user@jdm# set cross-connect c2 virtual-network-functions vnf5 interfaces eth5
vlan-id none
Configuring Analyzer VNF and Port-mirroring
The Port-mirroring feature allows you to monitor network traffic. If the feature is enabled
on a VNF interface, the OVS system bridge sends a copy of all network packets of that
VNF interface to the analyzer VNF for analysis. You can use the port-mirroring or analyzer
JDM commands for analyzing the network traffic.
NOTE:
•
Port-mirroring is supported only on VNF interfaces that are connected to
an OVS system bridge.
•
VNF interfaces must be configured before configuring port-mirroring
options.
•
If the analyzer VNF is active after you configure, you must restart the VNF
for changes to take effect.
•
You can configure up to four input ports and only one output port for an
analyzer rule.
•
Output ports must be unique in all analyzer rules.
•
After changing the configuration of the input VNF interfaces, you must
de-activate and activate the analyzer rules referencing to it along with the
analyzer VNF restart.
To configure the analyzer VNF and enable port-mirroring:
1. Configure the analyzer VNF:
[edit]
user@jdm#set virtual-network-functions analyzer-vnf-name image file-path
user@jdm#set virtual-network-functions analyzer-vnf-name memory features
hugepages page-size page-size
user@jdm#set virtual-network-functions analyzer-vnf-name interfaces interface-name
analyzer
2. Enable port-mirroring of the network traffic in the input and output ports of the VNF
interface and analyzer VNF:
user@jdm# set host-os forwarding-options analyzer analyzer-instance-name input
[ingress | egress] virtual-network-function vnf-name interface interface-name
user@jdm# set host-os forwarding-options analyzer analyzer-rule-name output
virtual-network-function analyzer-vnf-name interface interface-name
Accessing a VNF from JDM
You can access a VNF from JDM using either SSH or a VNF console.
1. To access a VNF using SSH:
117Copyright © 2017, Juniper Networks, Inc.
Chapter 5: Virtual Network Functions
To Next Page
Loading...
