Anybody has experience in using port mirroring and promiscuous mode in vSphere Distributed Switch when some port groups are created by vCloud?
I have a vCloud Director environment. Apparently there are some port groups in Distributed Virtual Switch created by vCloud Director. I have tested port mirroring and promiscuous mode in vCloud network isolation-backed port groups and it didn't work. I mean I don't receive the packets (that I'm supposed to receive based on my configuration) in my IDS. I suspect that port mirroring won't work in VCDNI-backed port groups because of vCloud encapsulation at upper layer. Am I right? Any idea?
I haven't tried it, but due to the construction of vCDNI frames (essentially mac-in-mac encapsulation) for fencing and isolation, I would be surprised if it worked.