Operation Manual – Mirroring
H3C S3600 Series Ethernet Switches-Release 1510 Chapter 1
Mirroring Configuration
1-6
Combination mode Form of acl-rule
Apply all sub-rules in a Layer 2 ACL
separately
link-group acl-number
Apply one sub-rule in a Layer 2 ACL
separately
link-group acl-number rule rule-id
Apply one sub-rule in a user-defined ACL
separately
user-group acl-number
Apply all sub-rules in a user-defined ACL
separately
user-group acl-number rule rule-id
Apply one sub-rule in an IP type ACL and one
sub-rule in a Layer 2 ACL simultaneously
ip-group acl-number rule rule-id
link-group acl-number rule rule-id
III. Configuration example
Network requirements:
z GigabitEthernet 1/1/1 on the switch is connected to the 10.1.1.1/24 network
segment.
z The packets from the 10.1.1.1/24 network segment are to be mirrored to the
destination port GigabitEthernet 1/1/4.
Configuration procedure:
<H3C> system-view
[H3C] acl number 2000
[H3C-acl-basic-2000] rule permit source 10.1.1.1 0.0.0.255
[H3C-acl-basic-2000] rule deny source any
[H3C-acl-basic-2000] quit
[H3C] interface gigabitEthernet 1/1/4
[H3C-GigabitEthernet1/1/4] monitor-port
[H3C-GigabitEthernet1/1/4] quit
[H3C] interface GigabitEthernet 1/1/1
[H3C-GigabitEthernet1/1/1] mirrored-to inbound ip-group 2000
monitor-interface
1.3.2 Configuring Port Mirroring
I. Configuration prerequisites
z The source port is determined and whether the packets to be mirrored are inbound,
outbound or both inbound and outbound is specified. Inbound means only to
mirror the packets received by the port; outbound means only to mirror the
packets sent by the port; both means to mirror the packets received and sent by
the port.
z The destination port is determined.
To Next Page
Loading...
Need help?
General