Using Wireshark of course. asked 05 Aug '13, 04:20  dhop edited 05 Aug '13, 13:43  cmaynard ♦♦ |
One Answer:
Perhaps the following presentation given by Jasper Bongertz at Sharkfest '11 will be useful to you: Wireshark vs. "The Cloud". answered 05 Aug '13, 13:46 cmaynard ♦♦ 1 You can also check my blog for two posts explaining capture on VMware vSphere, in case that's what you need: http://blog.packet-foo.com/2013/04/capturing-packets-of-vmware-machines/ (05 Aug '13, 16:00) Jasper ♦♦ |
Are you looking to capture on the VM host or in the VM itself?
Looking at capturing in the VM itself. We have two VM host chassis with several virtual servers that were created in each one. One VM host is using Cisco 1000v for its virtual switch. The other one is currently using HP's virtual switch. I need to capture packets in both environments. I started with the 1000v environment and wanted to have a seperate VM server/workstation run Wireshark and have its virtual port be a destination SPAN port for another server's source port. When I do this, my virtual network to the wireshark virtual server (remote desktop access) is dropped. I will end up placing wireshark on the virtual server I want to capture packets to work around this issue. However, I want to be able to run wireshark on another virtual server so that it won't possibly cause problems on a production virtual server. I haven't started to work with the HP virtual switch.