Filter
Top Products
Traffic Mirroring Configuration 237
Configuration Procedure # Configure a basic ACL 2000, matching the packets whose source IP address is
192.168.0.1.
<3Com> system-view
[3Com] acl number 2000
[3Com-acl-basic-2000] rule permit source 192.168.0.1 0
[3Com-acl-basic-2000] quit
# Configure traffic mirroring on Ethernet 1/0/1. Mirror packets matching source IP
address 192.168.0.1 to the destination port.
[3Com] interface Ethernet 1/0/1
[3Com-Ethernet1/0/1] mirrored-to inbound ip-group 2000 monitor-interface
[3Com-Ethernet1/0/1] quit
# Configure Ethernet 1/0/2 as the destination port of traffic mirroring.
[3Com] interface Ethernet 1/0/2
[3Com-Ethernet1/0/2] monitor-port
Complete Configuration #
mirroring-group 1 local
#
acl number 2000
rule 0 permit source 192.168.0.1 0
#
interface Ethernet1/0/1
mirrored-to inbound ip-group 2000 rule 0 monitor-interface
#
interface Ethernet1/0/2
mirroring-group 1 monitor-port
#
Precautions Note the following when configuring traffic mirroring:
■ The destination port to be configured cannot be a member port of an existing
mirroring group, a fabric port (only the Switch 5500/5500G have this
limitation), a member port of an aggregation group, an LACP enabled port, or
an STP enabled port.
■ When you configure the destination port of traffic mirroring on a Switch 5500,
if mirroring group 1 does not exist on the switch, the switch will automatically
create local mirroring group 1 and add the destination port to the group; if
mirroring group 1 already exists but is not a local mirroring group, your
configuration of the destination port will fail.
■ On a Switch 4500, if you execute the monitor-port command on different
ports to configure the destination port for the switch, the last configuration
takes effect.