Common switch image configuration reference

Source: Internet
Author: User

Common switch image configuration reference
Thanks to Xia Tang for sharing and summarizing
Port Mirror is a Port image, which provides a backup channel for network transmission. It can also be used for data traffic monitoring. It can be understood as follows: Establish an image relationship between port A and port B. In this way, data transmitted through port A will be transmitted through port B at the same time, even if data error occurs at port A due to transmission line issues, data at Port B is available.
Cisco Switch Port Mirroring configuration a cisco switch supports up to two sets of images and all port mirroring. Default password cisco
Cisco catylist2820 has two menu options
First enter the menu option, enable port monitor
Enter cli mode,
Conf term
Interface fast0/x Image Port
Port monitor fast0/x Image port
Cisco catylist2924, 2948 Cisco catylist 3524, 3548
Switch> En
Switch # Conf term
Switch (config) # Interface fast mod/port
Switch (config-if) # Port monitor mod/port
Switch (config-if) # Exit
Switch (config) # Wr
Cisco catalyst 2900XL/3500XL/2950 series command to configure port listening:
Port monitor
For example, F0/1 and F0/2 belong to the same VLAN1 and F0/1 Listen to ports F0/2 and F0/2:
Interface FastEthernet0/1
Port monitor FastEthernet0/2
Port monitor FastEthernet0/5
Port monitor VLAN1
Cisco catylist 2550 Cisco catylist 3550 supports two groups of monitor sessions
En password
Config term
Switch (config) # monitor session 1 destination interface fast0/4 (1 is session id, id range is 1-2)
Switch (config) # monitor session 1 source interface fast0/1, fast0/2, fast0/3 (space, comma, space)
Switch (config) # exit
Switch # copy running-conf startup-conf
Switch # show port-monitor
Cisco catylist 4000/5000 series Cisco catylist 6000 series support two sets of images
Show module)
Set span source (mod/port) destination (mod/port) in | out | both inpkts enable
Write tern all
Show span
Note: For Multiple source: mod/port, mod/port-mod/port, use the horizontal bar "-" for continuous ports, and for non-continuous ports, use the comma ","
Set span enable allows images
Set span disable Image
Set span source destination in | out | both inpkts enable create (create is used to create a second set of images)
Run the following command to configure a port listener:
Set span
For example, in Module 6, Port 1 and Port 2 belong to the same VLAN1, Port 3 in VLAN2, port 4 and 5 in VLAN2, and Port 2 listen to ports 1, 3, 4, and 5,
Set span 6/1, 6/3-5 6/2
Run the following command to disable port listening:
Set span disable [dest_mod/dest_port | all]
Cisco 3550 emi port image Configuration:
Configure in configuration mode
Monitor session 1 source interface Fa0/15
Monitor session 1 destination interface Fa0/14
Note: Port 15 is the source port (the port connected to the Internet) and Port 14 is the monitoring port (the computer that installs the Internet management software is connected to the port
3COM Switch Port image configuration 2.1
Conf term
Monitor ethernet source_mod/port to ethernet source_mod/port obser ethernet dest_mod/port
Show monitor-port
Note: The non-continuous port cannot be used as the souce. If a single port is mirrored, direct to obs ether without using ".....
Delete an image
Conf t
No monitort ethernet source to enternet source obser enternet objective
Show monitor-port
Port-based images are supported by S2008/S2016/S2026/S2403H/S3026. There are two methods:
Method 1
1. Configure the image (observation) Port
[SwitchA] monitor-port e0/8
2. Configure the port to be mirrored
[SwitchA] port mirror Ethernet 0/1 to Ethernet 0/2
Method 2
1. You can define the image and the port to be mirrored at a time.
[SwitchA] port mirror Ethernet 0/1 to Ethernet 0/2 observing-port Ethernet 0/8
[8016 vswitch port image configuration]
1. Assume that the image port of the 8016 switch is E1/0/15, the Image Port is E1/0/0, and Port 1/0/15 is the observation port of the port image.
[SwitchA] port monitor ethernet 1/0/15
2. Set Port 1/0/0 as the port to be mirrored, and image the input and output data.
[SwitchA] port bonding ing ethernet 1/0/0 both ethernet 1/0/15
You can also mirror the input and output data through two different ports.
[SwitchA] port bonding ing gigabitethernet 1/0/0 ingress ethernet 1/0/15
[SwitchA] port bonding ing gigabitethernet 1/0/0 egress ethernet 2/0/0
S3500/3026E/3026F/3050 cloudification-Based Image 〗
1. Define an extended access control list
[SwitchA] acl num0 101
2. Define a rule message source address as to all destination addresses
[SwitchA-acl-adv-101] rule 0 permit ip source 0 destination any
3. Define a rule message source address as the destination address of all source addresses
[SwitchA-acl-adv-101] rule 1 permit ip source any destination 0
4. mirror the packets that comply with the preceding ACL rules to the E0/8 Port
[SwitchA] mirrored-to ip-group 101 interface e0/8
2-layer stream-Based Image 〗
1. Define an ACL
[SwitchA] acl num0 200
2. Define a rule to send data packets from E0/1 to all other ports.
[SwitchA] rule 0 permit ingress interface Ethernet0/1 (egress interface any)
3. Define a packet rule from all other ports to E0/1
[SwitchA] rule 1 permit (ingress interface any) egress interface Ethernet0/1
4. mirror the packets that match the preceding ACL to E0/8.
[SwitchA] mirrored-to link-group 200 interface e0/8
[5516] supports mirroring inbound port traffic
Configure the port Ethernet 3/0/1 as the monitoring port and the inbound traffic image of port Ethernet 3/0/2.
[SwitchA] mirror Ethernet 3/0/2 ingress-to Ethernet 3/0/1
S6500 series S6506_A> en
S6506_A #
S6506_A # conf t
