Vswitch port image Configuration

1. functional requirements and networking description port image configuration "Environment configuration parameters" 1. PC1 is connected to port E0/1 of vswitch, IP address 1.1.1.1/242. PC2 is connected to port E0/2 of vswitch, IP address 2.2.2.2/243. e0/24 indicates the uplink port of the vswitch. 4. the Server is connected to port E0/8 of the vswitch. This port serves as the mirror port "Networking requirement" 1. the service packets of two PCs are monitored using the server through the port mirroring function of the switch. 2. configure images in different ways: 1) Port-based images 2) stream-based images 2. data configuration procedure "port Image Data Process" port-based images completely copy incoming and outgoing data packets from the mirrored ports to the mirror ports for traffic observation or fault locating. 3026 vswitch image] S2008/S2016/S2026/S2403H/S3026 vswitches support port-based images. There are two methods: method 1. configure image observation) port [SwitchA] monitor-port e0/82. configure the port [SwitchA] port mirror Ethernet 0/1 to Ethernet 0/2 method 2. you can define the image and the mirrored port [SwitchA] port mirror Ethernet 0/1 to Ethernet 0/2 observing-port Ethernet 0/88016 switch port image configuration at one time.] 1. assume that the image port of the 8016 switch is E1/0/15, the Image Port is E1/0/0, and Port 1/0/15 is the observation port of the port image. [SwitchA] port monitor ethernet 1/0/152. Set port 1/0/0 to the port to be mirrored, and image the input and output data. [SwitchA] port bonding ing ethernet 1/0/0 both ethernet 1/0/15 can also mirror the input and output data through two different ports. set E1/0/15 and E2/0/0 as image observation ports.) port [SwitchA] port monitor ethernet 1/0/152. set Port 1/0/0 as the mirrored port, and use E1/0/15 and E2/0/0 to mirror the input and output data respectively. [SwitchA] port mirroring ing gigabitethernet 1/0/0 ingress ethernet 1/0/15 [SwitchA] port mirroring ing gigabitethernet 1/0/0 egress ethernet 2/0/0 "Stream Image-based data flow "the vswitch mirrors certain streams, each connection has two data streams. For a vswitch, these two data streams must be mirrored separately. 3500/3026 E/3026F/3050] [Images Based on L3 streams] 1. define an extended access control list [SwitchA] acl num 1002. define a rule message source address as 1.1.1.1/32 to all destination addresses [SwitchA-acl-adv-101] rule 0 permit ip source 1.1.1.1 0 destination any3. define a rule message source address as all source addresses destination Address 1.1.1.1/32 [switchA-acl-adv-101] rule 1 permit ip source any destination 1.1.1.1 04. mirror the packets that comply with the preceding ACL rules to E0/8 port [SwitchA] mirrored-to ip-group 100 interface e0/8 [L2 stream-based image] 1. define an ACL [SwitchA] acl num 200 2. define a rule from E 0/1 data packets sent to all other ports [SwitchA] rule 0 permit ingress interface Ethernet0/1 egress interface Ethernet0/23. define a packet from all other ports to E0/1 [SwitchA] rule 1 permit ingress interface Ethernet0/2 egress interface Ethernet0/14. image the packets that match the preceding ACL to E0/8 [SwitchA] mirrored-to link-group 200 interface e0/8 5516/6506/6503/6506 R. Currently, these three products support inbound traffic. image 1. define the Image port [SwitchA] monitor-port Ethernet 3/0/2. define the port [SwitchA] using ing-port Et Supplementary description of hernet 3/0/1 inbound: 1. generally, images can implement high-speed port mirroring with low-speed ports. For example, a m port can be mirrored with a m port. Otherwise, Images cannot implement 2. 8016 support cross-board Port Mirroring 3. test and verify that the corresponding packets of the mirrored port can be seen through the tool software on the observation port, and traffic observation or fault locating can be performed.