,
Edward L. Haletky VMware Communities User Moderator, VMware vExpert 2009

Now Available: 'VMware vSphere(TM) and Virtual Infrastructure Security'[/url]

Also available 'VMWare ESX Server in the Enterprise'[/url]

Blogging: The Virtualization Practice[/url]|Blue Gears[/url]|TechTarget[/url]|Network World[/url]

Podcast: Virtualization Security Round Table Podcast[/url]|Twitter: Texiwll[/url]

--
Edward L. Haletky
vExpert XIV: 2009-2023,
VMTN Community Moderator
vSphere Upgrade Saga: https://www.astroarch.com/blogs
GitHub Repo: https://github.com/Texiwill
0 Kudos