VMware vShield 4.1 User guide

vShield Administration Guide

vShield Manager 4.1.0 Update 1

vShield Zones 4.1.0 Update 1

vShield Edge 1.0.0 Update 1

vShield App 1.0.0 Update 1

vShield Endpoint 1.0.0 Update 1

This document supports the version of each product listed and

supports all subsequent versions until the document is replaced

by a new edition. To check for more recent editions of this

document, see http://www.vmware.com/support/pubs.

EN-000374-02

VMware, Inc.

3401 Hillview Ave.

Palo Alto, CA 94304

www.vmware.com

2 VMware, Inc.

vShield Administration Guide

You can find the most up-to-date technical documentation on the VMware Web site at:

http://www.vmware.com/support/

The VMware Web site also provides the latest product updates.

If you have comments about this documentation, submit your feedback to:

docfeedback@vmware.com

intellectual property laws. VMware products are covered by one or more patents listed at

http://www.vmware.com/go/patents.

VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks

and names mentioned herein may be trademarks of their respective companies.

VMware, Inc. 3

Contents

AboutThisBook 9

vShieldManagerandvShieldZones

1 OverviewofvShield 13

vShieldComponents 13

vShieldManager 13

vShieldZones 13

vShieldEdge 14

vShieldApp 14

vShieldEndpoint 15

MigrationofvShieldComponents 15

VMwareTools 15

PortsRequiredforvShieldCommunication 15

2 vShieldManagerUserInterfaceBasics 17

LoggingintothevShieldManagerUserInterface 17

AccessingtheOnlineHelp 18

vShieldManagerUserInterface 18

vShieldManagerInventoryPanel 18

vShieldManagerConfigurationPanel 19

3 ManagementSystemSettings 21

IdentifyYourvCenterServer 21

RegisterthevShieldManagerasavSphereClientPlug‐in 22

IdentifyDNSServices 22

SetthevShieldManagerDateandTime 23

IdentifyaProxyServer 23

DownloadaTechnicalSupportLogfromaComponent 23

BackUpvShieldManagerData 24

ViewvShieldManagerSystemStatus 24

AddanSSLCertificatetoIdentifythevShieldManager

WebService 24

4 ZonesFirewallManagement 27

UsingZonesFirewall 27

DefaultRules 28

Layer4RulesandLayer2/Layer3Rules 28

HierarchyofZonesFirewallRules 28

PlanningZonesFirewallRuleEnforcement 28

CreateaZonesFirewallRule 29

CreateaLayer2/Layer3ZonesFirewallRule 30

ValidatingActiveSessionsagainsttheCurrentZonesFirewallRules 31

ReverttoaPreviousZonesFirewallConfiguration 31

DeleteaZones

FirewallRule 32

vShield Administration Guide

4 VMware, Inc.

5 UserManagement 33

ManagingUserRights 33

ManagingtheDefaultUserAccount 34

AddaUser 34

AssignaRoleandRightstoaUser 34

EditaUserAccount 34

DeleteaUserAccount 35

6 UpdatingSystemSoftware 37

ViewtheCurrentSystemSoftware 37

UploadanUpdate 37

ReviewtheUpdateHistory 38

7 BackingUpvShieldManagerData 39

BackUpYourvShieldManagerDataonDemand 39

ScheduleaBackupofvShieldManagerData 40

RestoreaBackup 40

8 SystemEventsandAuditLogs 41

ViewtheSystemEventReport 41

SystemEventNotifications 42

vShieldManagerVirtualApplianceEvents 42

vShieldAppEvents 42

SyslogFormat 42

ViewtheAuditLog 43

9 UninstallingvShieldComponents 45

UninstallavShieldApporvShieldZones 45

UninstallavShieldEdgefromaPortGroup 46

UninstallPortGroupIsolationfromanESXHost 46

UninstallavShieldEndpointModule 47

UnregisteranSVMfromavShieldEndpointModule 47

UninstallthevShieldEndpointModulefromthevSphereClient 47

10 vShieldEdgeManagement 49

ViewtheStatusofavShieldEdge 49

SpecifyaRemoteSyslogServer 50

ManagingthevShieldEdgeFirewall 50

CreateavShieldEdgeFirewallRule 50

