Setup Isolated Test Network


I'm setting up a test environment for MSSC Config Mgr, and I wanted to isolate it from the rest of my network.

We have Cisco 3750s, with vlans, 3- Vsphere 4.1 ESXi hosts with available physical vmnics.

I've been following article:

and had set a vlan ID on the port group I want to isolate, it was isolated but could not get out to the internet. Unsure how to make that connection happen? w/o the vlan id it can get out (we have a PIX 500 with a route for the vlan, but as soon as I add the vlan id on the port group it can't get out).

I'm looking to create a test domain and don't want the two domains to confuse each other.

Also, it would be handy to have some drives available to map between the networks. Is this possible?

Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
If you want to create an isolated network use a virtual vSwitch inside ESX with no physical network card uplinks.

your other requriements, internet access and file sharing are a little tricky, if you want to be completely isolated.

BUT, what I would do, would be to install a NIC, in a single VM, which is connected back to the production network. So technically, a single VM with two NICs connected to both networks, with no routing protocols, and you should be able to use Internet from this VM, and access fileshares.

You could also setup a web proxy on this VM, to enable internet access to your isolated LAN.

This is how we setup most of our Labs, which are isolated.
percussedAuthor Commented:
Thanks for the suggestion hanccocka.

I'm looking at your suggestion of a 2 NIC VM with routing shut off. Should I use the clear ip route and no ip routing commands?

I guess I need to clarify my question.Because I'm testing MS system center Config Mgr, I need to be able to have physical PCs in the same network as the servers, so I guess it's more networking than vmware question.  

Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
A VM with two NICs, will not route.

If you have physical servers, we often connect a patch cable to a single NIC on the ESXi server, and connect to a dedicated "physical server isolated switch".

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.