Applying the acl to an interface, Specifying the destination mirror port – Brocade BigIron RX Series Configuration Guide User Manual

Page 676

Advertising
background image

598

BigIron RX Series Configuration Guide

53-1002484-04

ACL-based inbound mirroring

22

Applying the ACL to an interface

You must apply the ACL to an interface using the ip access-group command as shown in the
following.

BigIron RX(config)# interface ethernet 1/1

BigIron RX(config-if-e10000-1/1)# ip access-group 101 in

Specifying the destination mirror port

You can specify physical ports or a trunk to mirror traffic from. The following sections describe how
to perform each of these configurations.

Specifying the destination mirror port for physical ports

You must specify a destination port for traffic that has been selected by ACL-based Inbound
Mirroring. This configuration is performed at the Interface Configuration of the port whose traffic
you are mirroring. In the following example, ACL mirroring traffic from port 1/1 is mirrored to port
1/3.

BigIron RX(config)# interface ethernet 1/1

BigIron RX(config-if-e10000-1/1)# acl-mirror-port ethernet 1/3

You can also use the ACL-mirroring feature to mirror traffic from multiple ports to a single port using
the Multiple Interface Configuration (MIF) mode as shown in the following example.

BigIron RX(config)# interface ethernet 1/1 to 1/2

BigIron RX(config-mif-e10000-1/1-1/2)# acl-mirror-port ethernet 1/3

Syntax: [no] acl-mirror-port ethernet <slot/port>

The <slot/port> variable specifies port that ACL-mirror traffic from the configured interface will be
mirrored to.

Specifying the destination mirror port for trunk ports

You can mirror the traffic that has been selected by ACL-based Inbound Mirroring from a trunk by
configuring a destination port within the trunk configuration as shown.

BigIron RX(config)# trunk switch ethernet 1/1 to 1/2

BigIron RX(config-trunk-1/1-1/2)# acl-mirror-port ethe-port-monitored 1/1

ethernet 1/3

Syntax: [no] acl-mirror-port ethernet-port-monitored <slot/port> ethernet <slot/port>

The <slot/port> variable specifies a port in the trunk that ACL-mirror traffic will be mirrored from.

The ethernet <slot/port> variable specifies port that ACL-mirror traffic from the trunk will be
mirrored to.

You can also use the ACL-mirroring feature to mirror traffic from a single port within a trunk by using
the config-trunk-ind command as shown in the following example.

BigIron RX(config)# trunk switch ethernet 1/1 to 1/2

BigIron RX(config-trunk-1/1-1/2)# config-trunk-ind

BigIron RX(config-trunk-1/1-1/2)# acl-mirror-port ethe-port-monitored 1/1

ethernet 1/3

Advertising
Popular Brands
Popular manuals