Specify A Remote Syslog Server; Managing The Vshield Edge Firewall; Create A Vshield Edge Firewall Rule - VMware VSHIELD APP 1.0.0 UPDATE 1 Admin Manual

Hide thumbs Also See for VSHIELD APP 1.0.0 UPDATE 1:

Programming manual (90 pages)

Quick start manual (30 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

page of 144

/ 144
Contents
Table of Contents
Bookmarks

Table of Contents

vShield Administration Guide

Specify a Remote Syslog Server

You can send vShield Edge events, such as violated firewall rules, to a syslog server.

To specify a remote syslog server

In the vSphere Client, go to Inventory > Networking.

Select an internal port group that is protected by a vShield Edge.

Click the vShield Edge tab.

Click the Status link.

Under Remote Syslog Servers, place the cursor in the top text box and type the IP address of a remote

syslog server.

Click Commit to save the configuration.

Managing the vShield Edge Firewall

The vShield Edge provides firewall protection for incoming and outgoing sessions. The default firewall policy

allows all traffic to pass. In addition to the default firewall policy, you can configure a set of rules to allow or

deny traffic sessions to and from specific sources and destinations. You manage the default firewall policy and

firewall rule set separately for each vShield Edge agent.

You can change the Default Policy from Allow to Deny on a vShield Edge to deny any sessions that do not

match any of the current firewall rules.

Create a vShield Edge Firewall Rule

vShield Edge firewall rules police traffic based on the following criteria:

Criteria

Source IP

Source Port

Destination IP

Destination Port

Protocol

Direction

Action

You can add destination and source port ranges to a rule for dynamic services such as FTP and RPC, which

require multiple ports to complete a transmission. If you do not allow all of the ports that must be opened for

a transmission, the transmission is blocked.

To create a vShield Edge firewall rule

In the vSphere Client, go to Inventory > Networking.

Select an internal port group that is protected by a vShield Edge.

Click the vShield Edge tab.

Click the Firewall link.

Description

IP address from which the communication originated.

Port or range of ports from which the communication originated. To enter a port

range, separate the low and high end of the range with a colon. For example,

1000:1100.

IP address which the communication is targeting.

Port or range of ports which the communication is targeting. To enter a port range,

separate the low and high end of the range with a colon. For example, 1000:1100.

Transport protocol used for communication.

Direction of transmission. Options are IN, OUT, or BOTH.

Action to enforce on transmission. Options are ALLOW or DENY. The default action

on all traffic is ALLOW.

VMware, Inc.

Table of Contents

This manual is also suitable for:

Vshield manager 4.1.0 update 1 Vshield zones 4.1.0 update 1 Vshield edge 1.0.0 update 1 Vshield endpoint 1.0.0 update 1

Specify A Remote Syslog Server; Managing The Vshield Edge Firewall; Create A Vshield Edge Firewall Rule - VMware VSHIELD APP 1.0.0 UPDATE 1 Admin Manual

Specify a Remote Syslog Server

Managing the vShield Edge Firewall

Create a vShield Edge Firewall Rule

Related Manuals for VMware VSHIELD APP 1.0.0 UPDATE 1

Related Content for VMware VSHIELD APP 1.0.0 UPDATE 1

This manual is also suitable for:

Table of Contents