Port Monitoring | 385
21
Port Monitoring
Port monitoring is a feature that copies all incoming or outgoing packets on one port and forwards
(mirrors) them to another port. The source port is the monitored port (MD) and the destination port is the
monitoring port (MG). Port monitoring functionality is different between platforms, but the behavior is the
same, with highlighted exceptions.
This chapter contains the following sections:
• Important Points to Remember
• Port Monitoring
• Configuring Port Monitoring
Important Points to Remember
• Port monitoring is supported on physical ports only; virtual local area network (VLAN) and
port-channel interfaces do not support port monitoring.
• The monitored (source, MD) and monitoring ports (destination, MG) must be on the same switch.
• In general, a monitoring port should have
no ip address and no shutdown as the only configuration;
FTOS permits a limited set of commands for monitoring ports. To display these commands, use the
command
?.
• A monitoring port also may not be a member of a VLAN.
• There may only be one destination port in a monitoring session.
• A source port (MD) can only be monitored by one destination port (MG). If you try to assign a
monitored port to more than one monitoring port, the following error is displayed (Message 1).
Message 1 Assign a Monitored Port to More than One Monitoring Port
FTOS(conf)#mon ses 1
FTOS(conf-mon-sess-1)#source tengig 0/0 destination tengig 0/60 direction both
FTOS(conf-mon-sess-1)#do show mon ses
SessionID Source Destination Direction Mode Type
--------- ------ ----------- --------- ---- ----
1 TenGig 0/0 TenGig 0/60 both interface
Port-based
FTOS(conf-mon-sess-1)#mon ses 2
FTOS(conf-mon-sess-2)#source tengig 0/0 destination tengig 0/61 direction both
% Error: MD port is already being monitored.
To Next Page
Loading...