ValidateActiveSessionsAgainstCurrentvShieldEdgeFirewallRules 51

ManageNATRules 51

ManageDHCPService 52

ManageVPNService 53

ManageLoadBalancerService 55

StartorStopvShieldEdgeServices 56

UpgradevShieldEdgeSoftware 56

VMware, Inc. 5

vShieldEdgeandPortGroupIsolation

vShieldAppandvShieldEndpoint

11 vShieldAppManagement 61

SendvShieldAppSystemEventstoaSyslogServer 61

BackUptheRunningCLIConfigurationofavShieldApp 62

ViewtheCurrentSystemStatusofavShieldApp 62

ForceavShieldApptoSynchronizewiththevShieldManager 62

RestartavShieldApp 63

ViewTrafficStatisticsbyvShieldAppInterface 63

12 FlowMonitoring 65

UsingFlowMonitoring 65

ViewaSpecificApplicationintheFlowMonitoringCharts 66

ChangetheDateRangeoftheFlowMonitoringCharts 66

ViewtheFlowMonitoringReport 66

AddanAppFirewallRulefromtheFlowMonitoringReport 67

DeleteAllRecordedFlows 68

EditingPortMappings 68

AddanApplication‐PortPairMapping 68

DeleteanApplication‐PortPairMapping 69

HidethePortMappingsTable 69

13 AppFirewallManagement 71

UsingAppFirewall 71

SecuringContainersandDesigningSecurityGroups 71

DefaultRules 72

Layer4RulesandLayer2/Layer3Rules 72

HierarchyofAppFirewallRules 72

PlanningAppFirewallRuleEnforcement 72

CreateanAppFirewallRule 73

CreateaLayer2/Layer3AppFirewallRule 75

CreatingandProtectingSecurityGroups 75

AddaSecurityGroup 75

AssignResourcestoaSecurity

Group 76

ValidatingActiveSessionsagainsttheCurrentAppFirewallRules 76

ReverttoaPreviousAppFirewallConfiguration 77

DeleteanAppFirewallRule 77

UsingSpoofGuard 77

SpoofGuardScreenOptions 78

EnableSpoofGuard 78

ApproveIPAddresses 78

EditanIPAddress 79

DeleteanIPAddress 79

14 vShieldEndpointEventsandAlarms 81

ViewvShieldEndpointStatus 81

Alarms 82

HostAlarms 82

SVMAlarms 82

VMAlarms 83

VMware, Inc. 6

Events 83

AuditMessages 86

Appendixes

A CommandLineInterface 89

LoggingInandOutoftheCLI 89

CLICommandModes 89

CLISyntax 90

MovingAroundintheCLI 90

GettingHelpwithintheCLI 91

SecuringCLIUserAccountsandthePrivilegedModePassword 91

AddaCLIUserAccount 91

DeletetheadminUserAccountfromtheCLI 92

ChangetheCLIPrivilegedModePassword 92

CommandReference 93

AdministrativeCommands 93

CLIMode

Commands 94

ConfigurationCommands 97

DebugCommands 104

ShowCommands 109

DiagnosticsandTroubleshootingCommands 125

UserAdministrationCommands 128

TerminalCommands 130

DeprecatedCommands 131

B vShieldEdgeVPNConfigurationExamples 133

BasicScenario 133

Terminology 134

IKEPhase1andPhase2134

Phase1:MainModeTransactions 135

Phase2:QuickModeTransactions 135

ConfiguringthevShieldEdgeVPNParameters 135

UsingaCisco2821IntegratedServicesRouter 137

ConfigureInterfacesandDefaultRoute 137

ConfigureIKEPolicy 137

MatchEachPeerwithItsPre‐SharedSecret 138

DefinetheIPSECTransform 138

CreatetheIPSECAccess

List 138

BindthePolicywithaCryptoMapandLabelIt 138

BindtheCryptoMaptotheOutgoingInterface 138

ExampleConfiguration 138

UsingaCiscoASA5510 139

UsingaWatchGuardFireboxX500 141

Troubleshooting 141

SuccessfulNegotiation(bothPhase1andPhase2) 141

Phase1PolicyNotMatching 142

Phase2NotMatching 143

PFSMismatch 143

PSKNotMatching 144

PacketCapturefor

aSuccessfulNegotiation 144

VMware, Inc. 7

C Troubleshooting 149

TroubleshootingvShieldManagerInstallation 149

vShieldOVAFileExtractedtoaPCWherevSphereClientIsNotInstalled 149

vShieldOVAFileCannotBeInstalledinvSphereClient 149

CannotLogIntoCLIAfterthevShieldManagerVirtualMachineStarts 150

CannotLogIntothevShieldManagerUserInterface 150

TroubleshootingOperationIssues 150

