上QQ阅读APP看书,第一时间看更新
Describing vDS Security policies/settings
This was already described in Objective 1.4 for the standard virtual switches.
By default, on vDS, all security policies are rejected on all dvPorts:
Figure 2.13: Security policies of a dvPort
For more information, see the vSphere 6.5 Networking guide (https://docs.vmware.com/en/VMware-vSphere/6.5/com.vmware.vsphere.networking.doc/GUID-62914CF2-A6A8-4DCC-90A9-8CD4BBF50017.html).
There is also a BPDU filter feature (both on vSS and vDS), as described in KB 2047822 ( https://kb.vmware.com/s/article/2047822)—Understanding the BPDU Filter feature in vSphere.
Other security policies are implemented with NSX (for example, IP Spoof Guard).