Jump to content



Photo

  • Please log in to reply
3 replies to this topic

#1 ReMad

ReMad

    Neowinian

  • Joined: 04-March 05

Posted 12 October 2012 - 14:54

Hello All

I need to convert some Physical to Virtual servers

2 ESXi's for the servers with their normal trafic

and

2 ESXi Servers will host the Servers with DMZ network

so need the following

I need some exaples which describes configuration for the first 2 esxis

and for DMZ showing configuration for DMZ network


about DMZ , what will happen when converting 1 server and how it will access the remaining physical servers if not converted yet

about upgrade manager

what is the difference of having it since the converting tool is seperate and can work without update manager installed ?


#2 sc302

sc302

    Neowinian Senior

  • Tech Issues Solved: 23
  • Joined: 12-July 05
  • Location: NJ, USA

Posted 12 October 2012 - 15:43

Why have separate servers for the dmz? why not have separate nics for the dmz?

Once the servers are in their sand box they do not communicate with anything other than the host os.


The servers in a virtual environment are like servers in a physical environment except you have software assigning hardware vs physical presence of hardware.

You can have multiple servers hosting an array of servers, dmz, non dmz, db, etc....all of the servers will exist on a san and have no physical presence. The network is the network, nic 1 can be dedicated to your secure network and only servers 1,2, and 6 have access to that network card. Nic2 can be dedicated to your dmz and only servers 3,4,and 5 have access to that. You configure all of that through your hypervisor.


I am not sure exactly what you mean with the last question... but the servers even if virtualized have no bearing on not being able to be accessed.

#3 +ChuckFinley

ChuckFinley

    member_id=28229

  • Joined: 14-May 03

Posted 12 October 2012 - 16:33

Why have separate servers for the dmz? why not have separate nics for the dmz?

Once the servers are in their sand box they do not communicate with anything other than the host os.


The servers in a virtual environment are like servers in a physical environment except you have software assigning hardware vs physical presence of hardware.

You can have multiple servers hosting an array of servers, dmz, non dmz, db, etc....all of the servers will exist on a san and have no physical presence. The network is the network, nic 1 can be dedicated to your secure network and only servers 1,2, and 6 have access to that network card. Nic2 can be dedicated to your dmz and only servers 3,4,and 5 have access to that. You configure all of that through your hypervisor.


I am not sure exactly what you mean with the last question... but the servers even if virtualized have no bearing on not being able to be accessed.


Exactly!

#4 OP ReMad

ReMad

    Neowinian

  • Joined: 04-March 05

Posted 12 October 2012 - 19:14

Why have separate servers for the dmz? why not have separate nics for the dmz?

Once the servers are in their sand box they do not communicate with anything other than the host os.


The servers in a virtual environment are like servers in a physical environment except you have software assigning hardware vs physical presence of hardware.

You can have multiple servers hosting an array of servers, dmz, non dmz, db, etc....all of the servers will exist on a san and have no physical presence. The network is the network, nic 1 can be dedicated to your secure network and only servers 1,2, and 6 have access to that network card. Nic2 can be dedicated to your dmz and only servers 3,4,and 5 have access to that. You configure all of that through your hypervisor.


I am not sure exactly what you mean with the last question... but the servers even if virtualized have no bearing on not being able to be accessed.


ok thanks

but i was asking about configuration

so do we need to use Private vlans for DMZ ( different Communities for different Servers ) or what exactly

could you explain some more details about Configuration

about having dmz servers different than the normal ones , this is the situation i found

i know using the servers for all can garuntee better optimization especially that they are few dmz servers compared to the other ones

for the Nexus 1000v

what will the configuration for DMZ look like ?

Thanks



Click here to login or here to register to remove this ad, it's free!