We have been using VMware vCloud Networking and Security in our test and dev environment and will be implementing this into production soon. I am still unsure how I can observe current and past traffic history for troubleshooting purposes.
Specifically I am talking about a vShield Edge that I have deployed.
Let me use Microsoft ISA Server 2006 as an example of what I am talking about.
- I can open ISA Server Management MMC
- In here I can go to Monitoring > Logging
- For current traffic observation
- I can define a query with criteria such a Client IP and Log Time = Live
- I can then watch this live log as I attempt to reproduce the client issue I am having which helps me diagnose things like "oh I need to open that port"
- I can define a query with criteria such a Client IP and Log Time = Live
- For past traffic history
- I can define a query with criteria such a Client IP and Log Time = Specific Time Period
- I can then read through the logs for this specific time period to help me diagnose the issue that was reported to me\
- I can define a query with criteria such a Client IP and Log Time = Specific Time Period
How can I perform this functionality on a vShield Edge?
I currently have deployed vShield Mananger 5.1.1-848085 which has been used to deploy the vShield Edge into our test and dev environment.