Configuring Mirror Ports For Pbr Traffic; Displaying Mirror And Monitor Port Configuration - Dell PowerConnect B-RX Configuration Manual
Bigiron rx series configuration guide v02.8.00
Hide thumbs
Also See for PowerConnect B-RX:
- Configuration manual (1436 pages) ,
- Getting started manual (32 pages) ,
- Installation manual (240 pages)
Table of Contents
Advertisement
6
Displaying mirror and monitor port configuration
Configuring mirror ports for PBR traffic
When you configure a physical or virtual port to act as a mirror port for PBR traffic, outgoing
packets that match the permit Access Control List (ACL) clause in the route map are copied to the
mirror ports that you specify. You can specify up to four mirror ports for each PBR route map
instance.
For example, to capture all traffic forwarded to an SSL port and mirror it to port 5, enter commands
such as the following.
BigIron RX(config)# route-map ssl-pbr-map permit 1
BigIron RX(config-routemap ssl-pbr-map)# match ip address 100
BigIron RX(config-routemap ssl-pbr-map)# set mirror-interface 5
BigIron RX(config-routemap ssl-pbr-map)# set next-hop 10.10.10.1
BigIron RX(config-routemap ssl-pbr-map)# exit
BigIron RX(config)# interface e 5
BigIron RX(config-if-e10000-5)# port-name mirror-port
BigIron RX(config-if-mirror-port)# interface e 10
BigIron RX(config-if-mirror-port-10)# ip policy route-map ssl-pbr-map
BigIron RX(config-if-mirror-port-10)# exit
BigIron RX(config-if-e10000-)#exit
BigIron RX(config)#access-list 100 permit tcp any any eq ssl
The above commands complete the following configuration tasks.
1. Configures an entry in the PBR route map named "ssl-pbr-map" . The match statement
2. Identifies interface e 5 as a mirror port by assigning the name "mirror-port".
3. Enables PBR and applies the route map "ssl-pbr-map" on interface e 10.
4. Creates an extended ACL (100) that permits all TCP traffic destined for an for an SSL port.
Syntax: set mirror-interface <slot number>/<port number>
The <slot number> parameter specifies the port number on a device.
The <port number> parameter specifies the mirror port number.
You can specify up to 4 mirror ports for each PBR route map instance. To do so, enter the set mirror
interface command for each mirror port.
Displaying mirror and monitor port configuration
To display the inbound and outbound traffic mirrored to each mirror port, enter the following
command at any level of the CLI.
BigIron RX# show monitor config
Monitored Port 3/1
Monitored Port 4/1
150
matches on IP information in ACL 100. The set mirror-interface statement specifies interface e
5 as the mirror port for matched ACL permit clauses. The set next-hop statement sets the IP
address of the route's next hop router to 10.10.10.1.
Input traffic mirrored to: 1/1 2/1
Output traffic mirrored to: 1/1
Input traffic mirrored to: 1/2
Output traffic mirrored to: 1/2
BigIron RX Series Configuration Guide
53-1002253-01
Advertisement
Table of Contents
