I suppose this is a question to be posed for any VM host but specifically my question is for Hyper-V. In a nutshell, is it regarded as 'safe' to put a VM that is directly attached to the Internet on a host with VMs that are protected via other means?
For example, I have a Win2k8 R2 H-V host with three internal domain attached VMs. We have need for an external DNS server that will be Linux. It will run its own security and will be outside the primary firewalls protecting the rest of the org. It will also have its own dedicated NIC with cable plugged into Internet switch.
I cannot find any real documentation on Hyper-V virtual switch security. Planning for potentials necessitates that I dig around in the hopefully unlikely event that the Linux machine is compromised, the rest of the VMs and the host itself cannot be penetrated.
For example, I have a Win2k8 R2 H-V host with three internal domain attached VMs. We have need for an external DNS server that will be Linux. It will run its own security and will be outside the primary firewalls protecting the rest of the org. It will also have its own dedicated NIC with cable plugged into Internet switch.
I cannot find any real documentation on Hyper-V virtual switch security. Planning for potentials necessitates that I dig around in the hopefully unlikely event that the Linux machine is compromised, the rest of the VMs and the host itself cannot be penetrated.