VMware, Inc.
65
Chapter 12 Flow Monitoring
7
Select a destination IP address.
8
Select a source IP address.
At the source IP address level, you can create an App Firewall rule based on the specific source and
destination IP addresses.
To view the Flow Monitoring report
1
In the vSphere Client, go to
Inventory > Hosts and Clusters
.
2
Select a datacenter or cluster resource from the resource tree.
3
Click the
vShield App
tab.
4
Click
Flow Monitoring
.
The charts update to display the most current information for the last seven days. This might take several
seconds.
5
Click
Show Report
.
6
Drill down into the report.
7
Click
Show Latest
to update the report statistics.
Add an App Firewall Rule from the Flow Monitoring Report
By drilling down into the traffic data, you can evaluate the use of your resources and send session information
to App Firewall to create a new Layer 4 allow or deny rule. App Firewall rule creation from Flow Monitoring
data is available at the datacenter and cluster levels only.
To add an App Firewall rule from the Flow Monitoring report
1
In the vSphere Client, go to
Inventory > Hosts and Clusters
.
2
Select a datacenter resource from the resource tree.
3
Click the
vShield App
tab.
4
Click
Flow Monitoring
.
The charts update to display the most current information for the last seven days. This might take several
seconds.
5
Click
Show Report
.
6
Expand the firewall action list.
7
Expand the Layer 4 protocol list.
8
Expand the traffic direction list.
9
Expand the port type list.
10 Expand the application or port list.
11 Expand the destination IP address list.
12 Review the source IP addresses.
13 Select the
Zones Firewall
column radio button for a source IP address to create an App Firewall rule.
A pop-up window opens. Click
Ok
to proceed.
The App Firewall table appears. A new table row is displayed at the bottom of the Data Center Low
Precedence Rules or Cluster Level Rules section with the session information completed.
Содержание VSHIELD APP 1.0.0 UPDATE 1 - API
Страница 9: ...VMware Inc 9 vShield Manager and vShield Zones...
Страница 10: ...vShield Administration Guide 10 VMware Inc...
Страница 14: ...vShield Administration Guide 14 VMware Inc...
Страница 18: ...vShield Administration Guide 18 VMware Inc...
Страница 24: ...vShield Administration Guide 24 VMware Inc...
Страница 34: ...vShield Administration Guide 34 VMware Inc...
Страница 42: ...vShield Administration Guide 42 VMware Inc...
Страница 46: ...vShield Administration Guide 46 VMware Inc...
Страница 47: ...VMware Inc 47 vShield Edge and Port Group Isolation...
Страница 48: ...vShield Administration Guide 48 VMware Inc...
Страница 57: ...VMware Inc 57 vShield App and vShield Endpoint...
Страница 58: ...vShield Administration Guide 58 VMware Inc...
Страница 62: ...vShield Administration Guide 62 VMware Inc...
Страница 68: ...vShield Administration Guide 68 VMware Inc...
Страница 78: ...vShield Administration Guide 78 VMware Inc...
Страница 85: ...VMware Inc 85 Appendixes...
Страница 86: ...vShield Administration Guide 86 VMware Inc...
Страница 130: ...vShield Administration Guide 130 VMware Inc...
Страница 144: ...vShield Administration Guide 144 VMware Inc...