vShieldManagerCannotCommunicate

withavShieldApp 150

CannotConfigureavShieldApp 150

FirewallBlockRuleNotBlockingMatchingTraffic 151

NoFlowDataDisplayinginFlowMonitoring 151

TroubleshootingPortGroupIsolationIssues 151

ValidateInstallationofPortGroupIsolation 151

VerifyInstallorUninstallScript 152

ValidatetheDataPath 152

Detailsofthefence‐utilUtility 153

TroubleshootingvShieldEdgeIssues 154

VirtualMachines

AreNotGettingIPAddressesfromtheDHCPServer 154

Load‐BalancerDoesNotWork 154

Load‐BalancerThrowsError502BadGatewayforHTTPRequests 155

VPNDoesNotWork 155

TroubleshootingvShieldEndpointIssues 155

ThinAgentLogging 155

ComponentVersionCompatibility 156

Index 157

VMware, Inc. 8

VMware, Inc. 9

Thismanual,thevShieldAdministrationGuide,describeshowtoinstall,configure,monitor,andmaintainthe

VMware

®

vShield™systembyusingthevShieldManageruserinterface,thevSphereClientplug‐in,and

commandlineinterface(CLI).Theinformationincludesstep‐by‐stepconfigurationinstructions,and

suggestedbestpractices.

Intended Audience

ThismanualisintendedforanyonewhowantstoinstallorusevShieldinaVMwarevCenterenvironment.

Theinformationinthismanualiswrittenforexperiencedsystemadministratorswhoarefamiliarwithvirtual

machinetechnologyandvirtualdatacenteroperations.ThismanualassumesfamiliaritywithVMware

Infrastructure4.x,includingVMwareESX,

vCenterServer,andthevSphereClient.

VMware Technical Publications Glossary

VMwareTechnicalPublicationsprovidesaglossaryoftermsthatmightbeunfamiliartoyou.Fordefinitions

oftermsastheyareusedinVMwaretechnicaldocumentationgotohttp://www.vmware.com/support/pubs.

Document Feedback

VMwarewelcomesyoursuggestionsforimprovingourdocumentation.Ifyouhavecomments,sendyour

feedbacktodocfeedback@vmware.com.

vShield Documentation

ThefollowingdocumentscomprisethevShielddocumentationset:

 vShieldAdministrationGuide,thisguide

 vShieldQuickStartGuide

 vShieldAPIProgrammingGuide

Technical Support and Education Resources

Thefollowingsectionsdescribethetechnicalsupportresourcesavailabletoyou.Toaccessthecurrentversion

ofthisbookandotherbooks,gotohttp://www.vmware.com/support/pubs.

Online and Telephone Support

Touseonlinesupporttosubmittechnicalsupportrequests,viewyourproductandcontractinformation,and

registeryourproducts,gotohttp://www.vmware.com/support.

Customerswithappropriatesupportcontractsshouldusetelephonesupportforthefastestresponseon

priority1issues.Gotohttp://www.vmware.com/support/phone_support.

About This Book

vShield Administration Guide

10 VMware, Inc.

Support Offerings

TofindouthowVMwaresupportofferingscanhelpmeetyourbusinessneeds,goto

http://www.vmware.com/support/services.

VMware Professional Services

VMwareEducationServicescoursesofferextensivehands‐onlabs,casestudyexamples,andcoursematerials

designedtobeusedason‐the‐jobreferencetools.Coursesareavailableonsite,intheclassroom,andlive

online.Foronsitepilotprograms andimplementationbestpractices,VMwareConsultingServicesprovides

offeringsto helpyouassess,plan,

build,andmanageyourvirtualenvironment.Toaccessinformationabout

educationclasses,certificationprograms,andconsultingservices,gotohttp://www.vmware.com/services. 

VMware, Inc. 11

vShield Manager and vShield Zones

vShield Administration Guide

12 VMware, Inc.

VMware, Inc. 13

1

VMware

®

vShieldisasuiteofsecurityvirtualappliancesbuiltforVMwarevCenter™ServerandVmware

ESX™integration.vShieldisacriticalsecuritycomponentforprotectingvirtualizeddatacentersfromattacks

andmisusehelpingyouachieveyourcompliance‐mandatedgoals.

