VMware Cloud Community
mkian
Contributor
Contributor

Port Mirroring and Promiscuous mode in VCDNI backed port groups

Anybody has experience in using port mirroring and promiscuous mode in vSphere Distributed Switch when some port groups are created by vCloud?

I have a vCloud Director environment. Apparently there are some port groups in Distributed Virtual Switch created by vCloud Director. I have tested port mirroring and promiscuous mode in vCloud network isolation-backed port groups and it didn't work. I mean I don't receive the packets (that I'm supposed to receive based on my configuration) in my IDS. I suspect that port mirroring won't work in VCDNI-backed port groups because of vCloud encapsulation at upper layer. Am I right? Any idea?

Reply
0 Kudos
2 Replies
chriswahl
Virtuoso
Virtuoso

I haven't tried it, but due to the construction of vCDNI frames (essentially mac-in-mac encapsulation) for fencing and isolation, I would be surprised if it worked.

VCDX #104 (DCV, NV) ஃ WahlNetwork.com ஃ @ChrisWahl ஃ Author, Networking for VMware Administrators
Reply
0 Kudos
TommyFreddy
Enthusiast
Enthusiast

Have a look this may help..

Enabling Promiscuous Mode on vSphere 4 - Spiceworks

Take care!

Reply
0 Kudos