Hello,
i'm currently installing a third party antivirus product with IDS functionality and all the servers hosted on hyper-v servers (both 2012 and 2012 R2) shows portscan attempts in the firewall logs. I'm trying to find the reason for this behavior and it seems that the VM's nic is act as it was in promiscuos mode and capture packet that are not directed to nor originated from the VM.
Anyone alse saw a similar behavior or have some idea to solve this strange issue?
Thank you in advance.
Raf
Raffaele Zamuner