My ESXi is provided by Online.net and accessible from Internet. Reading the VMware documentation, one can see:
ESXi includes a firewall that is enabled by default.
At installation time, the ESXi firewall is configured to block incoming and outgoing traffic, except traffic for services that are enabled in the host’s security profile.
But the default security profile is way too loose! So here’s how to harden it a bit.
Continue reading “Enforce IP filtering on ESXi”
I decided to run VMware ESXi on my Online/Scaleway Start-2-L server. Using the online.net installer, you can “only” get ESXi 6.5.0d (64BITS). So here’s how to upgrade to 6.7.
Continue reading “Upgrade VMware ESXi 6.5 to 6.7 using the esxcli console tool”
On my new OpenBSD servers, I decided to use memory filesystem for /tmp. After looking at old servers usage, I decided that 64M of memory space would be enough.
# grep mfs /etc/fstab
swap /tmp mfs rw,nodev,nosuid,-s=64m 0 0
And that seemed well sized. Until I ran syspatch(8) and got a whole bunch of errors:
Continue reading “syspatch(8) and /tmp sizing”
I had difficulties running Linux as a virtual machine using OpenBSD vmd(8). Ubuntu LTS crashed during installation wizard, Debian 9 does not seem to ship with virtio drivers, Alpine randomly freezes the console and Slackware … well slack has not been updated in years. Arch Linux seems to run well. And as I didn’t find a complete guide to install and run it using OpenBSD vmd(8), here are my notes.
Continue reading “Running Arch Linux using OpenBSD vmd(8)”
Now that I have an OpenBSD server hosted in the Wild and capable of doing virtualization, I’ll migrate all my VM hosted on Synology Virtual Machine Manager. But even if the OpenBSD installer is straight forward, deploying tens of VM takes some time. So I set up an automated environment that provides fast and (nearly) finger-less deployment.
Continue reading “Automated OpenBSD deployment on vmd(8)”