AWS VPC Mirroring with Application Filter Intelligence and Slicing (6.3)

Introduction

The data centers have undergone a tremendous transformation over the last two decades, which resulted in the rise of heterogeneous workloads on physical, virtual, and cloud platforms. The GigaVUE Cloud Suite now supports VPC mirroring. Using the VPC mirroring support, GigaVUE Cloud Suite can now help enterprises to extend their security posture to AWS. With this support, GigaVUE Cloud Suite can be configured to acquire mirrored traffic from AWS instances, optimize the traffic, and then distribute it to the relevant tools thereby improving the security in the AWS environment.

Please check with your Gigamon Sales contact or Gigamon Support for more information regarding the support for the cloud/virtualization platform that you are considering.

Design Topology

Design Overview

The design depicts the deployment of AWS traffic mirroring on EC2 instances (targets) in the same VPC as the visibility fabric components. The visibility node will optimize the traffic acquired using Application Filter Intelligence (AFI) and slicing before distributing it to tools. These configurations will be completed using GigaVUE-FM.

A typical AWS deployment on a platform utilizes the following components to achieve visibility:

• GigaVUE-FM is the management console to deploy, configure, and troubleshoot the deployment.

• Fabric Images

  • GigaVUE-V Series Node is the traffic aggregator for the monitored EC2 targets. This V Series node then filters the traffic using AFI followed by slicing the packets to retain the required headers for inspection before directing to relevant tools.

 

To learn more about this solution, read complete details on the Gigamon Community:

AWS_VPC_Mirroring_with_Application_Filter_Intelligence_and_Slicing