Enter configuration commands, one per line. End with Ctrl + Z.
S6506_A (config )#
S6506_A (config) # set mirr WORD1 input GigabitEthernet1/0/3 GigabitEthernet1/0/4 mirror-port
S6506_A (config) # exit
S6506_A # show mirror all
Mirror name: WORD1
Slot no: 1/0
Port mask: gigabitethernet1/0/3 gigabitethernet1/0/4
Mirror ction: input
Mirror port: gigabitethernet1/0/6
Nortel Switch
Nortel 1100, 2000
Supports a set of images, two sources, and one destination.
Default username/password: 12/12
Input1 (mod/port) enable
Input2 (mod/port) enable
Output (mod/port) enable
Save configure ture
Currently, the three products only support mirroring inbound port traffic. Although the outbount parameter exists, it cannot be configured.
The image group name is 1, the monitoring port is Ethernet4/0/2, and the inbound traffic on the port Ethernet4/0/1 is mirrored.
[SwitchA] grouping ing-group 1 inbound Ethernet4/0/1 mirrored-to Ethernet4/0/2
[Additional description]
1. Images can generally achieve high-speed port mirroring with low-speed ports. For example, a m port can mirror a m port. Otherwise, Images cannot be implemented.
2. 8016 support for cross-board Port Mirroring
Nortel switch port image configuration 3.1
Nortel 8000 seriesSoftware versions earlier than support a set of images, 10 sources, and a destination
Software and later versions support two sets of images. (Note: Generally, eight ethernet ports are used as an integrated circuit board. destination cannot be deployed on the same board, that is, only one destination is allowed on Ports 1-8, and 25 sources are supported (10 are valid-you don't know, you haven't played such a high version ).
Username/password: rwa/rwa superuser
Example: 2/6 2/6 2/8 image to 2/1
Config diag mirror-by-port 1 create in-port 2/4 out-port 2/1 (1 is the ID number, range: 1-10)
Config diag mirror-by-port 1 enable ture
Config diag mirror-by-port 2 create in-port 2/6 out-port 2/1
Config diag mirror-by-port 2 enable ture
Config diag mirror-by-port 3 create in-port 2/8 out-port 2/1
Config diag mirror-by-port 3 enable ture
Config diag mirror-by-port 1 mode both | tx | rx
Save config
Diag mirror-by-port id info (view id No. Image Information)
The image function provided by the Nortel switch is generally rx and does not support the both method (depending on the cpu). Therefore, the ping packet cannot be detected and can only be pinged .?
Bay stack 450
Very easy, as long as the installation menu step by step. Only two sources and one destination are supported. Vswitch Software Version 3 or later.
SSR Command Line Interface Reference Manual 551
Port processing ing
Apply port forwarding ing to one or more target ports on an SSR or to traffic specified by
ACL profile.
Port processing ing monitor-port target-port | target-profile name>
The port processing ing command allows you to monitor via a single port the activity of one
Or more ports on an SSR or the traffic that is specified by an ACL.
The port you will use to monitor activity.
The port (s) for which you want to monitor activity. You can specify a single port or
Comma-separated list of ports.
The name of the ACL that specifies the profile of the traffic that you want
Monitor. The ACL must be a previusly created ip acl. The ACL may contain in
Either permit or deny keywords. The port bonding ing command only looks at
Following ACL rule parameter values: protocol, source IP address, destination IP
Address, source port, destination port, and TOS.
The port image of an Intel switch is configured as "Mirror Ports ". The listening Port is called the Source Port, and the Port connecting to the listening device is called the Mirror Port ).
To configure a port listener, follow these steps:
● In the navigation menu, click Mirror Ports under Statistics to display the Mirror Ports information.
● Click the port in the Configure Source column to select the Source port. The Mirror Ports Configuration is displayed.
● Set the Source Port:
The source port is the source port of the image traffic, and the mirror port is the port that receives the traffic from the source port.
● Click Apply.
You can select three listening methods:
1. Continuous (Always): all traffic of the image.
2. Period (Periodic): all traffic of images within a period. Set the image cycle in Sampling Interval configuration.
3. Disabled: Disable traffic Mirroring
The Avaya switch Port image is configured in the Avaya switch user manual, and Port monitoring is called "Port Mirror ).
Run the following command to configure a port listener:
{Set | clear} Port Mirror
Set port listening: set port mirror source-port mirror-port sampling {always | disable | periodic} [max-packets-sec <max-packets-sec-value>] [piggyback-port]
Disable port listening: clear port mirror
In the command, mod-port-range specifies the port range; mod-port-spec specifies the specific port; piggyback-port specifies the port of the two-way image; sampling specifies the image cycle; max-packets-sec is only used when sampling is set to periodic. It specifies the maximum number of data entries per second for the listener.
Retrieving the COM class factory for component with CLSID {000209FF-0000-0000-C000-000000000046} failed due to the following error: 8000401a.

Related Article

E-Commerce Solutions

Leverage the same tools powering the Alibaba Ecosystem

Learn more >

Apsara Conference 2019

The Rise of Data Intelligence, September 25th - 27th, Hangzhou, China

Learn more >

Alibaba Cloud Free Trial

Learn and experience the power of Alibaba Cloud with a free trial worth $300-1200 USD

Learn more >

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: and provide relevant evidence. A staff member will contact you within 5 working days.