Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 9 replies
  • Subscribers 2 subscribers
  • Views 4467 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Filter traffic between Virtual Machine

lferrara
Hi All, 

I need your help to setup my Vmware environment. I have 2 Esxi 5 Servers running several virtual machine in the same Lan(192.168.1.0/24) and I would like to packet filter traffic between them. How can I accomplish this goal with Astaro? 
I have 2 option:

use my external ASG 220 that connect the entire environment to Internet or configure an Astaro Virtual Machine.

I have looked around for a documentation without any luck.

Please Help!

Thank you.


This thread was automatically locked due to age.
Parents
  • 0
    You can do that with a free Essential Firewall license.  I would think you could accomplish this with a VM with a single NIC.  You would need to change the routing in each VM to have the IP of the Astaro VM be the gateway for traffic to the other VMs.  Then, just make firewall rules that allow the specific traffic you want.

    Did that work?

    Cheers - Bob
  • 0 in reply to BAlfson
    I will try the solution and let you know.

    Thank you Balfson for your help!
Reply Children
  • 0 in reply to lferrara
    Hi Bob, I tried your solution in this way:

    1. Created a Astaro VM with 2 nic, internal(192.168.20.254/24) and external    (192.168.1.254/24)

    2. Created 2 VSwitch, internal-only and external. 
    3. Mapped the Astaro internal nic on internal VSwitch and the external nic VSwitch external
    4. Created 2 VM mapped on internal VSwitch(192.168.20.201,192.168.20.202 both /24 mask and dg:192.168.20.254)

    The 2 ESXi are in HA configuration. So All the VM are on 1 ESXi.

    Both VM comunicates and traffic is not passing through Astaro, only external traffic is dropped.
    [:S]
    Thank you.