Hello everybody,
does anyknown know the best way to configure a vmware server on a secure dmz?
I know how to simply dst-nat an external ip address to an address on a separate dmz network, and it works.
But then the network is secure? My management console is know accessible from the internet…
Then there’s the problem of the actual vm machines… they acquire their addresses on the dmz network, but how could I access them from the internet?
Thank you very much
I would suggest to not dst-nat to esx directly as there is no point aside from management.
I would create a vlan interface on the mikrotik to esx and then add a network to the vswitch appropriately.
Then you could route publicly or create an internal subnet for dmz and use dst-nat. Upto you
Thank you for your advice.
As I am a beginner, could you be more specific on what it has to be done?
sure thing, if you post some details of the network and your config i’ll be happy to help where I can.