Solved

vmware port

Posted on 2013-11-19
7
365 Views
Last Modified: 2013-12-04
I have a virtual server and I'd like to capture traffic going to that virtual server. How do I span the port on my Cisco switch. I am not onsite so I do not know the port where the physical server is connected to. Any ideas? Thx
0
Comment
Question by:leblanc
  • 3
  • 2
  • 2
7 Comments
 
LVL 12

Assisted Solution

by:Infamus
Infamus earned 166 total points
ID: 39661035
Do you have access to the server, for example, like RDP?

If you can, then you can install wireshark and capture the traffic, otherwise you need to find a switchport where the vm host is connected.  In that case, you will be capturing all the traffic going to the vm host.
0
 
LVL 1

Author Comment

by:leblanc
ID: 39661152
Is it possible to capture the port where the virtual server is connected to? I am not sure how that will work?
0
 
LVL 57

Accepted Solution

by:
giltjr earned 334 total points
ID: 39661284
You need to find the MAC address of the physical server and then look at the mac address table.

However, how/where are you going to SPAN the traffic if you don't have physical access to the switch?

Just to make sure if you do span the port you will capture ALL traffic to that physical server, not just the traffic to that VM.
0
Netscaler Common Configuration How To guides

If you use NetScaler you will want to see these guides. The NetScaler How To Guides show administrators how to get NetScaler up and configured by providing instructions for common scenarios and some not so common ones.

 
LVL 1

Author Comment

by:leblanc
ID: 39661349
This is what I have:
- I can access the switch
- I know the MAC and IP address of the physical server where the virtual server resides.
- I know the switch port where the physical server is connected to.
- I know the MAC address of the virtual server.

I just want to capture the traffic to the virtual server, not the whole physical server. It has to have a way to do this. Thx
0
 
LVL 57

Assisted Solution

by:giltjr
giltjr earned 334 total points
ID: 39661359
Span session only know ports.  So all traffic going in/out of the port is mirrored.

If you have the correct access to the ESXi host you can capture traffic there using TCPDUMP.


http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1031186

http://kb.vmware.com/selfservice/microsites/search.do?language=en_US&cmd=displayKC&externalId=1000880
0
 
LVL 1

Author Comment

by:leblanc
ID: 39662825
I am not allow to have access to the ESXi host... Politics... :)
I will just capture the port where the physical server is connected to and setup the filter on the virtual server. Thx
0
 
LVL 12

Expert Comment

by:Infamus
ID: 39662842
Let us know how it went.
Good luck.
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Hybrid WAN vs SD WAN 4 51
Cisco 3560 switches not seeing VTP V3 12 45
md5 password 3 60
Windows NLB support on Cisco Nexus 9000 1 17
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now