Remote Port Mirror On EX series

Posted on June 11, 2012

0


Konfigurasi Port mirror di EX 4200 source

set interfaces ge-0/0/0 unit 0 family ethernet-switching filter input filter_monitoring

set interfaces ge-0/0/1 unit 0 family ethernet-switching port-mode trunk

set interfaces ge-0/0/1 unit 0 family ethernet-switching vlan members vlan_monitor

set firewall family ethernet-switching filter filter_monitoring term 1 from source-address 0.0.0.0/0

set firewall family ethernet-switching filter filter_monitoring term 1 from destination-address 0.0.0.0/0

set firewall family ethernet-switching filter filter_monitoring term 1 then analyzer test_monitor

set ethernet-switching-options analyzer test_monitor loss-priority high

set ethernet-switching-options analyzer test_monitor input ingress interface ge-0/0/0.0

set ethernet-switching-options analyzer test_monitor input egress interface ge-0/0/0.0

set ethernet-switching-options analyzer test_monitor output vlan vlan_monitor

set ethernet-switching-options storm-control interface all

set vlans vlan_client vlan-id 30

set vlans vlan_client interface ge-0/0/0.0

set vlans vlan_client l3-interface vlan.30

set vlans vlan_monitor vlan-id 10

set vlans vlan_monitor interface ge-0/0/1.0

Konfigurasi Port mirror di EX 4200 destination

set interfaces ge-0/0/1 unit 0 family ethernet-switching port-mode trunk

set interfaces ge-0/0/1 unit 0 family ethernet-switching vlan members vlan_monitor

set interfaces vlan unit 20 family inet address 20.20.20.1/24

set ethernet-switching-options analyzer test_monitor loss-priority high

set ethernet-switching-options analyzer test_monitor input ingress vlan vlan_monitor

set ethernet-switching-options analyzer test_monitor output vlan vlan_shark

set ethernet-switching-options storm-control interface all

set vlans vlan_monitor vlan-id 10

set vlans vlan_monitor interface ge-0/0/1.0

set vlans vlan_shark vlan-id 20

set vlans vlan_shark interface ge-0/0/2.0

set vlans vlan_shark l3-interface vlan.20

Tahap Pengetesan

Tahap pertama kita terlebih dahulu melakukan test ping dari ex4200 source to PC Vlan_client agar ada trafik pada port client yang akan kita monitor

Lalu kita monitor dari PC Vlan_shark yang telah terinstal software wireshark

Posted in: Yoshua Pardede (Lab Session)