Virtual firewall to protect hypervisor

Posted by manutenfruits on Server Fault See other posts from Server Fault or by manutenfruits
Published on 2012-11-14T09:53:36Z Indexed on 2012/11/14 11:05 UTC
Read the original article Hit count: 287

Filed under:

firewall

|

kvm-virtualization

|

bridge-router

I am running an Ubuntu Server 12.10 as a single host connected to a NATed router connected using PPPoE to a optical fiber modem. This server is meant to be accessed from the Internet, but also to be used from the LAN as a SVN, MySQL and what not...

The issue is that the router is not customizable enough to serve, so I was thinking about creating a virtual pfSense firewall using KVM inside of the server itself, removing the need of the router. Is this possible? Can the host ignore and block all traffic coming to itself, but not for the firewall?

I am aware this is not the most desirable environment, I accept suggestions based on budget!

© Server Fault or respective owner

Related posts about firewall

Managed hosting firewall vs managing own firewall

as seen on Server Fault - Search for 'Server Fault'
I posted on stackoverflow as to the overall benefits of managed hosting vs non-managed hosting. The more I think about it, it seems to boil down to one question: should I use a managed host because they take care of the firewall, or would I be okay managing my own, software firewall? The sites… >>> More
Hardware firewall vs VMWare firewall appliance

as seen on Server Fault - Search for 'Server Fault'
We have a debate in our office going on whether it's necessary to get a hardware firewall or set up a virtual one on our VMWare cluster. Our environment consists of 3 server nodes (16 cores w/ 64 GB RAM each) over 2x 1 GB switches w/ an iSCSI shared storage array. Assuming that we would be dedicating… >>> More
Firewall behind firewall

as seen on Server Fault - Search for 'Server Fault'
I've recently changed jobs and I've been set up with a new workstation. On all previous places where I've been working they've had some sort of local firewall installed on each and every workstation - but here I've been told not to activate it because it is not necessary since we're already behind… >>> More
We have no SW Firewall behind our office HW firewall, admin says its not req'd

as seen on Server Fault - Search for 'Server Fault'
I've recently changed jobs and I've been set up with a new workstation. On all previous places where I've been working they've had some sort of local firewall installed on each and every workstation - but here I've been told not to activate it because it is not necessary since we're already behind… >>> More
Can't get FTP to work on centOS 5.6

as seen on Server Fault - Search for 'Server Fault'
Hi guys I have been trying for a few hours to install and get FTP to work... I did yum install ftp and yum install vsftpd They all installed and are running but when I try to use filezilla or some other client I just can't connect....I've tried connecting on port 21 and port 990 ....nothing! These… >>> More

Related posts about kvm-virtualization

CentOS / Redhat Linux: Setup KVM Virtualization

as seen on Internet.com - Search for 'Internet.com'
<b>nixCraft: </b>"KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on x86 hardware containing virtualization extensions Intel VT or AMD-V. How do I install KVM under CentOS or Red Hat Enterprise Linux version 5.5?" >>> More
Linux KVM virtualization gains steam in cloud computing market

as seen on Internet.com - Search for 'Internet.com'
<b>Network Worldh:</b> "The Linux KVM hypervisor is gaining steam in the cloud computing market, with two major vendors using the virtualization software to create cloud platforms to compete against Amazon's popular EC2 service." >>> More
What is the best distro to host a KVM virtualization solution

as seen on Server Fault - Search for 'Server Fault'
I am looking for a Server oriented distro that we can expect have decent support but also offer as much as possible some of the latest features that KVM might offer. I am leaning towards Ubuntu LTS 10.04, because well it's LTS and more bleeding edge, but I find Ubuntu not serious enough in terms… >>> More
virt-manager can't open the display

as seen on Server Fault - Search for 'Server Fault'
My virt-manager was working just fine and all of a sudden stopped working, throwing in error: RuntimeError: could not open display root@rakcal ~]# echo $DISPLAY localhost:10.0 [root@rakcal ~]# virt-manager Traceback (most recent call last): File "/usr/share/virt-manager/virt-manager.py", line… >>> More
Yum update not working on CentOS 6.2 minimal install

as seen on Server Fault - Search for 'Server Fault'
Note: This is my first question on the stack exchange network so please give mercy and provide guidance where needed. I have installed a CentOS 6.2 KVM guest and I am having problem getting yum to work. This is my first time working with CentOS so I feel that it's a setting somewhere that I am missing… >>> More