-----Original Message----- From: Sean Cavanaugh [mailto:millenia2...@hotmail.com] Sent: Friday, February 04, 2011 6:27 PM To: support@pfsense.com Subject: Re: [pfSense Support] Firewall security compromised by auxillary programs?
?-----Original Message----- From: Mark Jones Sent: Friday, February 04, 2011 2:54 PM To: support@pfsense.com Subject: [pfSense Support] Firewall security compromised by auxillary programs? Well, I hear of people running pfSense in a VM, and I wonder how do you avoid exposing the host OS to the network? How can a firewall be run in a VM and not leave the host OS hanging out to be attacked? Or, go the otherway and put the VM in the FreeBSD used by pfSense since there is plenty of excess CPU and memory to do the trick. Only getting vmware to run on pfSense FreeBSD might be difficult (I haven't actually tried it) given the very few pieces of FreeBSD that are present in a pfSense environment. I am just a big dummy, but I would say that if the interfaces used for PFsense are dedicated to interfaces in VMware (with separate Vswitches each)without a service console connection, then you are OK. Esxpecially on ESX because it is has a firewall and is pretty well locked down. Don't be stupid and try to do so on a single interface. --------------------------------------------------------------------- To unsubscribe, e-mail: support-unsubscr...@pfsense.com For additional commands, e-mail: support-h...@pfsense.com Commercial support available - https://portal.pfsense.org
