locked
Port Mirroring Hyper-V Cluster to ATA Gateway on a phsyical server RRS feed

 > 

  • Question

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi ATA Team,

     

    Scenario:

    • Source: vNIC of VMs Domain Controllers hosted on Hyper-v Clusters. DCs are configured on different VLANs. A trunk port is configured between Hyper-v clusters and Data Center switch.
    • Destination: a dedicated NIC on ATA Gateway that installed on a physical server connected to the same DATA Center Switch
    • Data Center Switch: Cisco.

    Question:

     How to configure spanning traffic from Domain Controllers to ATA Gateway on this case?

    Thanks,

    Friday, November 4, 2016 8:06 PM

All replies

  • Question
    Sign in to vote
    0
    Sign in to vote

    Hi,

    the possibility to use the LW Gateway is not an option?

    Regards

    Tuesday, November 8, 2016 3:12 PM
  • Question
    Sign in to vote
    0
    Sign in to vote

    ATA Lightweight Gateway is an option if there is a technical or managerial/financial restrictions, otherwise ATA Gateway is the optimum choice. ATA Lightweight could easily stop working by attacker by stopping the service or DoS against DC.

    Technical restrictions:

     -Network switch doesn't support SPAN/RSPAN/ERSPAN and you can't get SPAN through network TAP either.

     -The monitored domain controllers are on the cloud (Azure). The only option on this case is a Lightweight Gateway.

     Managerial/Financial restrictions:

     -Can't afford a dedicated VM or physical server for ATA Gateway.

    Saturday, November 12, 2016 12:44 AM