EasyManua.ls Logo

Juniper EX9200

Juniper EX9200
448 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Mirroring of Packets Forwarded or Flooded to a VPLS Routing Instance
To mirror Layer 2 traffic forwarded to or flooded to a VPLS routing instance, apply a
port-mirroring firewall filter to the input to the forwarding table or flood table. Any packet
received for the VPLS routing instance forwarding or flood table and that matches the
filter condition is mirrored.
For more information about VPLS routing instances, see Configuring a VPLS Routing
Instance and Configuring VLAN Identifiers for Bridge Domains and VPLS Routing Instances.
For information about flooding behavior in VPLS, see the Junos OS VPNs Library for Routing
Devices.
Related
Documentation
Understanding Layer 2 Port Mirroring on page 3
Defining a Layer 2 Port-Mirroring Firewall Filter
Example: Layer 2 Port Mirroring at a Logical Interface
Example: Layer 2 Port Mirroring for a Layer 2 VPN
Example: Layer 2 Port Mirroring for a Layer 2 VPN with LAG Links
Example: Layer 2 Port Mirroring to Multiple Destinations
Defining a Layer 2 Port-Mirroring Firewall Filter
For virtual private LAN service (VPLS) traffic (family ethernet-switching or family vpls)
and for Layer 2 VPNs with family ccc on MX Series routers and on EX Series switches
only, you can define a firewall filter that specifies Layer 2 port mirroring as the action to
be performed if a packet matches the conditions configured in the firewall filter term.
You can use a Layer 2 port-mirroring firewall filter in the following ways:
To mirror packets received or sent on a logical interface.
To mirror packets forwarded or flooded to a VLAN.
To mirror packets forwarded or flooded to a VPLS routing instance.
To mirror tunnel interface input packets only to multiple destinations.
For a summary of the three types of Layer 2 port-mirroring you can configure on an MX
Series router and on an EX Series switch, see Application of Layer 2 Port Mirroring Types.
For information about configuring firewall filters in general (including in a Layer 3
environment), see Stateless Firewall Filter Overview and How Standard Firewall Filters
Evaluate Packets in the Routing Policies, Firewall Filters, and Traffic Policers Feature Guide.
To define a firewall filter with a Layer 2 port-mirroring action:
1.
Enable configuration of firewall filters for Layer 2 packets that are part of a VLAN, a
Layer 2 switching cross-connect, or a virtual private LAN service (VPLS):
[edit]
user@host# edit firewall family family
45Copyright © 2016, Juniper Networks, Inc.
Chapter 7: Port Mirroring for Logical interfaces

Table of Contents

Other manuals for Juniper EX9200

Related product manuals