VMware Cloud Community
VMwareVSphere20
Contributor
Contributor

Noob requires help

Hi,

As my subject says, I require your help to resolve my Issue.

Here goes my scenario.......

I was asked to install ESXi 4 on a HP Blade server with 2 Physical NIC's on it, for 3 VM's (one of them must be accessable to the public, cos I am hosting IIS Apps on it).

The condition is, the VM's must be available from both LAN and Public

Help me out in resolving this.

Thanks

Bain.

Reply
0 Kudos
3 Replies
mittim12
Immortal
Immortal

Welcome to the forums.  I have moved your thread over to the network forum for better visibility.     Have you thought about using VLAN trunking?     I have linked a pdf on VMware networking.  It's a little dated but it explains the concepts very well.

http://www.vmware.com/pdf/esx3_vlan_wp.pdf

Reply
0 Kudos
AndreTheGiant
Immortal
Immortal

As written, VLAN could be the solution.

For for general info on virtual networking see also: http://www.vmware.com/files/pdf/virtual_networking_concepts.pdf

Andre

Andrew | http://about.me/amauro | http://vinfrastructure.it/ | @Andrea_Mauro
Reply
0 Kudos
Texiwill
Leadership
Leadership

Hello,

I would introduce another VM that acts as a firewall. I would then create a DMZ off that firewall for the IIS apps, then an 'internal' network for your other VMs. One such firewall that does this quite well is Smoothwall, but you can also use Vyatta, IPcop, m0n0wall, etc.

one NIC would be for 'administration' while the 2nd NIC would be for the firewall

NICA <-> vSwitch <-> Admin POrtgroup <-> vmknic for ESXi/vswif for ESX

NICB <-> vSwitch <-> FW Portgroup <-> vNIC(ext) <-> vFW <-> vNIC (int) <-> InternalPG <-> Internal vSwitch

                                                                                        <-> vNIC (dmz) <-> DMZPG <-> DMZ vSwitch       

This way you make the best use of your 2 NICs and have a protected environment at the same time. Definitely review the documents provided as they will help you understand virtual networking.

Best regards,

Edward L. Haletky

Communities Moderator, VMware vExpert,

Author: VMware vSphere and Virtual Infrastructure Security,VMware ESX and ESXi in the Enterprise 2nd Edition

Podcast: The Virtualization Security Podcast Resources: The Virtualization Bookshelf

--
Edward L. Haletky
vExpert XIV: 2009-2023,
VMTN Community Moderator
vSphere Upgrade Saga: https://www.astroarch.com/blogs
GitHub Repo: https://github.com/Texiwill
Reply
0 Kudos