VOIPaintEASY
IS-IT--Management
Can I mirror a whole VLAN to a 1GB port on the 8600? I have never done a mirror port on one. I also noted it looks like you have to choose between xmit or rec. data to be mirrored. We are testing a security product...
Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
8600 mirror ports
- Thread starter VOIPaintEASY
- Start date
- Status
HungryHouse
Vendor
No can do. You could set up multiple mirrors however for several ports as source that are in that VLAN if you don't exceed the maximum (assuming this is a port-based vlan?), however, be aware that port mirroring is a big hit for the CPU on the 86xx platform.
For the design, limitations and considerations, please see the following document
Check out CHAPTER 1: p26-33, CHAPTER 2
.39-44
I hope this is helpful.
-HH
For the design, limitations and considerations, please see the following document
Check out CHAPTER 1: p26-33, CHAPTER 2
.39-44I hope this is helpful.
-HH
As far as I know mirroring on an 8600 is done in hard ware and so the CPU is not involved.
Depending on the HW:
- Pre E modules support only rx mirroring, others support rx, tx, both and rxfilter mirroring.
- M, E and pre E modules you can use IP subnet filters with action mirror and select rxfilter in the port-mirror menu.
When the total mirrored traffic exceeds the mirror port speed packets will be dropped on the mirror port, this has no effect on the regular traffic.
bg
Depending on the HW:
- Pre E modules support only rx mirroring, others support rx, tx, both and rxfilter mirroring.
- M, E and pre E modules you can use IP subnet filters with action mirror and select rxfilter in the port-mirror menu.
When the total mirrored traffic exceeds the mirror port speed packets will be dropped on the mirror port, this has no effect on the regular traffic.
bg
LuvToClick
Technical User
I Have s/ware ver 3.7.11.0, there is a box under port mirrors tab, insert for MirrorVlanID I have not tryed it though.
I Mirror 7 Gig ports to 1 gig port across 2 8608GT blades on an 8610 CPU seems to handle the load just fine 323Gig in the last 24 hours.
I Mirror 7 Gig ports to 1 gig port across 2 8608GT blades on an 8610 CPU seems to handle the load just fine 323Gig in the last 24 hours.
- Thread starter
- #5
VOIPaintEASY
IS-IT--Management
LuvToClick,
Any chance you could post an "ALT- Printscreen" shot of this DM view on Putfile or somewhere and post a link to it in a thread reply?
Any chance you could post an "ALT- Printscreen" shot of this DM view on Putfile or somewhere and post a link to it in a thread reply?
HungryHouse
Vendor
The MirrorVLANID is not for source ports.
You can not mirror from a whole VLAN..that is beyond the limitations of the box.
This MirrorVLANID is only applicable for what VLAN the mirror is sent TO..and is only for remote mirroring situations.
I hope this is helpful.
-HH
You can not mirror from a whole VLAN..that is beyond the limitations of the box.
This MirrorVLANID is only applicable for what VLAN the mirror is sent TO..and is only for remote mirroring situations.
I hope this is helpful.
-HH
- Thread starter
- #7
VOIPaintEASY
IS-IT--Management
As an FYI. Our Vendor (who has an X Nortel Sr. data engineer) has done this for me and it is functional) I will quiz him today on how he did it. He actually mirrored 2 complete VLANS to 1 GB copper port.
LuvToClick
Technical User
VOIPantEASY
For screen dump
I would recommend if you have concerns on your CPU util that you trend it before implementing mirroring I use oid 1.3.6.1.4.1.22.72.1.1.20.0 in my SNMP server to keep an eye on ours. Been trending it over the last 6 mts good info for knowning you have a problem.
For screen dump
I would recommend if you have concerns on your CPU util that you trend it before implementing mirroring I use oid 1.3.6.1.4.1.22.72.1.1.20.0 in my SNMP server to keep an eye on ours. Been trending it over the last 6 mts good info for knowning you have a problem.
HungryHouse
Vendor
Hey VOIP,I did find a way to do it, however, it is for R modules only, and it tied to Advanced Filters.
You have to set up an ACT and an ACL.
You can then filter what types of traffic you want to mirror and where to send it on a particular VLAN.
(Is this what your vendor did?)
I apologize if I misled anyone (I still dont think you can do this on "E", "M" or "Non-E" modules)
Excellent documentation in the Using Diag Tools document referenced above for 4.1
I hope this is helpful
-HH
You have to set up an ACT and an ACL.
You can then filter what types of traffic you want to mirror and where to send it on a particular VLAN.
(Is this what your vendor did?)
I apologize if I misled anyone (I still dont think you can do this on "E", "M" or "Non-E" modules)
Excellent documentation in the Using Diag Tools document referenced above for 4.1
I hope this is helpful
-HH
Mirroring is done by hardware and doesn’t affect CPU load.
I agree regarding the R module remark. Investigating the published screen shot for me the image on the devise is NOT 4.0 or 4.1 (some menu's are missing) and therefore it are NOT R modules.
WH
I agree regarding the R module remark. Investigating the published screen shot for me the image on the devise is NOT 4.0 or 4.1 (some menu's are missing) and therefore it are NOT R modules.
WH
- Status
Similar threads
- Locked
- Question
- Locked
- Question