The Packet University

Main Menu

Home

Tech News

Links

FAQ

About

Front Page

Report a comment

Thank you for taking the time to report the following comment to the administrator of this site.
Please complete this short form and click the submit button to process your report.

Comment in question

Posted by Paul, on 22-07-2008 05:25,

VMWare Best Practice article is great. I think that is a very logical approach for isolating servers into multiple DMZs. However, I still worry about some sort of hyperjacking or any guest to host escalation that could compromise the hypervisor. Traditional security models do not permit for single points of failure, but when a physical host spans multiple security zones there is a single point of risk. That is the hypervisor. I think that there may be cases with similar but separate security zones that this may be acceptable.

» Report this comment to administrator

» Go back to the article

Polls

What type of Study do you prefer?

	Traditional Classroom
	Mentored Learning
	Audio/Video on Demand
	Remote Classroom
	Books/Publications
	Blog Entries
	Other

Packet Bytes

The Ancient and Noble Art of Troubleshooting
Troubleshooting, it?s something we all do. It may be...
ASA Accelerated Security Path

This...
CCIE-sec (ex-candidate) Interviews : Paul Stewart
Have i got a treat for you! I know...
CCIE-sec-candidate interviews : Ryan Schuett
Hello! Today we?re at interview #2. We?ve got a great...
CCIE-sec-candidate interviews : Tolulope Ogunsina
Hey all! This is the new post series that i...
How do you feel about the CCIE Program?
Well Cisco officially removed the OEQs from R&S and...
Join me in Amsterdam May 10th thru May 14th
I?ve put this out on Twitter as well as...
What?s Actually Included in IPexpert?s CCIE R&S Blended Learning Solution
Gang ? After 15 months of development, it?s finally...
Congrats to Paul Stewart, CCIE 26009.
Congratulations Paul Stewart for achieving CCIE Security. His shiny...
CCIE Security Update Part 2
Well, after establishing a schedule and pinpointing the lab...
Working with ISAKMP Profiles
You can think of an ISAKMP profile as a...
ISAKMP DPD and Invalid SPI Recovery

Hello Everyone,

This is my first blog post and I...
Quality of Service for VPN Part 3 ? DMVPN

We conclude this multi-part techtorial with Part 3, QoS...
IPexpert Student One of First to Pass CCIE Routing and Switching 4.0 Exam!
We?ve heard from a few different vendors that some...
Studies Update
Well, it has been busy these past few weeks...
Cisco IOS Zone Based Firewalls

One of the CCIE Security v3.0 topics that often...
Quality of Service for VPN Part 1 ? ASA
Hi everyone and welcome to this my first post...
Managing the ASA
Enabling Telnet on the lowest security interface of the...