1. Manuals
  2. Brands
  3. Juniper Manuals
  4. Software
  5. POLICY MANAGEMENT - CONFIGURATION GUIDE...
  6. Configuration manual

Juniper POLICY MANAGEMENT - CONFIGURATION GUIDE V11.1.X Configuration Manual page 262

Junose software for broadband services routers policy management configuration guide
Hide thumbs
Table of Contents

Advertisement

JUNOSe 11.1.x Policy Management Configuration Guide
4.
5.
host1# show mirror subscribers
Subscriber ID
------------------
lac:jwbooth@isptheatre.com
x:12000004:circuit id:45.y:12000004:remote id:89
x:12000001:pppoe agent circuit id:47
79:3a:02:00:00:02:3a:72:65:6d:6f:74:65:20:69:64:3a:35 agent-remote-id
6.
236
Example: Configuring CLI-Based User-Specific Mirroring
host1(config)#secure l2tp policy-list l2tp_toMirrorHQ
host1(config-policy-list)#classifier-group *
host1(config-policy-list-classifier-group)#mirror analyzer-ip-address
192.168.99.2 analyzer-virtual-router default analyzer-udp-port 6500
mirror-identifier 1 session-identifier 1
For DHCP and PPP subscribers:
host1(config)#secure ip policy-list secure-ipv4-policy
host1(config-policy-list)#classifier-group *
host1(config-policy-list-classifier-group)#mirror analyzer-ip-address 19.0.0.2
analyzer-virtual-router default analyzer-udp-port 2500 mirror-identifier 1
session-identifier 1
Configure packet mirroring for the subscriber and associate the secure policy
with the user.
For L2TP subscribers:
host1(config)#virtual-router lac
host1:lac(config)#mirror username jwbooth@isptheatre.com l2tp
secure-policy-list l2tp_toMirrorHQ
For DHCP and PPP subscribers:
host1(config)#mirror dhcp-option-82 agent-circuit-id "x:12000004:circuit
id:45" agent-remote-id "y:12000004:remote id:89" ip secure-policy-list
secure-ipv4-policy
host1(config)#mirror agent-circuit-id "x:12000001:pppoe agent circuit id:47"
ip secure-policy-list secure-ipv4-policy
host1(config)#mirror agent-remote-id hex
79:3a:02:00:00:02:3a:72:65:6d:6f:74:65:20:69:64:3a:35 ip
secure-policy-list secure-ipv4-policy
Now, when the subscriber logs in , the packet mirroring session starts and the
subscriber's replicated traffic is sent to the remote analyzer device.
Verify the packet-mirroring configuration.
----------
Verify the configuration of the secure policy.
host1# show secure policy-list
Secure L2TP Policy l2tp_toMirrorHQ
Administrative state: enable
ID
Secure
Method
Policy Type
-----------
username
l2tp
dhcp-option-82
IP
agent-circuit-id IP
IP
Policy Table
------ -----
Secure
Mirrored
Policy List
Sessions
----------------
--------
l2tp_toMirrorHQ
1
secure-ipv4-policy 1
secure-ipv4-policy 1
secure-ipv4-policy 1

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the POLICY MANAGEMENT - CONFIGURATION GUIDE V11.1.X and is the answer not in the manual?

Questions and answers

Related Manuals for Juniper POLICY MANAGEMENT - CONFIGURATION GUIDE V11.1.X

Related Products for Juniper POLICY MANAGEMENT - CONFIGURATION GUIDE V11.1.X

This manual is also suitable for:

E series

Table of Contents