VMware Security Tip #7

Protect against MAC address spoofing

By default this feature is turned on.  If left as the default of accept then a potential attacker could spoof MAC addresses and potentially appear as a trusted host.

Remediation

  • Login to VirtualCenter or your ESX host using the VI Client
  • Select the configuration tab for your ESX host
  • Select networking from the hardware pane
  • Select the properties for the vswitch you wish to change
  • Select Edit from the ports tab
  • Select the security tab
  • Change the “MAC address spoofing setting to Reject”
Share and Enjoy:
  • Digg
  • del.icio.us
  • Google Bookmarks
  • RSS
  • Technorati
  • Twitter
  • BlinkList
  • Facebook
  • Ping.fm
  • Reddit
Copy the code below to your web site.
x 
,
Posted in Virtualization Security Tips byspiv
You can follow any responses to this entry through the RSS 2.0 You can leave a response, or trackback.

Leave a Reply