Hi, I'm a security guy trying to understand some host hardening guidelines, not much vmware knowledge. I'm trying to understand the differences between resource pools and setting per-vm resources. Specifically around the host hardening guidelines in http://www.vmware.com/files/pdf/techpaper/VMW-TWP-vSPHR-SECRTY-HRDNG-USLET-101-WEB-1.pdf In that guide VMP04 has this for recommendations "Use shares or reservations to guarantee resources to critical virtual machines. Use limits to constrain resource consumption by virtual machines that have a greater risk of being exploited or attacked, or ones that run applications that are known to have the potential to greatly consume resources." I've done a bit of research and I can't seem to figure out if a resource pool is setup properly can that limit the total amount of memory/cpu that a guest can use or must those limits always be set in the resources tab on each individual vm's properties.
↧