ThisguideassumesyouhaveadministratoraccesstotheentirevShieldsystem.The

viewableresourcesinthe

vShieldManageruserinterfacecandifferbasedontheassignedroleandrightsofauser,andlicensing.Ifyou

areunabletoaccessascreenorperformaparticulartask,consultyourvShieldadministrator.

Thischapterincludesthefollowingtopics:

 “vShieldComponents”onpage 13

 “MigrationofvShieldComponents”onpage 15

 “VMwareTools”onpage 15

 “PortsRequiredforvShieldCommunication”onpage 15

vShield Components

vShieldincludescomponentsandservicesessentialforprotectingvirtualmachines.vShieldcanbeconfigured

throughaweb‐baseduserinterface,avSphereClientplug‐in,acommandlineinterface(CLI),andRESTAPI.

TorunvShield,youneedonevShieldManagervirtualmachineandatleastonevShieldApporvShield

Edge

module.

vShield Manager

ThevShieldManageristhecentralizednetworkmanagementcomponentofvShieldandisinstalledfromOVA

asavirtualmachinebyusingthevSphereClient.UsingthevShieldManageruserinterface,administrators

install,configure,andmaintainvShieldcomponents.AvShieldManagercanrunonadifferentESXhostfrom

yourvShield

AppandvShieldEdgemodules.

ThevShieldManagerleveragestheVMwareInfrastructureSDKtodisplayacopyofthevSphereClient

inventorypanel.

FormoreontheusingthevShieldManageruserinterface,seeChapter 2,“vShieldManagerUserInterface

Basics,”onpage 17.

vShield Zones

vShieldZones,includedwiththevShieldManager,providesfirewallprotectionfortrafficbetweenvirtual

machines.ForeachZonesFirewallrule,youcanspecifythesourceIP,destinationIP,sourceport,destination

port,andservice.

Overview of vShield

1

CAUTIONDonotinstallvShieldZones/AppontheESXhostwherevCenterServerisrunning.

vShield Administration Guide

14 VMware, Inc.

vShield Edge

vShieldEdgeprovidesnetworkedgesecurityandgatewayservicestoisolatethevirtualmachinesinaport

group,vDSportgroup,orCisco

®

Nexus1000V.ThevShieldEdgeconnectsisolated,stubnetworkstoshared

(uplink)networksbyprovidingcommongatewayservicessuchasDHCP,VPN,NAT,andLoadBalancing.

CommondeploymentsofvShieldEdgeincludeintheDMZ,VPNExtranets,andmulti‐tenantCloud

environmentswherethevShieldEdgeprovidesperimetersecurityfor

VirtualDatacenters(VDCs).

Standard vShield Edge Services (Including Cloud Director)

 Firewall:SupportedrulesincludeIP5‐tupleconfigurationwithIPandportrangesforstatefulinspection

forTCP,UDP,andICMP.

 NetworkAddressTranslation:SeparatecontrolsforSourceandDestinationIPaddresses,aswellasTCP

andUDPporttranslation.

 DynamicHostConfigurationProtocol(DHCP):ConfigurationofIPpools,gateways,DNSservers,and

searchdomains.

Advanced vShield Edge Services

 Site‐to‐SiteVirtualPrivateNetwork(VPN):UsesstandardizedIPsecprotocolsettingstointeroperatewith

allmajorfirewallvendors.

 LoadBalancing:SimpleanddynamicallyconfigurablevirtualIPaddressesandservergroups.

vShieldEdgesupportssyslogexportforallservicestoremoteservers.

vShield App

vShieldAppisaninterior,vNIC‐levelfirewallthatallowsyoutocreateaccesscontrolpoliciesregardlessof

networktopology.AvShieldAppmonitorsalltrafficinandoutofanESXhost,includingbetweenvirtual

machinesinthesameportgroup.vShieldAppincludestrafficanalysisandcontainer‐basedpolicy

creation.

vShieldAppinstallsasahypervisormoduleandfirewallservicevirtualappliance.vShieldAppintegrates

withESXhoststhroughVMsafeAPIsandworkswithVMwarevSphereplatformfeaturessuchasDRS,

vMotion,DPM,andmaintenancemode.

vShieldAppprovidesfirewallingbetweenvirtualmachinesbyplacingafirewallfilteronevery

virtual

networkadapter.Thefirewallfilteroperatestransparentlyanddoesnotrequirenetw orkchangesor

modificationofIPaddressestocreatesecurityzones.YoucanwriteaccessrulesbyusingvCentercontainers,

likedatacenters,cluster,resourcepoolsandvApps,ornetworkobjects,likePortGroupsandVLANs,to

reducethenumber

offirewallrulesandmaketheruleseasiertotrack.

