Acl-based inbound sflow, Acl-based, Inbound sflow – Brocade BigIron RX Series Configuration Guide User Manual

Page 1208

Advertising
background image

1130

BigIron RX Series Configuration Guide

53-1002484-04

sFlow overview

40

NOTE

When you enable sFlow forwarding on an 802.1x-enabled interface, the samples taken from the
interface include the username used to obtain access to the inbound or outbound ports, if that
information is available. For information about 802.1x, refer to

Chapter 34, “Configuring 802.1x Port

Security”

.

Enabling sFlow forwarding

To enable sFlow forwarding, enter commands such as the following.

BigIron RX(config)# sflow enable

BigIron RX(config)# interface ethernet 1/1 to 1/8

BigIron RX(config-mif-1/1-1/8)# sflow forwarding

These commands globally enable sFlow, then enable sFlow forwarding on Ethernet ports 1/1 –
1/8. You must use both the sflow enable and sflow forwarding commands to enable the feature.

Syntax: [no] sflow enable

Syntax: [no] sflow forwarding

ACL-based inbound sFlow

NOTE

This feature is available only for IPv4.

IPv4 ACL traffic samples can be sent to an sFlow collector. The data matching an ACL clause can be
collected to observe traffic flow patterns and quantities between a set of switches and routers. To
accommodate collecting sFlow through standard procedures and using ACL-filtered traffic, Brocade
created the Proprietary Tag Type 1991 that encapsulates the sFlow samples obtained through
ACL-based sFlow and separates them from the sequence flow of other sFlow samples. Figure 1
shows the format of an sFlow packet, which illustrates the differences between a standard sFlow
payload and an ACL-based payload.

As shown in Figure 1, sFlow is carried in a UDP packet. Within the UDP packet, the sFlow contents
are carried in individual samples that are identified by a Tag Type and a Length variable. The
standard values for the Tag Types are 1 = sampled packet and 2 = counter sample. The length
variable describes the length of the sample. Within the sample are other variables including the
Sequence number and the Source ID.

Brocade has introduced the proprietary Tag Type 1991 to identify ACL-based sFlow samples. For
these samples, standard Tag Type 1 samples collected using ACL-based Inbound sFlow are
encapsulated in a Tag Type 1991 sample. The length variable identifies the entire length of the Tag
Type 1991 sample including the encapsulated Tag Type 1 sample. The encapsulated sample has a
length variable of its own that only identifies the length of that sample.

The Tag Type 1991 samples are sequenced separately from the unencapsulated Tag Type 1
samples. For instance in the packet detail described in the "Sequence Flow for sFlow Records" in
Figure 1, the top sFlow record with Tag Type 1 begins with the sequence number 1. The next sFlow
record is of Tag Type 1991 which indicates that the sample contained is from ACL-based sFlow.
Encapsulated within this ACL-based sFlow sample is an sFlow sample record of Tag Type 1. The

Advertising
See also other documents in the category Brocade Computer Accessories: