Hello,
I have a few questions about thales encryption with OxE virtual machine (VMWare Esxi)
How is the Connection with thales? How have to set or wired the plain port and the cipher port? you have no direct Connection from CS (VM) to the box!
How is it to configured? How communicate the CS with the Thales box?
Greetings Mike
Thales wiring and configuration in a virtual environment
-
frank
- Alcatel Unleashed Certified Guru
- Posts: 3169
- Joined: 06 Jul 2004 00:18
- Location: New York
- Contact:
Re: Thales wiring and configuration in a virtual environment
hi.
You should have your encryption boxes on the same data switch as your ESXI.
That will most likely prevent man-in-the-middle attack.
You need one SSM per CS, one MSM per app server, one MSM per shelf.
You should have your encryption boxes on the same data switch as your ESXI.
That will most likely prevent man-in-the-middle attack.
You need one SSM per CS, one MSM per app server, one MSM per shelf.
Code Free Or Die
Re: Thales wiring and configuration in a virtual environment
I have the solution!
you have to put the plainport on a Switch with one untagged VLAN. The cipher port on another Port at the Switch in another untagged VLAN:
e.g. Plainport VLAN 51 and Cipherport VLAN 52
The CS hast to be on VLAN 51 same Subnet as Plainport
The IP-Phones and other AppServer in the VLAN XX
Now it have to be managed a Routing between the cipherport VLAN 52 and IPPhone VLAN XX - That's it!
you have to put the plainport on a Switch with one untagged VLAN. The cipher port on another Port at the Switch in another untagged VLAN:
e.g. Plainport VLAN 51 and Cipherport VLAN 52
The CS hast to be on VLAN 51 same Subnet as Plainport
The IP-Phones and other AppServer in the VLAN XX
Now it have to be managed a Routing between the cipherport VLAN 52 and IPPhone VLAN XX - That's it!
