- Community Home
- >
- Networking
- >
- Switching and Routing
- >
- Comware Based
- >
- Re: 5940 IRF VLAN mirroring
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-15-2018 08:15 AM
тАО05-15-2018 08:15 AM
5940 IRF VLAN mirroring
Hello,
I have two 5940 in IRF stack using FortyGig interfaces with some VLANs. Access switches are connected via Bridge Aggregation interfaces (LACP).
I need to mirror all traffic from VLAN 10 to destination interface where wireshark is connected. I found that mirroring is supported only in IRF standalone (one device) and the mirrored traffic cannot pass IRF links.
When I configure local mirroring on one IRF memeber (from physical interface to physical interface) it works.
My config:
mirroring-group 1 local
mirroring-group 1 mirroring-port Vlan-interface 10 both
mirroring-group 1 monitor-port Ten-GigabitEthernet 1/0/20
The type of the mirroring port in the mirroring group is not supported.
Is there any solution how to mirror traffic from VLAN 10 interface from both 5940 in IRF?
For example old Cisco 3750 supports this situation.
Thank you
Tom
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-16-2018 04:29 PM
тАО05-16-2018 04:29 PM
Re: 5940 IRF VLAN mirroring
Hi !
I did not understand your real problem, but ..
Mirroring the traffic of a vlan or vlan interface inside an IRF does not work .... at least that did not work.
You have two options how can you get around this when using IRF.
1. You can mirror every port that belongs to the VLAN and send that traffic to a monitor port.
2. You can create a QoS policy and have the action be mirrored traffic.
ATP FLEXNETWORK V3 | ACSA
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО05-16-2018 11:22 PM
тАО05-16-2018 11:22 PM
Re: 5940 IRF VLAN mirroring
Hello,
I configured the QoS policy and it is working. But it mirrors traffic from every VLAN. If I specify only the VLAN 10 subnet in ACL it does not match.
The simplified topology:
My config is:
traffic classifier mirror-class operator and
if-match acl 2000
#
traffic behavior mirror-behavior
mirror-to interface Ten-GigabitEthernet1/0/2
#
qos policy mirror-policy
classifier mirror-class behavior mirror-behavior
#
interface Bridge-Aggregation99
description Access-switch
port link-type trunk
port trunk permit vlan all
link-aggregation mode dynamic
qos apply policy mirror-policy inbound
qos apply policy mirror-policy outbound
#
acl number 2000
rule 10 permit source 10.10.10.0 0.0.0.255
rule 10 comment "MIRROR VLAN 10 SUBNET"
rule 20 deny
#