VMware
 

Knowledge Base

Search the Knowledge Base   View by Article ID
 

Configuring promiscuous mode on a virtual switch or portgroup

Purpose

By default, a guest operating system's virtual network adapter only receives frames that are meant for it. Placing the guest adapter in promiscuous mode causes it to detect all frames passed on the virtual switch that are allowed under the VLAN policy for the associated portgroup. This can be useful for intrusion detection monitoring or if a sniffer needs to be run to analyze all traffic on the wire.

Resolution

To configure a portgroup or virtual switch for promiscuous mode using the Virtual Infrastructure Client:
  1. Highlight the ESX Server host and click the Configuration tab.
  2. Click Properties next to the virtual switch or portgroup.
  3. To allow promiscuous mode on the virtual switch or portgroup, highlight the name of the virtual switch or portgroup and click Edit.
  4. Click the Security tab.
  5. From the dropdown for Promiscuous Mode, choose Accept.
 
Note: The setting on the portgroup overrides the virtual switch setting. Promiscuous mode is disabled by default, and must not be turned on unless specifically needed, as network performance to the attached virtual machines may be affected.

Request a Product Feature

To request a new product feature or to provide feedback on a VMware product, please visit the Request a Product Feature page.

Feedback

Rate this article:
(2 Ratings)

Did this article help you?
This article resolved my issue.
This article did not resolve my issue.
This article helped but additional information was required to resolve my issue.
What can we do to improve this information? (4000 or fewer characters)
Email address (optional)
Submit
Rate this article:
(2 Ratings)
Actions
  • KB Article: 1004099
  • Updated: Aug 14, 2009
  • Products:
    VMware VirtualCenter
  • Product Versions:
    VMware VirtualCenter 2.0.x
    VMware VirtualCenter 2.5.x