Further examples of securing your virtual server include:
Virtual machines:
- Avoid Denial of Service (DoS) caused by virtual disk modification operations
- Ensure unauthorized devices are not connected
- Do not use nonpersistent disks
- Prevent unauthorized removal or connection of devices
- Disable copy and paste operations between the guest operating system and remote console
- Specify the guest operating system correctly
- Verify proper file permissions for virtual machine files
- Secure the SNMP configuration
- Protect against the root file system filling up
- Disable automatic mounting of USB devices
The Department of Defense offers a pdf on the securing of ESX in the following publication:
http://iase.disa.mil/stigs/stig/esx_server_stig_v1r1_final.pdf
Further drawbacks that create financial and security risks include concentration that relies on the physical server, licensing, performance penalty and hardware support. The more computers (virtualized) on the physical server, the more security problems and IT department will face. The physical security alone must not be over looked when putting all of your eggs in one basket.
You must be opened minded to realize that a virus will be developed in the future that will travel across the virtual machine. Exploits will be found and if the physical system is compromised, a hacker could use this system as a platform to take down the virtual computers and your network. Because the health of the physical computer is important, the server up time of 99.999 (Rule o.f five nines) is critical for all of the servers.
Network Management Software
OpenVMS - is an enterprise grade network management software that allows you to track assets, server and network status.http://www.opennms.org/index.php/Main_Page Cost: Freeware
AdREM Software - is a network monitoring software that monitors network status providing essential services for the IT department.http://www.adremsoft.com/products.php Cost: $595.00
Spiceworks - is an enterprise grade network management software that allows workorders, asset tracking and full management capabilities. Spiceworks is used by more than 400,000 IT professionals worldwide.http://www.spiceworks.com/ Cost: Freeware
With virtualization growing in the information technology industry, it is important to monitor all aspects of your network. Security of your network involves daily monitoring, auditing and (patching).