如何在ESXi的虚机找跑VMware ASA

1.vCenter中添加虚拟机的参数：

    在vCenter上的ESXI系统创建的虚拟机，再创建虚拟机的方法：打开vCenter界面关闭虚拟机电源
右键单击虚拟机----编辑设置-选择“选项”----选择“常规”----在右下的配置参数中点击“配置参数”在配置参数界面，点击添加行，分别添加以下4行：

monitor_control.vt32 = "TRUE"
monitor_control.restrict_backdoor ="TRUE"
monitor.virtual_exec= "hardware" 
deploymentplatfrom=windows

点击两次确定，再启动虚拟机。

A.如果出现如下提示，估计是参数没有加全的缘故造成：

 *** VMware Workstation internal monitor error ***
vcpu-0:VMM fault: regs=0x2f94, exc=13, eip=0x818c026
Please report this problem by selecting menu item Help > VMware on the Web > Request Support, or by going to the Web page "http://vmware.com/info?id=8&logFile=C%3a%5cGNS%5cVM%5casa%5f1%2e4%5cvmware%2elog&coreLocation=C%3a%5cGNS%5cVM%5casa%5f1%2e4%5cvmware%2dcore%2egz". Please provide us with the log file (C:\GNS\VM\asa_1.4\vmware.log) and the core file(s) (C:\GNS\VM\asa_1.4\vmware-core.gz, C:\GNS\VM\asa_1.4\vmware-vmx-3912.dmp).
If the problem is repeatable, please select 'Run with debugging information' in the Options panel of Virtual Machine Settings. Then reproduce the incident and file it according to the instructions.
To collect data to submit to VMware support, select Help > About and click "Collect Support Data". You can also run the "vm-support" script in the Workstation folder directly.
We will respond on the basis of your support entitlement.
We appreciate your feedback,
  -- the VMware Workstation team.

B.如果没有加参数，会出现如下报错信息：

Running VMware Workstation in a virtual machine requires the outer virtual machine to be configured for running a VMware ESX guest operating system. You may not power on a virtual machine until the outer virtual machine is reconfigured.
 

2.解决虚拟机无法与外界通讯的问题：

ASA虚拟机的第一块网卡虽然与ESXi的2003虚拟机的真实网卡桥接，并且配置相同网段的地址互相也能ping通，但是ASA虚拟机无法ping通其它同网段的主机，通过配置VMWare的静态NAT解决。

A.确保ASA虚拟机的某块网卡为NAT方法连接:

B.配置静态NAT:

C.设置ASA接口地址:

interface Ethernet0/0
 nameif inside
 security-level 100
 ip address 192.168.80.10 255.255.255.0

---备注：192.168.80.10为静态NAT配置的虚机的地址

D.配置ASA的SSH连接：

ciscoasa(config)# crypto key generate rsa

ciscoasa(config)# ssh 192.168.0.0 255.255.0.0 inside

ciscoasa(config)# password cisco

ciscoasa(config)# enable password cisco

ciscoasa(config)#route inside 192.168.0.0  255.255.0.0 192.168.80.2 1

这样通过默认用户名pix，通过连接VMWare ASA宿主机的22号端口，用新配置的密码就能ssh 连接到该ASA,见下图所示，ssh连接的地址为192.168.99.233。

如果不想用默认的用户名，可以通过配置SSH为本地AAA认证解决：

ciscoasa(config)# aaa authentication ssh console LOCAL 
设置一个本地账号
ciscoasa(config)#username *** password ***

本文转自 碧云天 51CTO博客，原文链接：http://blog.51cto.com/333234/863831，如需转载请自行联系原作者