[ale] VMWare and Firewall
James P. Kinney III
jkinney at localnetsolutions.com
Mon Jun 4 15:40:47 EDT 2007
On Mon, 2007-06-04 at 15:13 -0400, Robert L. Harris wrote:
>
> That's a problem as some of the VM's are windows boxes and we don't want to trust
> them to protect themselves.
Turn off the network device on the virtual machine.
Since the VM device comes from the lo device, the vmnet device would
have to be disabled within the vmware application.
>
>
> Thus spake Jim Popovitch (yahoo at jimpop.com):
>
> > On Mon, 2007-06-04 at 15:01 -0400, Robert L. Harris wrote:
> > >
> > > It is bridged. I'm running the firewall on the host OS. So I would need
> > > to apply it to "vmnet1" or "vmnet8" ? running tcpdump on these interfaces
> > > doesn't show any traffic.
> >
> > You need to add iptables rules inside each virtual machine. The host
> > can not protect the bridged interface.
> >
> > -Jim P.
> >
> > _______________________________________________
> > Ale mailing list
> > Ale at ale.org
> > http://www.ale.org/mailman/listinfo/ale
>
> :wq!
> ---------------------------------------------------------------------------
> Robert L. Harris | GPG Key ID: E344DA3B
> @ x-hkp://pgp.mit.edu
> DISCLAIMER:
> These are MY OPINIONS With Dreams To Be A King,
> ALONE. I speak for First One Should Be A Man
> no-one else. - Manowar
>
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://www.ale.org/mailman/listinfo/ale
--
James P. Kinney III
CEO & Director of Engineering
Local Net Solutions,LLC
770-493-8244
http://www.localnetsolutions.com
GPG ID: 829C6CA7 James P. Kinney III (M.S. Physics)
<jkinney at localnetsolutions.com>
Fingerprint = 3C9E 6366 54FC A3FE BA4D 0659 6190 ADC3 829C 6CA7
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
More information about the Ale
mailing list