Enable/Configure/Disable services in the ESXi firewall


 

1.4a
1.4b
1.4c
1.4d
1.4e
 
Enable/Configure/Disable services in the ESXi firewall
You can take measures to promote a secure environment for your ESXi hosts, virtual machines, and iSCSI SANs. Consider network configuration planning from a security perspective and the steps that you can take to protect the components in your configuration from attack.

From the ESXi Shell you can configure ESXi firewall using command line strings such as:
      esxcli network firewall set --enabled

to enable/disable the ESXi firewall.

The ESXi firewall configurations are stored in the /etc/vmware/firewall/ directory in XML format.

Enable/Configure/Disable services in the ESXi firewall via vSphere client

  1. Log in to a vCenter Server system using the vSphere Client.
  2. Select the host in the inventory panel.
  3. Click the Configuration tab and click Security Profile under the Software pane.
  4. In the right hand pane select Properties to the right of the Firewall section
  5. Check or uncheck the services you wish to enable or disable
  6. Click OK
  
 

References:

  • http://pubs.vmware.com/vsphere-50/index.jsp?topic=/com.vmware.vsphere.resmgmt.doc_50/GUID-98BD5A8A-260A-494F-BAAE-74781F5C4B87.html
  • http://blogs.vmware.com/security/2008/02/keeping-your-vm.html
  
 
1.4a
1.4b
1.4c
1.4e