Slashdot Mirror

← Back to Stories (view on slashdot.org)

Choosing the Right Security Tools To Protect VMs

Posted by Soulskill on from the find-a-good-dartboard dept.

Nerval's Lobster writes "Tech writer David Strom starts a discussion about how you should go about securing virtual machines for your organization. 'The need to protect physical infrastructure is well known at this point: most enterprises would balk at a network without any firewalls, intrusion prevention devices or anti-virus scanners. Yet these devices aren’t as well deployed in the virtual context. ... Take firewalls, for example. The traditional firewalls from Checkpoint or Juniper aren’t designed to inspect and filter the vast amount of traffic originating from a hypervisor running, say, ten virtualized servers. Because VMs can start, stop, and move from hypervisor to hypervisor at the click of a button, protective features have to be able to handle these movements and activities with ease and not set off all sorts of alarms within an IT department.' He goes through the main functional areas that need protection, and points out that many vendors make it difficult to price out a given security plan."

1 of 44 comments (clear)

  1. Re:Uh what? by khasim · · Score: 3, Informative

    Because it puts you in danger from "VLAN hopping" attacks.

    http://en.wikipedia.org/wiki/VLAN_hopping

    And if one of your external servers is cracked then you SHOULD distrust all the systems on that system. If they're all on the same VM host then you have a big problem.

    If they were segmented then the problem domain is reduced.

    Just because it can be done does not mean it is good practice to do it.