Dell PowerConnect B-RX Configuration Manual page 589
Bigiron rx series configuration guide v02.7.02
Hide thumbs
Also See for PowerConnect B-RX:
- Configuration manual (1458 pages) ,
- Getting started manual (32 pages) ,
- Installation manual (240 pages)
Table of Contents
Advertisement
•
Specifying the destination mirror port for IP receive ACLs
When specifying a destination port for IP Receive ACLs, you must configure the acl-mirror-port
command on all ports supported by the same PPCR. For example, if you are using mirroring traffic
for an rACL on a 4 x 10G interface module and you want to mirror traffic incoming on the first PPCR,
you have to configure the acl-mirror-port command on both ports 1 and 2. If you want to mirror IP
Receive ACL permit traffic incoming on all ports of the module, you have to configure the
acl-mirror-port command on all ports of the module..
Configuring ACL-based mirroring for ACLs bound to virtual interfaces
For configurations that have an ACL bound to a virtual interface, you must configure the
acl-mirror-port command on a port for each PPCR that is a member of the virtual interface. For
example, in the following configuration ports 4/1 and 4/2 share the same PPCR while port 4/3
uses another PPCR.
BigIron RX(config)# vlan 10
BigIron RX(config-vlan-10)# tagged ethernet 4/1 to 4/3
BigIron RX(config-vlan-10)# router-interface ve 10
BigIron RX(config)# interface ethernet 4/1
BigIron RX(config-if-e10000-4/1)# acl-mirror-port ethernet 5/1
BigIron RX(config)# interface ve 10
BigIron RX(config-vif-10)# ip address 10.10.10.254/24
BigIron RX(config-vif-10)# ip access-group 102 in
BigIron RX(config)# access-list 101 permit ip any any mirror
In this configuration, the acl-mirror-port command is configured on port 4/1 which is a member of
ve 10. Because of this, ACL-based mirroring will apply to VLAN 10 traffic that arrives on ports 4/1
and 4/2. It will not apply to VLAN 10 traffic that arrives on port 4/3 because that port uses a
different PPCR than ports 4/1 and 4/2. To make the configuration apply ACL-based mirroring to
VLAN 10 traffic arriving on port 4/3, you must add the following command to the configuration.
BigIron RX Series Configuration Guide
53-1001810-01
If you attempt to add a port that is configured for ACL-based Mirroring to a port, the following
message will display:
ACL port is configured on port 2/1, please remove it and try again.
Trunk transaction failed: Trunk Config Vetoed
Deleting a trunk with ACL-based Mirroring Configured: When a trunk is deleted, the ACL-based
Mirroring configuration is propagated to the individual ports that made up the trunk.
Example: If the trunk is configured as shown.
BigIron RX(config)# trunk switch ethernet 4/1 to 4/2
BigIron RX(config-trunk-4/1-4/2)# acl-mirror-port ethe-port-monitored 4/1 ethe
4/3
And then you delete the trunk as shown.
BigIron RX(config)# no trunk switch ethernet 4/1 to 4/2
The configuration for ACL-based mirroring will be propagated to ports 4/1 and 4/2 as shown in
the following.
interface ethernet 4/1
acl-mirror-port ethernet 4/3
interface ethernet 4/2
acl-mirror-port ethernet 4/3
ACL-based inbound mirroring
21
517
Advertisement
Table of Contents
