On 12/6/07, paul schulz <[EMAIL PROTECTED]> wrote: > Has anyone here had experience in runnning a firewall in a vmware > guest running on a bare as possible bones linux host? > Interested in any security issues that may have been encountered etc.
Number one issue - if the firewall VM guest is halted, should the host system have any networking capability at all? i.e. do you want fail-safe/default deny, or fail-open/default accept? When VM player first came out there was a competition for interesting images - IIRC the winner was a firewall under Windows, which unbound IP from the windows driver, and re-bound it to a virtual interface into the VM guest. All traffic was copied into the VM, and only "clean" IP made it out back out of the (IPCop?) into the Windows environment. -jim
