Port mirroring, Chapter 29: port mirroring, Chapter 29, “port mirroring – Blade ICE RACKSWITCH G8124-E User Manual
Page 377
BMD00220, October 2010
377
C
HAPTER
29
Port Mirroring
The BLADEOS port mirroring feature allows you to mirror (copy) the packets of a target port, and
forward them to a monitoring port. Port mirroring functions for all layer 2 and layer 3 traffic on a
port. This feature can be used as a troubleshooting tool or to enhance the security of your network.
For example, an IDS server or other traffic sniffer device or analyzer can be connected to the
monitoring port in order to detect intruders attacking the network.
The G8124 supports a “many to one” mirroring model. As shown in
, selected traffic for
ports 1 and 2 is being monitored by port 3. In the example, both ingress traffic and egress traffic on
port 2 are copied and forwarded to the monitor. However, port 1 mirroring is configured so that only
ingress traffic is copied and forwarded to the monitor. A device attached to port 3 can analyze the
resulting mirrored traffic.
Figure 44
Mirroring Ports
Monitor Port
Specified traffic is copied
and forwarded to Monitor Port
Mirrored Ports
Ingress
Traffic
Both
Connected to
sniffer device
1
2
3
4