Virtualization Software and Security

Virtualization Software and Security has very close relationship. Here are some important points on Virtualization Software.

 

How the security can maintained on servers using Virtualization Software

 

The Security of Virtualization Software, mainly based on XenServer,?we can make classify the ways in to 3 levels :

• Access to the administration
• Remote Disk Access
• External network access

 

Details on the points of Virtualization Software and Security

 

Access to administration

 

Any Virtualization software‘s API listens for HTTP through port 80 and for HTTPS, port 443; that is SSL encryption. The interconnection between XenCenter and XenAPI HTTPS, for example is always encrypted. The problem we have in the Virtualization Software plugins provided by the third parties that do not implement SSL for requests for our servers. Another good practice would be the firewalls – access to our servers running Virtualization on port 80 from any network can be secured to allow only HTTPS. It is also necessary to access our servers running Virtualization via SSH. Access to SSH with a weak password exposes your entire Virtualization environment to attack.

Remote Disk Access

 

If you are having a remote disk access via iSCSI or NFS running Virtualization, it is important to have an isolation through dedicated interfaces at the same storage. This will never expose the traffic to any access network. If you are using NFS, VHD files in your repository, it is especially important that you only have access to these resources.

 

External network access

 

Unless necessary, a machine running any Virtualization software does not have access to the management network environment. It is good practice to establish an isolated physical interface for management Virtualization deployed environment?and others with a switch.