NSX – Enable data collection for single/multiple virtual machines

Activity Monitoring provides visibility into your virtual network to ensure that security policies at your organization are being enforced correctly.

A Security policy may mandate who is allowed access to what applications. The Cloud administrator can generate Activity Monitoring reports to see if the IP based firewall rule that they set is doing the intended work. By providing user and application level detail, Activity Monitoring translates high level security policies to low level IP address and network based implementation.

Once you enable data collection for Activity Monitoring, you can run reports to view inbound traffic (such as virtual machines being accessed by users) as well as outbound traffic (resource utilization, interaction between inventory containers, and AD groups that accessed a server).

To enable Data Collection on a single Virtual Machine:

1. Log in to the vSphere Web Client.

2. Click vCenter and then click VMs and Templates.

3. Select a virtual machine from the left inventory panel.

4. Click the Manage tab and then click the Settings tab.

5. Click NSX Activity Monitoring from the left panel.

6. Click Edit.

7. In the Edit NSX Activity Monitoring Data Collection Settings dialog box, click Yes.

To enable Data Collection for Multiple Virtual Machines:

The Activity Monitoring Data Collection security group is a pre-defined security group. You can add multiple virtual machines to this security group at a time, and data collection is enabled on all of these virtual machines. You must enable data collection at least five minutes before running an Activity Monitoring report.

1. Log in to the vSphere Web Client.

2. Click Networking & Security and then click Service Composer.

3. Click the Security Groups tab.

4. Select the Activity Monitoring Data Collection security group and click the Edit icon.

5. Follow the wizard to add virtual machines to the security group (either via Dynamic Membership is you setup a security tag or via the “Objects to Include”:

Data collection is enabled on all virtual machines you added to this security group, and disabled on any virtual machines you excluded from the security group.

Once you have VMs added to these groups you can select Activity Monitoring and see the activity for the VMs in the group.

 

Leave a Reply

Your email address will not be published. Required fields are marked *