search

VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API Manual de usuario Pagina 10

  • Descarga
  • Añadir a mis manuales
  • Imprimir
  • Pagina
    / 30
  • Tabla de contenidos
  • MARCADORES
    • Valorado. / 5. Basado en revisión del cliente
Vista de pagina 9
vShield Quick Start Guide
10 VMware, Inc.
Deployment Scenarios
UsingvShield,youcanbuildsecurezonesforavarietyofvirtualmachinedeployments.Youcanisolatevirtual
machinesbasedonspecificapplications,networksegmentation,orcustomcompliancefactors.Onceyou
determineyourzoningpolicies,youcandeployvShieldtoenforceaccessrulestoeachofthesezones.
Protecting the DMZ
TheDMZisamixedtrustzone.ClientsenterfromtheInternetforWebandemailservices,whileservices
withintheDMZmightrequireaccesstoservicesinsidetheinternalnetwork.YoucanplaceDMZvirtual
machinesinaportgroupandsecurethatportgroupwithavShieldEdge.vShield
Edgeprovidesaccess
servicessuchasfirewall,NAT,andVPN,aswellasloadbalancingtosecureDMZservices.
AcommonexampleofaDMZservicerequiringaninternalserviceisMicrosoftExchange.MicrosoftOutlook
WebAccess(OWA)commonlyresidesintheDMZcluster,whiletheMicrosoftExchangebackendis
inthe
internalcluster.Ontheinternalcluster,youcancreatefirewallrulestoallowonlyExchanged relatedrequests
fromtheDMZ,identifyingspecificsourcetodestinationparameters.FromtheDMZcluster,youcancreate
rulestoallowoutsideaccesstotheDMZonlytospecificdestinationsusingHTTP,FTP,
orSMTP.
Isolating and Protecting Internal Networks
YoucanuseavShieldEdgewiththePortGroupIsolationfeaturetoisolateaninternalnetworkfromthe
externalnetwork.AvShieldEdgeprovidesperimeterfirewallprotectionandedgeservicestosecurevirtual
machinesinaportgroup,enablingcommunicationtotheexternalnetworkthroughDHCP,NAT,andVPN.
Within
thesecuredportgroup,youcaninstallavShieldAppinstanceoneachESXhostthatthevDSspansto
securecommunicationbetweenvirtualmachinesintheinternalnetwork.
IfyouutilizeVLANtagstosegmenttraffic,youcanuseAppFirewalltocreatesmarteraccesspolicies.Using
AppFirewallinstead
ofaphysicalfirewallallowsyoutocollapseormixtrustzonesinsharedESXclusters.By
doingso,yougainoptimalutilizationandconsolidationfromfeaturessuchasDRSandHA,insteadofhaving
separate,fragmentedclusters.ManagementoftheoverallESXdeploymentasasinglepoolislesscomplex
thanhavingseparatelymanagedpools.
Forexample,youuseVLANstosegmentvirtualmachinezonesbasedonlogical,organizational,ornetwork
boundaries.LeveragingtheVirtualInfrastructureSDK,thevShieldManagerinventorypaneldisplaysaview
ofyourVLANnetworksundertheNetworksview.YoucanbuildaccessrulesforeachVLAN
networkto
isolatevirtualmachinesanddropuntaggedtraffictothesemachines.
Vista de pagina 9
1 2 ... 5 6 7 8 9 10 11 12 13 14 15 ... 29 30

Comentarios a estos manuales

Sin comentarios
Relacionado con productos y manuales para Manuales de software VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API
Manuales de software VMware VCENTER APPLICATION DISCOVERY MANAGER 6.1 - REPOSITORY Guía de usuario   (74 paginas)
Manuales de software VMware VCENTER APPLICATION DISCOVERY MANAGER 6.1 - REPOSITORY Especificaciones   (309 paginas)
Manuales de software VMware VSHIELD MANAGER 4.1 - API Manual de usuario   (30 paginas)
Manuales de software VMware CLOUD DIRECTOR 1.0 Guía de usuario   (104 paginas)
Manuales de software VMware CLOUD DIRECTOR 1.0 Manual de usuario   (34 paginas)
Manuales de software VMware VCM 5.3 Manual de usuario   (31 paginas)
Manuales de software VMware VCLOUD REQUEST MANAGER 1.0.0 Especificaciones   (37 paginas)
  • Greenstar Radio Systems Sim2 Unix CCTV McCauley Sound
  • Beurer Monitores de ritmo cardíaco TP-LINK Routers Brainboxes Adaptadores De Interfaz / Cable De Género Hitachi Teléfonos Graco Columpios para bebés
  • Asus P5P800 SE Rolsen RL-15S10 Electrolux EMS2485X Electrolux EWT811 AEG HK854870XB
  • Casio EX-Z80 Manual de usuario Mercedes-Benz 2011 ML-Class Manual de usuario Whirlpool AKZM 784/NB Instrucciones de uso Philips FC8474/01 Manual de usuario Sony DSC-W530 Manual de usuario