Skip navigation
McAfee Secure sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses and online scams
2573 Views 6 Replies Latest reply: Nov 19, 2010 12:32 PM by sliedl RSS
thiago Newcomer 11 posts since
Nov 4, 2009
Currently Being Moderated

Nov 18, 2010 3:00 PM

McAfee Virtual Appliance 8.0

Good night everyone!

You have someone from the Virtual Appliance 8.0 running to handle the traffic from one physical network? Or just to handle the traffic that is directed to the virtual machines?



I wonder if there is this possibility of the virtual firewall to make this service is an example for clarity:
STRUCTURE.jpg





Grateful now.


PrintServer_003.jpg
  • sliedl McAfee SME 535 posts since
    Nov 3, 2009
    Currently Being Moderated
    1. Nov 18, 2010 4:06 PM (in response to thiago)
    Re: McAfee Virtual Appliance 8.0

    If you're asking if the virtual firewall can process traffic from your physical Internal and DMZ burbs there in the picture, yes it can.

     

    The ESX server has physical ports connected to those two networks.  These ESX physical ports have 'virtual switches' inside the ESX software.

     

    Using the ESX GUI you would connect the firewall's virtual external interface to the virtual switch that is 'connected' to the physical external interface of the ESX machine.  You do the same thing for the internal interface.

     

    Is that what you're asking?

  • sliedl McAfee SME 535 posts since
    Nov 3, 2009
    Currently Being Moderated
    4. Nov 19, 2010 8:57 AM (in response to thiago)
    Re: McAfee Virtual Appliance 8.0

    You can only have one default route on the Sidewinder.  If you're looking to utilize two different Internet uplinks for load distribution (send some 'net traffic to one link, some to the other), no, that won't work.  You can connect to both the networks and send traffic to them of course, but you can't load-balance between them.

     

    You weren't asking about load-balancing specifically, but that's what most people are asking about when they talk about two Internet links.  Is that what you meant?

  • sliedl McAfee SME 535 posts since
    Nov 3, 2009
    Currently Being Moderated
    6. Nov 19, 2010 12:32 PM (in response to thiago)
    Re: McAfee Virtual Appliance 8.0

    Yes, you can have a primary default route and an alternate default route.  The alternate route will ONLY be used if the default route goes down (you either ping the default route or some device behind the router to determine if the default route is down).  If the default route goes down traffic will flow through the alternate default route.  When the default route come back up traffic will NOT flow to the default router until the administrator manually switches the routes back.

     

    The inbound traffic is fine because it will be routed back out that interface that it arrived on (the INBOUND interface).

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • Correct Answers - 5 points
  • Helpful Answers - 3 points