Deploying Gigamon Cloud Suite to Ingest RAW Traffic from Physical Network for Virtualized Tools on Nutanix (6.2)

Introduction

Enterprise datacenters traditionally had tools for traffic analysis such as IDS, DLP sensors as physical appliances which the changing landscape of virtualization and cloud computing most OEMs are going the virtualization way, apart from VMware vSphere, Nutanix is now another dominant technology player and has pushed the hyper converged infrastructure to wider community. This has also promoted virtualization to larger degree including conventional tools as appliance VMs. The challenge now is to make sure no limitations arises due to this virtualization of the tool and continues to be effectively utilized to process the traffic from the traditional physical plane traffic which passes through the datacenter switches in addition to virtual server farm.

In this GVD, we will be covering the implementation of Gigamon visibility solutions on Nutanix for ingesting the traffic from external sources like switches using SPAN mirror the traffic at Nutanix interface to forward the traffic to V Series use theGigaSMART applications for optimizing and transforming the traffic before feeding the virtual Deep Observability implementations (tools) all across.

Refer to Gigamon Validated Designs section of Gigamon community documentations for more such designs. Please check with your Gigamon Sales contact or Gigamon Support for more information regarding the support for the cloud/virtualization platform that you are considering.

Design Topology

Design Overview

The design topology illustrates the configuration of Gigamon Cloud Suite in a Nutanix HCI infrastructure, and its traffic source is a network switch which streams the SPAN traffic to the connected physical interface on Nutanix AHV node. To segregate the traffic the Nutanix AHV is configured to have 2 separate bonds, 1 for the production workloads referenced by bond 0 while the traffic from external sources is using the bond 1 mapped to its corresponding interfaces. The traffic arriving on the AHV interface would be mirrored and relayed to the V Series's chosen interface via the switch port analyzer option AHV nodes. Gigamon Cloud would ingest this traffic as RAW format and would be able to apply the GigaSMART applications, such as Deduplication to optimize and transform the traffic before sending it to a security tool.

 

To learn more about this solution, read complete details on the Gigamon Community: Deploying Gigamon Cloud Suite to Ingest RAW traffic from Physical network for virtualized tools on Nutanix.(6.2)