Hi all,
My head is so full of reading different threads on different forums and I still didn't figure this out. I actually have two questions:
1. ESXi NIC configuration
2. Building VLANs on virtual machines
1st QUESTION
I have a PC with ESXi 6 installed. This PC have 5 NICs (4 of them are Intel and working great and 1 Realtek which is on the motherboard and not recognized by ESXi, but that is OK because I don't really need that NIC)
I configured 4 different vSwitches with 1 physical NIC attached to each. I created a VM with Sophos UTM (similar to pfSense) with 1 NIC as WAN and 1 NIC as LAN. 3rd NIC is served as Network Management and 4th for VMs. Please see attached picture. 3rd NIC (Management Network is on the same network as Sophos LAN = home.lan = 192.168.1.0/24). I want to separate the Management network from other devices from my home.lan but my PC is on the same network and I really don't know how to do this. I don't want any device on home.lan to be able to access my management network. How would I do this?
2nd QUESTION
4th vSwitch/NIC is used to handle all the virtual machines created in ESXi. I separated VMs to different port groups (Clients, Guests, Server etc.) so VMs in different port groups could not communicate with each other. I don't want that Client VMs communicate with Guest VMs and so on. Each port group is assigned with VLAN id (Clients with VLAN id 100, Guests with VLAN id 110, Server with VLAN id 120 and so on). Is that all there is to configure and I should connect this NIC to Layer 2 Switch and configure routing in Sophos UTM.
Would someone be so kind to put me in the right direction.