Install WFilter in VMware ESXi Server

4.1

Author:

IMFirewall Software

HomePage:

http://www.wfiltericf.com

In a VMware ESXi server, WFilter can work both in "Pass-by" and "Pass-through" modes. For more details about these two modes, please check: WFilter deployment modes

1. Deploy WFilter in pass-by mode in VMware ESXi

The virtual switch connected to the WFilter virtual machine shall be configured to accept "Promiscuous Mode":

Figure 1

2. Deploy WFilter in pass-through mode in VMware ESXi

If you want to deploy WFilter to filter other virtual machines in pass-through mode, please check below steps.

To deploy WFilter in pass-through mode on a VMware ESXi server, following conditions are required:

1. A virtual machine with two adapters to install WFilter.
2. At least two virtual switches.
3. The two adapters of WFilter shall be connected to different virtual switches.

As in below figure, the wfilter server "94-wfilter-server" is connected between "vSwitch0" and "vSwitch1". In this topology, all virtual computers in vSwitch1 will be monitored and filtered by the WFilter server "94-wfilter-server".

Figure 2

Please check below steps:

2.1. Create a new virtual switch

As in below figure, a new virtual switch with no physical adapter is created.

Figure 3

2.2. Connect the two adapters to different virtual switches

To bridge the virtual switches, two adapters of the WFilter server shall be connected to different virtual switches.

Figure 4

2.3. Allow "Promiscuous mode" of virtual switches

The virtual switches connected to the wfilter server shall be configured to accept "Promiscuous Mode".

Figure 5

Links

• How to install WFilter IMNPTF driver?
• Homepage of WFilter Deployment