Hi

I configured a monitoring port on my Cisco SG300 (monitoring all VLAN's to port 23).

Port 23 is connected to a dedicated NIC in the ESX host.

I have a virtual monitoring machine, i.e. a packet recorder.

I do see all the traffic but without any VLAN Tags. The switch exports the Tags, i.e. when I connect my laptop directly on that port 23 with Wireshark, I do see the VLAN Tags, but I cannot get it to work so that the virtual machine does see the Tags as well.

I tried standard Switch with settings "0" and "4095" for the port group --> nothing

I tried dvswitch with 0-4095 --> nothing.

As the switch is exporting the Tags correctly, I assume that the vswitch somehow filters these tags. I tried every possible combination but can't get it to work.

In all scenarios, the port group / switch are set to promiscuous mode "accept".

Am I missing something?

I tried searching the net but all I could find was related to traffic originating in a vswitch, etc, but nothign about what to do when the vswitch is connected to a physical span port.

Thanks a lot in advance