ESXi 5.0 Firewall Features
Capabilities
• ESXi 5.0 has a new firewall engine
• The firewall is service oriented, an
• Users have the ability to restrict a
IP address/Subnet Mask.
Management
• The GUI for configuring the firewa
with the classic ESX firewall — cu
firewall should not have any difficu
• There is a new esxcli interface (e
5.0).
• There is Host Profile support for th
• Customers who upgrade from Cla
firewall settings preserved.
51
e which is not based on iptables.
nd is a stateless firewall.
access to specific services based on
all on ESXi 5.0 is similar to that used
ustomers familiar with the classic ESX
ulty with using the ESXi 5.0 version.
esxcfg-firewall is deprecated in ESXi
he ESXi 5.0 firewall.
assic ESX to ESXi 5.0 will have their
UI: Security Profile
The ESXi Firewall can be manage
Through the Configuration > Secu
Enabled Incoming/Outgoing Serv
each service & the Allowed IP Lis
52
ed via the vSphere client.
urity Profile, one can observe the
vices, the Opened Port List for
st for each service.
VMware vShield – Foundation fo
Securing the Cloud From Edge to E
vShield Edge vShield App
Secure the edge of Protect applications from
the virtual datacenter threats with trust zones
Virtual V
Datacenter 1
Web
DMZ
VMware vShield Manager
53
or Trusted Cloud vShield Data
Security
Endpoint
Protect against
vShield Endpoint data leaks
Streamline and accelerate
anti-virus solutions
Virtual Datacenter 2 PCI
HIPAA
Questions /
54
Comments
Accelerating the Journe
Via Virtualization
Mike Pinelli - mpinelli@vmware.com
James Lewis – jblewis@vmware.com
ey to The Cloud
© 2010 VMware Inc. All rights reserved
Bring Cloud Architecture to Exis
Leverage virtualization to transform physical
Increase automation thru built-in policy-drive
56
sting Datacenters
silos into elastic, virtual capacity
en management
Compute
Storage
Network
Bring Cloud Architecture to Exis
Leverage virtualization to transform physical
Increase automation thru built-in policy-drive
Move from static, physical security to dynam
57
sting Datacenters
silos into elastic, virtual capacity
en management
mic, embedded security
Compute
Storage
Network
Bring Cloud Architecture to Exis
Leverage virtualization to transform physical
Increase automation thru built-in policy-drive
Move from static, physical security to dynam
Enable secure, self-service to pre-defined IT
Users & Policies Organization: Marketing Catalogs
Organization VDCs
58
sting Datacenters
silos into elastic, virtual capacity
en management
mic, embedded security
T services, with pay-for-use
Users & Policies Organization: Finance Catalogs
Organization VDCs
Compute USE
Storage
Network $
The words you are searching are inside this book. To get more targeted content, please make full-text search by clicking here.
2 Agenda Introductions What is the Cloud? Your Cloud? VMware’s Cloud Solution Overview Case Studies vSphere 5 Update Cloud Solution and Security
Discover the best professional documents and content resources in AnyFlip Document Base.
Search