greenec/Security Onion - Hyper-V Virtual NIC Config.ps1

## Security Onion - Hyper-V Virtual NIC Config.ps1

# Set the monitor mode to Source for each Virtual Switch
$portFeature=Get-VMSystemSwitchExtensionPortFeature -FeatureName "Ethernet Switch Port Security Settings"
$portFeature.SettingData.MonitorMode = 2
Add-VMSwitchExtensionPortFeature -ExternalPort -SwitchName "Security Onion WAN Monitoring" -VMSwitchExtensionFeature $portFeature
Add-VMSwitchExtensionPortFeature -ExternalPort -SwitchName "Security Onion LAN Monitoring" -VMSwitchExtensionFeature $portFeature


# Configure VLAN list to pass through for Security Onion to monitor
# Include Wireless, IoT, and Guest networks, and allow untagged traffic for the truested LAN
Set-VMNetworkAdapterVlan -VMName Sentinel -Trunk -AllowedVlanIdList "20, 30, 40" -NativeVlanId 0

	# Set the monitor mode to Source for each Virtual Switch
	$portFeature=Get-VMSystemSwitchExtensionPortFeature -FeatureName "Ethernet Switch Port Security Settings"
	$portFeature.SettingData.MonitorMode = 2
	Add-VMSwitchExtensionPortFeature -ExternalPort -SwitchName "Security Onion WAN Monitoring" -VMSwitchExtensionFeature $portFeature
	Add-VMSwitchExtensionPortFeature -ExternalPort -SwitchName "Security Onion LAN Monitoring" -VMSwitchExtensionFeature $portFeature



	# Configure VLAN list to pass through for Security Onion to monitor
	# Include Wireless, IoT, and Guest networks, and allow untagged traffic for the truested LAN
	Set-VMNetworkAdapterVlan -VMName Sentinel -Trunk -AllowedVlanIdList "20, 30, 40" -NativeVlanId 0