O'Reilly logo

VMware vSphere Security Cookbook by Mike Greer

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Configuring network isolation

As a rule, all storage traffic, regardless of the medium or protocol used, should be isolated from any and all management or client network traffic. The IP network segmentation should employ separate physical switches where possible. If a shared physical switch is used, then a VLAN should be used to isolate the iSCSI traffic from all other network traffic on the network. IP Security (IPSEC) is currently not supported for IPv4 iSCSI traffic.

We'll configure a separate vSwitch for iSCSI traffic, which is always the preferred method to isolate storage traffic and prevent commingling with management and VM network traffic.

Getting ready

In order to proceed, we require access to vSphere Web Client. The client can be run on ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required