I want to host several centos boxes each with their own domain setup on an ESX box. My thinking is to do the following:

1. Put the ESX on a DMZ
2. Have the vmware ESX process by inspection all incoming packets and router based on the domain to the appropriate box.

So for example: and

user does .... based on header it will route to the correct machine on the esx. Is that possible?
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
You do not have to connect the ESXi host server to the DMZ, you just need to build a vSwitch, and connect that to the DMZ, via VLANs or physical network interfaces.
Starquest321Author Commented:
Making progress. But need some more detail: So the vSwitch will have it's "own" vIP address. And that will connect to the DMZ. When a request comes in the vSwitch will inspect the header and route to the proper box. How do I setup a vSwitch? Any detailed examples of something like that?
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
vSwitchs do not have IP Addresses.

Just like a physical switch, traffic is just passed, switched to ports, which a device is connected to.

Device End Points e.g. VMs have IP Addresses.

see my EE Article

Part 14: HOW TO: Configure basic networking on a VMware vSphere Hypervisor 5.1 (ESXi 5.1) Host Server

So you just create a new vSwitch, connect to networking which is your physical DMZ, and then create a Virtual Machine Portgroup called DMZ... connect Network Portgroup DMZ to VMs...
Webinar: Cyber Crime Becomes Big Business

The rising threat of malware-as-a-service is not one to be overlooked. Malware-as-a-service is growing and easily purchased from a full-service cyber-criminal store in a “Virus Depot” fashion. Join us in our upcoming webinar as we discuss how to best defend against these attacks!

Starquest321Author Commented:
But I want to understand. I have one routable IP. Now for each domain I have a VM. For example: on VM1 and has a website on port 80 on VM2 and has a website on port 80

Both are connected on the vSwitch.

Now I type ... which is on port 80.... how will the switch know to route on vm1?
Same example on vm2?
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
Now I type ... which is on port 80.... how will the switch know to route on vm1?
Same example on vm2?

It does not, and it will not.

This will need to be done in the VM and DNS.

This is nothing to do with ESXi.
Starquest321Author Commented:
I am able to accomplish this on the single VM with the DNS as suggested. But on the router port 80 goes to that single VM. But now I want to additional VM and have traffic routed based on HOST
Starquest321Author Commented:
Meaning based on domain name. . .

So traffic for goes to vm1 ... which has its own vm and dns
and traffic for goes to vm2 ... which has it own vm and dns.
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
This can be done with a VM, with multiple IP Addresses, host headers, and a Website....

or different IP Addresses, and different VMs.

Again, this is not a virtual question....nothing really to do with how the servers are hosted.

Do you have more than one public IP Address ?

or you have a single public IP Address, and what to use port 80 - twice ?
Starquest321Author Commented:
What I am really thinking about is this:

Can vmware ESX handle what a Cisco box typically does:

Assigning Multiple IP Addresses to Network Interfaces

So that I connect the network cable coming from the providor straight into the esx and use some interface to assign all the IP recieved. Is that possible?
Starquest321Author Commented:
And if that is possible what I mean is that I put the whole ESX on a DMZ . . and let the vmware firewall :: router :: switch handle traffic coming from all 5 IP addresses.
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
There is no router or firewall in ESXi, which will handle this, you will need to use a virtual router product.

If you have 5 public IP Addresses, - no issue.

Traffic flows through a vSwitch in ESXi, just like it flows through a physical switch.

If you need to do routing or firewall, that needs to be done with another product inside or outside of ESXi.
Starquest321Author Commented:
I have 5 public IP addresses ... but do I need 5 physical network cards ... or do I configure all 5 on the vswitch?
Andrew Hancock (VMware vExpert / EE MVE^2)VMware and Virtualization ConsultantCommented:
You just need to connect at least 1 physical network card, into the network which has access to the DMZ.

create a new vSwitch, create a virtual machine portgroup called DMZ, as per my EE Article, assign this to 5 VMs, and then assign those 5 VMs, those individual 5 IP Addresses and you are done!

60 seconds to complete.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
I am not as good with CentOS but in Windows you can assign multiple IP to a host and have it respond to those IP's and in IIS (Web Server) bind the site to the IP it should listen on.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today

From novice to tech pro — start learning today.