Use Network Packet analyzer in VMware vSphere Virtual Network

Source: Internet
Author: User
Tags cisco switch

Whether you are a server administrator, a network administrator, or a VMware administrator, you use a protocol analyzer, also known as a data packet analyzer or a "sniffer", as a common tool for analyzing network problems. These software applications can analyze network traffic in real time, allowing you to view packets that pass through the network. These tools will tell you which network device on the Network creates the most traffic, which protocol is most commonly used, who is communicating with whom in the LAN, and whether there is a network error. If the data packet is sent in plain text, you can even decode the text to check whether there is data similar to a password.

Why do you need the hybrid mode?

A network switch uses a forwarding table on a Cisco switch which is a CAM table) to track which Ethernet devices are located on which Ethernet ports and send only traffic destined for a specific device to the port on which the device is located. By default, the protocol analyzer can only view the traffic sent to or from the computer that runs the analyzer. This may not help you solve network faults. Therefore, the common method is to execute "port image" or configure "port ing" SPAN or RSPAN ). This allows you to copy all traffic destined for or from a specific port, port group, or VLAN list to the target port. Then, you can use the protocol analyzer to analyze the port.

Hybrid mode in virtual networks

What happens if the network is a virtual network? Don't worry, you can execute the same process in a vswitch so that you can see all the traffic that passes through the vswitch or vDS. You need to run the Wireshark free version in the Virtual Machine) such a protocol analyzer, and then configure the port group, where the Connected Virtual Machine is in the hybrid mode, like this:

After the hybrid mode is configured for the vSwitch, the port groups of the vSwitch enter the hybrid mode. Now, each port in the virtual machine port group can see the traffic that passes through the vSwitch is sent to or from the virtual machine on the vSwitch ). And suddenly, your Wireshark protocol analyzer will start to see all the traffic from other virtual machines, so that you can analyze the traffic of the entire virtual network, as shown in ).

Think about it. You don't have to spend a penny analyzing the virtual network. You only need to adjust the settings of a vSphere virtual switch and install a protocol analyzer on the virtual machine connected to the vSwitch.

Analyze virtual networks

Why do you want to analyze virtual networks? In fact, the reason for analyzing the virtual network is basically the same as that for analyzing the physical network. The following are some reasons why I used to analyze the virtual network:

◆ Confirm the excessive use of network bandwidth, resulting in a virtual network or physical network) running slowly Virtual Machine

◆ Find the computer infected with worms or viruses

◆ Network service dhcp or DNS) or network application troubleshooting

◆ Prove that the virtual network is not the cause of the problem

◆ Sniffing whether malicious or harmful traffic exists in the Network

◆ Others

Tools and resources for analyzing virtual networks

You can use many tools used to analyze physical networks to monitor virtual networks. Other tools can also be used:

◆ Free Wireshark for protocol analysis Packet sniffing)

◆ VMware KB1004099-configure hybrid mode on the vswitch or port group

◆ Zenoss open-source IT management tool is not dedicated to virtualization, but IT is an ideal tool for managing virtual and physical networks.

◆ IT knowledge base of Petri Net: Use WiresharkEthereal to troubleshoot basic network faults.

◆ Free Xangati for ESX Server. It is the only virtual device imported to ESX, as shown in)

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.