vShield


Configuring VMware vShield App

Yesterday I posted an article how to install VMware vShield App. Here is some basic information about configuring it :

First here are the virtual machine (hardware) settings about the VM :

vShield_VirtualMachineProperties

As you can see above, 3 Gb of memory and 1 CPU. You will need such a VM one every VMware server you want to protect.

OK, let’s start configuring vShield App. Open your browser and login to the vShield manager :

First you have to fill in the vCenter IP Address (or name) and credentials :

vShield_config001

You can acknowledge this message :

vShield_config002

Now it’s time to setup the NTP (and time information) :

vShield_config003

Install the vShield Plugin manager; after installation you see this message :

vShield_config005

And you notice a new icon in vCenter (bottom line) :

vShield_config006

When you open vShield manager in vCenter you notice the following :

vShield_config007

This is because the SSL certificate. We will talk about that later. For now you can ignore this warning.

Go to the VMware server and press Install (like below) :

vShield_config008

You notice the following :

 

vShield_config010

 

vShield_config011

 

A simple test to see that vShield works :

I opened a https session to one of my server :

iis7_scherm

Now I created a firewall rule :

vshield_firewallrule

Now the https session created the following error :

iis_na_firewall

As mentioned in the firewall logging :

vshield_blocked

To be continued.. Smile