We have a VM's network with 150 virtual servers with only one port group (PGProd). I have been reading all about sniffer and IDS. They talk about enabling the promiscuous option in the vswitch, mirroing the physical switch etc.
My understanding is that enabling promiscuous is not good idea in the Vswitch. Experts out there, you must have a Sniffer/IDS in your virtual environment.
How do we go about deploying the sniffer?.