YoushouldinstallvShieldAppinstancesonallESXhostswithinaclustersothatVMwarevMotion™

operationsworkandvirtualmachinesremainprotectedastheymigratebetweenESXhosts.Bydefault,a

vShieldAppvirtualappliancecannotbemovedby

usingvMotion.

TheFlowMonitoringfeaturedisplaysallowedandblockednetworkflowsattheapplicationprotocollevel.

Youcanusethisinformationtoauditnetworktrafficandtroubleshootoperational.

N

OTEYoumustobtainanevaluationorfulllicensetousevShieldEdge.

NOTEYoumustobtainanevaluationorfulllicensetousevShieldApp.

CAUTIONDonotinstallvShieldZones/AppontheESXhostwherevCenterServerisrunning.

VMware, Inc. 15

Chapter 1 Overview of vShield

vShield Endpoint

vShieldEndpointdeliversanintrospection‐basedantivirussolution.vShieldEndpointusesthehypervisorto

scanguestvirtualmachinesfromtheoutsidewithoutabulkyagent.vShieldEndpointisefficientinavoiding

resourcebottleneckswhileoptimizingmemoryuse.

vShieldEndpointinstallsasahypervisormoduleandsecurityvirtualappliancefromathird‐

partyantivirus

vendor(VMwarepartners)onanESXhost.

vShieldEndpointprovidesthefollowingfeatures:

 On‐demandfilescanninginaservicevirtualmachine.

 On‐accessfilescanninginaservicevirtualmachine.

Migration of vShield Components

ThevShieldManagerandvShieldEdgevirtualappliancescanbeautomaticallyormanuallymigratedbased

onDRSandHApolicies.ThevShieldManagermustalwaysbeup,soyoumustmigratethevShieldManager

wheneverthecurrentESXhostundergoesarebootormaintenancemoderoutine.

EachvShieldEdgeshouldmove

withitssecuredportgrouptomaintainsecuritysettingsandservices.

vShieldAppandPortGroupIsolationservicescannotbemovedtoanotherESXhost.IftheESXhostonwhich

theseservicesresiderequiresamanualmaintenancemodeoperation,youmustde‐selecttheMovepowered

offandsuspendedvirtual

machinestootherhostsintheclustercheckboxtoensurethesevirtualappliances

arenotmigrated.TheseservicesrestartaftertheESXhostcomesonline.

VMware Tools

EachvShieldvirtualapplianceincludesVMwareTools.DonotupgradeoruninstalltheversionofVMware

ToolsincludedwithavShieldvirtualappliance.

Ports Required for vShield Communication

ThevShieldManagerrequiresthefollowingportstobeopen:

 RESTAPI:80/TCPand443/TCP

 GraphicalUserInterface:80/TCPto443/TCPandinitiatesconnectionstovSpherevCenterSDK.

 SSHaccesstotheCLI(notenabledbydefault):22/TCP

N

OTEYoumustobtainanevaluationorfulllicensetousevShieldEndpoint.

vShield Administration Guide

16 VMware, Inc.

VMware, Inc. 17

2

ThevShieldManageruserinterfaceoffersconfigurationanddataviewingoptionsspecifictovShielduse.By

utilizingtheVMwareInfrastructureSDK,thevShieldManagerdisplaysyourvSphereClientinventorypanel

foracompleteviewofyourvCenterenvironment.

Thechapterincludesthefollowingtopics:

 “LoggingintothevShieldManagerUserInterface”onpage 17

 “A c c e s s i n g theOnlineHelp”onpage 18

 “vShieldManagerUserInterface”onpage 18

Logging in to the vShield Manager User Interface

YouaccessthevShieldManagermanagementinterfacebyusingaWebbrowser.

To log in to the vShield Manager user interface

1OpenaWebbrowserwindowandtypetheIPaddressassignedtothevShieldManager.

ThevShieldManageruserinterfaceopensinanSSHsession.

2Acceptthesecuritycertificate.

ThevShieldManagerloginscreenappears.

