Lets Design, Implement and do Administration of ESX3

Virtualization with VMWare Infrastructure 3.0

How To determine the service console firewall security level

Posted by Preetam on June 5, 2007

Log on to the service console and acquire root privileges.

Execute these two commands to determine whether incoming and outgoing traffic is blocked or  allowed:

esxcfg-firewall -q incoming

esxcfg-firewall -q outgoing

Interpret the results as follows:

Command Line Response Security Level

Incoming ports blocked by default. High

Outgoing ports blocked by default.

Incoming ports blocked by default. Medium

Outgoing ports not blocked by default.

Incoming ports not blocked by default. Low

Outgoing ports not blocked by default.

 

To set the service console firewall security level

Log on to the service console and acquire root privileges.

Execute one of the following commands as applicable.

To set the service console firewall to medium security:

esxcfg-firewall –allowOutgoing –blockIncoming

To set the virtual firewall to low security:

esxcfg-firewall –allowIncoming –allowOutgoing

To return the service console firewall to high security:

esxcfg-firewall –blockIncoming –blockOutgoing

Execute the following command to restart the vmware-hostd process:

service mgmt-vmware restart

Advertisements

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: