- Promiscuous Mode: Accept or Reject
- MAC Address Changes: Accept or Reject
- Forged Transmits: Accept or Reject
A Windows 7 VM is installed in the ESXi 5.0 Server and connected to the same VLAN as the Management Traffic.
WireShark is installed in the VM to capture the traffic in the vSwitch. Microsoft Network Capture is used to open the WireShark captured packet. MS NCap is use because NCap can do a better job in sorting TCP Session as compare to WireShark.
Setting Promiscuous Mode to Reject (Default)
Setting Promiscuous Mode to Accept
Captured using WireShark When Promiscuous Mode Set to Reject
Captured using WireShark When Promiscuous Mode Set to Accept
Preview Captured Packet using Microsoft NCap When Promiscuous Mode Set to Accept