3LogintothevShieldManager

userinterfacebyusingtheusernameadminandthepassworddefault.

Youshouldchangethedefaultpasswordasoneofyourfirsttaskstopreventunauthorizeduse.See“Edit

aUserAccount”onpage 34.

4ClickLogIn.

vShield Manager User Interface

Basics

2

NOTEYoucanregisterthevShieldManagerasavSphereClientplug‐in.ThisallowsyoutoconfigurevShield

componentsfromwithinthevSphereClient.Formore,see“RegisterthevShieldManagerasavSphereClient

Plug‐in”onpage 22.

NOTETouseanSSLcertificateforauthentication,see“A d d anSSLCertificatetoIdentifythevShield

ManagerWebService”onpage 24.

vShield Administration Guide

18 VMware, Inc.

Accessing the Online Help

TheOnlineHelpcanbeaccessedbyclickingintheupperrightofthevShieldManageruserinterface.

vShield Manager User Interface

ThevShieldManageruserinterfaceisdividedintotwopanels:theinventorypanelandtheconfiguration

panel.Youselectaviewandaresourcefromtheinventorypaneltoopentheavailabledetailsand

configurationoptionsintheconfigurationpanel.

Whenclicked,eachinventoryobjecthasaspecificsetoftabs

thatappearintheconfigurationpanel.

vShield Manager Inventory Panel

ThevShieldManagerinventorypanelhierarchymimicsthevSphereClientinventoryhierarchy.Resources

includetherootfolder,datacenters,clusters,portgroups,ESXhosts,andvirtualmachines,includingyour

installedvShieldAppandvShieldEdgemodules.Asaresult,thevShieldManagermaintainssolidaritywith

yourvCenterServerinventorytopresenta

completeviewofyourvirtualdeployment.ThevShieldManager

istheonlyvirtualmachinethatdoesnotappearinthevShieldManagerinventorypanel.vShieldManager

settingsareconfiguredfromtheSettings&Reportsresourceatoptheinventorypanel.

Theinventorypaneloffersmultipleviews:Hosts&Clusters,Networks,andSecured

PortGroups.TheHosts

&Clustersviewdisplaysthedatacenters,clusters,resourcepools,andESXhostsinyourinventory.The

NetworksviewdisplaystheVLANnetworksandportgroupsinyourinventory.TheSecuredPortGroups

viewdisplaystheportgroupsprotectedbyvShieldEdgeinstances.TheHosts&Clusters

andNetworksviews

areconsistentwiththesameviewsinthevSphereClient.

TherearedifferencesintheiconsforvirtualmachinesandvShieldcomponentsbetweenthevShieldManager

andthevSphereClientinventorypanels.CustomiconsareusedtoshowthedifferencebetweenvShield

componentsandvirtualmachines,andthe

differencebetweenprotectedandunprotectedvirtualmachines.

Refreshing the Inventory Panel

Torefreshthelistofresourcesintheinventorypanel,click .Therefreshactionrequeststhelatestresource

informationfromthevCenterServer.Bydefault,thevShieldManagerrequestsresourceinformationfromthe

vCenterServereveryfiveminutes.

Searching the Inventory Panel

Tosearchtheinventorypanelforaspecificresource,typeastringinthefieldatopthevShieldManager

inventorypanelandclick .

Table 2-1. vShield Virtual Machine Icons in the vShield Manager Inventory Panel

Icon Description

ApoweredonvShieldAppinactiveprotectionstate.

ApoweredoffvShieldApp.

ApoweredonvirtualmachinethatisprotectedbyavShieldApp.

ApoweredonvirtualmachinethatisnotprotectedbyavShieldApp.

VMware, Inc. 19

Chapter 2 vShield Manager User Interface Basics

vShield Manager Configuration Panel

ThevShieldManagerconfigurationpanelpresentsthesettingsthatcanbeconfiguredbasedonthesel ected

inventoryresourceandtheoutputofvShieldoperation.Eachresourceoffersmultipletabs,eachtabpresenting

informationorconfigurationformscorrespondingtotheresource.

Becauseeachresourcehasadifferentpurpose,sometabsarespecific

tocertainresources.Also,sometabshave

asecondlevelofoptions.

vShield Administration Guide

20 VMware, Inc.

Page is loading ...

VMware vShield 4.1 User guide

This manual is also suitable for

VMware vShield 4.1 User guide

Related papers

Other documents