Example: Configuring Mirroring For Remote Monitoring Of Employee Resource Use Through A Transit Switch On Ex9200 Switches - Juniper EX9200 Features Manual

Port Mirroring Analyzers Feature Guide for EX9200 Switches
Example: Configuring Mirroring for Remote Monitoring of Employee Resource Use
Through a Transit Switch on EX9200 Switches
Requirements
50
EX9200 switchesenable you to configure mirroring to send copies of packets to either a
local interface for local monitoring or to a VLAN for remote monitoring. You can use
mirroring to copy these packets:
Packets entering or exiting a port
Packets entering or exiting a VLAN
You can analyze the mirrored traffic using a protocol analyzer application running on a
remotemonitoring stationif you are sending mirrored traffic to an analyzer VLAN.
This topic includes an example that describes how to mirror traffic entering ports on the
switchto the remote-analyzer VLAN through a transit switch, so that you can perform
analysis from a remote monitoring station.
BEST PRACTICE:
performance impact. We recommend that you:
Disable your configured mirroring sessions when you are not using them.
Specify individual interfaces as input to analyzers rather than specifying
all interfaces as input.
Limit the amount of mirrored traffic by:
Using statistical sampling.
Setting ratios to select statistical samples.
Using firewall filters.
This example describes how to configure remote mirroring through a transit switch:
Requirements on page 50
Overview and Topology on page 51
Mirroring All Employee Traffic for Remote Analysis Through a Transit Switch on page 52
Verification on page 56
This example uses the following hardware and software components:
An EX9200 switch connected to another EX9200 switch through a third EX9200
switch
Junos OS Release 13.2 or later for EX Series switches
Before you configure remote mirroring, be sure that:
Mirror only necessary packets to reduce potential
Copyright © 2016, Juniper Networks, Inc.