How to setup AWS VPC Traffic Mirroring (Nitro)

The video below explains how to use AWS VPC Traffic Mirroring to send raw packet data to a Sinefa probe running in AWS. (using nitro instances)

Key steps:

1. Deploy a Sinefa probe in AWS
2. Configure the Sinefa probe as a VPC Traffic Mirroring Destination
3. Configure a VPC Traffic Mirroring Filter to send only the desired packets to the Sinefa probe
4. Configure a VPC Traffic Mirroring Session to mirror traffic from an ENI to the Sinefa probe
5. Setup a new VXLAN interface on the Sinefa probe to accept and monitor the mirrored traffic

Additional resources:

• Sinefa probe on the AWS Marketplace: https://aws.amazon.com/marketplace/seller-profile?id=969b4a30-4971-46f9-9ea6-02504fb2f157
• AWS VPN Traffic Mirroring overview: https://docs.aws.amazon.com/vpc/latest/mirroring/what-is-traffic-mirroring.html