VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API Manuel d'utilisateur télécharger pdf (Page 21)

VMware, Inc. 21

Chapter 3 Installing the vShield Manager and vShield Zones

3ClickthevShieldtab.

4Acceptthesecuritycertificate.

5ClickInstallforthevShieldZonesservice.

6Enterthefollowinginformation.

7ClickInstallatthetopoftheform.

YoucanfollowthevShieldZonesinstallationstepsfromtheRecentTaskspaneofthevSphereClient

screen.

8Afterinstallationofallcomponentsiscomplete,gotothevShieldZones>ZonesFirewalltabatthe

datacenter,cluster,orportgroupcontainerleveltoconfigurefirewallrules.EachvShieldZonesinstance

inheritsglobalfirewallrulessetinthevShieldManager.Thedefaultfirewallrulesetallowsalltrafficto

pass.Youmustconfigureblockingrulestoexplicitly

denytraffic.ToconfigureZonesFirewallrules,see

thevShieldAdministrationGuide.

Where to Go Next

AftervShieldManagerinstallationiscomplete,youcanconfigurevShieldZonesfirewallsettingsandanalyze

traffic.Formore,seethevShieldAdministrationGuide.

Toenhanceyournetworksecurityposture,youcanobtainlicensesforvShieldApp,vShieldEndpoint,and

vShieldEdge.Formore,seeChapter 4,“InstallingvShieldEdge,vShieldApp,and

vShieldEndpoint,”on

page 23.

Field Action

Datastore SelectthedatastoreonwhichtostorethevShieldZonesvirtualmachine

files.

ManagementPortGroup SelecttheportgrouptohostthevShieldZone’smanagementinterface.This

portgroupmustbeabletoreachthevShieldManager’sportgroup.

IPAddress TypetheIPaddresstoassigntothevShieldZone’s

managementinterface.

Netmask TypetheIPsubnetmaskassociatedwiththeassignedIPaddress.

DefaultGateway TypetheIPaddressofthedefaultnetworkgateway.

NOTEYoucanupgradevShieldZonestovShieldAppbyobtainingavShieldApplicense.vShieldApp

enhancesvShieldZonesprotectionbyofferingFlowMonitoring,customcontainercreation(SecurityGroups),

andcontainer‐basedaccesspolicycreationandenforcement.

YoudonothavetouninstallvShieldZonestoinstallvShieldApp.All

vShieldZonesinstancesbecomevShield

Appinstances,theZonesFirewallbecomesAppFirewall,andtheadditionalvShieldAppfeaturesareenabled.

1 2 ... 16 17 18 19 20 21 22 23 24 25 26 ... 29 30

Pas de commentaire

VMware VSHIELD MANAGER 4.1.0 UPDATE 1 - API Manuel d'utilisateur Page 21