Hi all, i'm trying to block a virtual machine from accessing only the internal network. The host on the other hand can go to the internet with the rules already in place in hips.
Is there a way to do this ? I've seen some stuff about blocking for a process ( vmware-vmx.exe ) but the result is not clear since in the thread there is no definite anwser.
HIPS 8.0 has the ability to define Source and Destination in Firewall rules. You could try BLOCK OUTGOING firewall rule IF the source (local) IP is <Virtual Machine IP address>.
Could be done, but since we dont know wich ip addr. the VM are going to get.... The only thing we control is the host. I've try filtering bt process, but it does not seem to work. I'm using HIPS 7 and the VM are in bridge mode. Should i try with HIPS 8 ?
im trying now with hips 8, but it does not seem to " catch " the rule where it is specified that only a process ( vmware-vmx.exe ) cannot go out.
I'm testing with iexplore.exe, to block this process from going out on the internet and only to local subnet, but it does not work either.
I'll open a ticket with support....