I think what he is saying is not having pfSense run as a domU guest, rather
running it as the dom0 host. The idea being then that all of the virtual
machines running in domU would therefore be protected by the pfSense dom0 host.
> Date: Wed, 28 Jan 2009 16:50:50 -0700> From: aoz@gmail.com
On Wed, Jan 28, 2009 at 16:19, pfsense sense wrote:
> point taken but it wouldn't be "adding [file | virtual | foo] server
> features" it would only be "pfsense --> VT"
>
> i'm no security expert, in any stretch of the imagination, I would have
> expected that the suggested addition of a dom0 woul
point taken but it wouldn't be "adding [file | virtual | foo] server
features" it would only be "pfsense --> VT"
i'm no security expert, in any stretch of the imagination, I would have
expected that the suggested addition of a dom0 would/could be fully
protected, due to dom0 sitting behind pfsense
On Wed, Jan 28, 2009 at 15:31, pfsense sense wrote:
> Ignoring the lack of Xen dom0 support in FreeBSD for a moment, of course.
I definitely misunderstood your original post, my apologies. That
being said, there isn't and doesn't soon look to be much motion within
FreeBSD to provide dom0 support
I think he understood, but was suggesting other virtualization ideas that he
felt would be a more rewarding use of developer resources. To me, it sounds
like you want the feature set of pfsense available on a platform that runs
virtual machines... for example, having a "pfSense" option in VMwa
Ignoring the lack of Xen dom0 support in FreeBSD for a moment, of course.
On Thu, Jan 29, 2009 at 9:13 AM, pfsense sense wrote:
> "multiple concurrent PFSense instances"
>
> no, you have also missed my point... i'm not interested in vistualizing
> "pfsense"
> my idea was to "provide" VT option
"multiple concurrent PFSense instances"
no, you have also missed my point... i'm not interested in vistualizing
"pfsense"
my idea was to "provide" VT options, a dom0, "along side" pfsense... as it
is available in Linux.
| OS --> service (file)
cloud -->
As the others have said, it depends on what you mean by 'integrate'
Ignoring the lack of Xen dom0 support in FreeBSD for a moment.
Utilising VT technology to deliver physical as well as logical isolation of
multiple concurrent PFSense instances in a manner analagous to
Fortinet VDOM : http://kc.
