- Joined
- Jul 18, 2006
- Location
- OKC
This probably could have gone into a number of spots but I think that this is probably the more appropriate section.
I currently have 7 machines running 24/7.
My setup is as follows:
modem > pfsense firewall > untangle web http/ftp/av/spam/spyware etc filtering >
rest of the network
one of the machines on my network is simply a debian box that i run a vm or 2 off of to play around with, but its main purpose is to serve as my backup server (running Backuppc to maintain backups and a database for all my other machines)
i am looking to combine pfsense, untangle and my debian backup server into VMs to cut down on the number of boxes
what i am mostly curious about is whether or not its a very good idea to run firewalls and filtering servers through VM?
basically it would be a fairly beefy machine (c2d, 4gb ram, 36gb 10k scsi drives, raid5), so having the power in one machine isnt the problem, but I am more concerned with the actual vmware server being on the outside of the network
if all those functions run through VM what is there to protect the VMware server? should i incorporate iptables/shorewall into my debian64 vm server in order to keep it protected, or run the risk of the vm server being on the outside edge of my network?
I currently have 7 machines running 24/7.
My setup is as follows:
modem > pfsense firewall > untangle web http/ftp/av/spam/spyware etc filtering >
rest of the network
one of the machines on my network is simply a debian box that i run a vm or 2 off of to play around with, but its main purpose is to serve as my backup server (running Backuppc to maintain backups and a database for all my other machines)
i am looking to combine pfsense, untangle and my debian backup server into VMs to cut down on the number of boxes
what i am mostly curious about is whether or not its a very good idea to run firewalls and filtering servers through VM?
basically it would be a fairly beefy machine (c2d, 4gb ram, 36gb 10k scsi drives, raid5), so having the power in one machine isnt the problem, but I am more concerned with the actual vmware server being on the outside of the network
if all those functions run through VM what is there to protect the VMware server? should i incorporate iptables/shorewall into my debian64 vm server in order to keep it protected, or run the risk of the vm server being on the outside edge of my network?