Thanks Alfredo ... It depends ... I need to implement this solution or another based in ESXi next week or the other week ...
But if I can setup some simple solution that could permit to implement your solution without disturbing this environment too much ... What do you think Alfredo?? On 25/09/13 19:37, Alfredo Cardigliano wrote: > Hi CL Martinez > vPF_Ring is EOL, we will introduce a new product for VMs soon (in a few > days/weeks), with better performance, easier to configure, and more flexible. > Do you think you can wait? > Stay tuned. > > Alfredo > > On Sep 25, 2013, at 9:27 PM, carlopmart <[email protected]> wrote: > >> Hi all, >> >> After reading vPF_Ring userguide, i have some doubts about how to >> implement it in a KVM host with three vm guests. >> >> First of all, my current scenario: >> >> - CentOS 6.4 x86_64 (fully patched) in a HP ProLiant with 32 GiB RAM, >> 16 cores and a dual broadcomm nic (tg3) in a PCi-x bus. >> >> - Three CentOS 6.4 x86_64 virtual guests (fully patched) running >> bro-ids, suricata and snort (only one per guest). >> >> Ok, as you can see, my first problem is with dual broadcomm nic: I can >> not to configure pci-passthrough for these guests, and I have more >> guests than physical nics (I can use only one nic for sniff traffic), >> then could this be a problem?? And can I configure pf_ring to bind it >> only to one nic instead of both?? >> >> Next. According to userguide I need to install pf_ring in kvm host and >> to patch qemu. Is it necessary to patch in latest qemu versions released >> by RedHat?? This can be a big problem to maintain qemu packages in >> RHEL-based distros ... >> >> last question from kvm host side: Is it recommended to configure port >> mirroring using tc utils to mirror traffic from physical nic?? maybe it >> is a stupid question :)) >> >> >> From the guest side: Is it not needed to install pf_ring module in kvm >> guest?? Do I need to install vnplug module and pf_ring library only?? Is >> it ok to use virtio-net drivers in guests nics or is it best to use e1000?? >> >> Many thanks. >> >> -- >> CL Martinez >> carlopmart {at} gmail {d0t} com >> _______________________________________________ >> Ntop-misc mailing list >> [email protected] >> http://listgateway.unipi.it/mailman/listinfo/ntop-misc > > _______________________________________________ > Ntop-misc mailing list > [email protected] > http://listgateway.unipi.it/mailman/listinfo/ntop-misc > -- CL Martinez carlopmart {at} gmail {d0t} com _______________________________________________ Ntop-misc mailing list [email protected] http://listgateway.unipi.it/mailman/listinfo/ntop-misc
