willem.com

Harden VMware ESXi security

Improve security using a firewall and proxy server

Aug. 31, 2021 -

In response to an incident on a server, I detected a possible security breach. The affected machine ran VMware ESXi, a bare metal hypervisor used to run virtual private servers. In standalone mode, a web based management console offers full control over the infrastructure, posing a risk.

Continue reading
VMware ESXi is a bare metal hypervisor that divides one physical server into multiple virtual servers
VMware ESXi is a bare metal hypervisor that divides one physical server into multiple virtual servers
nginx configuration to authenticate and forward traffic to a VMware administrative console
nginx configuration to authenticate and forward traffic to a VMware administrative console
VMware ESXi web interface - inviting you and others to manage this physical machine
VMware ESXi web interface - inviting you and others to manage this physical machine
Two proxy servers providing secure access to multiple VMware hosts
Two proxy servers providing secure access to multiple VMware hosts
Finding exposed VMware ESXi web interfaces requires nothing but some Google skills
Finding exposed VMware ESXi web interfaces requires nothing but some Google skills
Pre-authenticate traffic to the administrative console through a small and simple Debian GNU/Linux server with nginx proxy
Pre-authenticate traffic to the administrative console through a small and simple Debian GNU/Linux server with nginx proxy

Other stories

all blog posts

Tagged

CloudCyber SecurityFree SoftwareNetworkingServer

Articles (153)