ESX 4: password policy

Password aging controls:

#

1. PASS_MAX_DAYS   Maximum number of days a password may be used.
2. PASS_MIN_DAYS   Minimum number of days allowed between password changes.
3. PASS_MIN_LEN    Minimum acceptable password length.
4. PASS_WARN_AGE   Number of days warning given before a password expires.

#

PASS_MAX_DAYS   99999

PASS_MIN_DAYS   0

PASS_MIN_LEN    5

PASS_WARN_AGE   7
You can check this in your installation doing, in the service console, cat /etc/login.defs.

Источник http://communities.vmware.com/message/1581490.

Service Console - ESX Server Firewall Commands

The firewall built into ESX server uses iptables, the very commonly used Linux firewall. However to create the rules another esxcfg tool is used, which is esxcfg-firewall.

To list the services currently controlled by the firewall:

esxcfg-firewall -s

To list the firewall rules:

esxcfg-firewall -q [servicename]

esxcfg-firewall -q

Enable a service:

esxcfg-firewall -e [servicename]

esxcfg-firewall -e sshClient

Disable a service:

esxcfg-firewall -d [servicename]

esxcfg-firewall -d sshClient

Open a port:

esxcfg-firewall -o 465,tcp,out,out-smtps

Close a port:

esxcfg-firewall -c 465,tcp,out

Command Options:

/usr/sbin/esxcfg-firewall
esxcfg-firewall 
-q|--query                                      Lists current settings.
-q|--query Lists setting for the
specified service.
-q|--query incoming|outgoing                    Lists setting for non-required
incoming/outgoing ports.
-s|--services                                   Lists known services.
-l|--load                                       Loads current settings.
-r|--resetDefaults                              Resets all options to defaults
-e|--enableService Allows specified service
through the firewall.
-d|--disableService Blocks specified service
-o|--openPort         Opens a port.
-c|--closePort             Closes a port previously opened
via --openPort.
--blockIncoming                              Block all non-required incoming
ports  (default value).
--blockOutgoing                              Block all non-required outgoing
ports (default value).
--allowIncoming                              Allow all incoming ports.
--allowOutgoing                              Allow all outgoing ports.
-h|--help                                       Show this message.

NOTE: For changes to show in VC/VI client restart mgmt-vmware.

/etc/init.d/mgmt-vmware restart

Источник http://www.vmadmin.co.uk/vmware/35-esxserver/51.

Настройка NLB для виртуальных машин на ESX

Теория, практика
http://www.vmware.com/files/pdf/implmenting_ms_network_load_balancing.pdf
http://vmlab.ge/network-load-balancing-on-vmware-esx

Бесплатный бэкап виртуальных машин ESX(i) 3.5 и 4.x+

ghettoVCB.sh - Free alternative for backing up VM's for ESX(i) 3.5 and 4.x+ - Updated 03/14/2011
http://sysadmins.ru/topic305191.html?sid=9897a13f4a636199e53546ef420135be

Руководство по траблшутингу vSphere 4.1

Performance Troubleshooting for VMware vSphere™ 4.1

Официальное руководство vSphere 4.1 в плане безопасности

vSphere 4.1 Hardening Guide

Материалы по резервному копированию виртуальных машин vSphere 4 с помощью Symantec Backup Exec 2010 R2

Видеопрезентации от Андрея Коновалова VM Press:
http://www.youtube.com/watch?v=kW9G_eB-WQk&feature=player_embedded
http://www.youtube.com/watch?v=OHv0mIbfY18&feature=player_embedded
http://www.youtube.com/watch?v=3-e158Ai3qw&feature=related