1-9
As shown in
Figure 1-4
, the administrator wants to monitor the packets sent from Department 1 and 2
through the data monitoring device.
Use the remote port mirroring function to meet the requirement. Perform the following configurations:
z
Use Switch A as the source device, Switch B as the intermediate device, and Switch C as the
destination device.
z
On Switch A, create a remote source mirroring group; create VLAN 2 and configure it as the remote
port mirroring VLAN; add port GigabitEthernet 1/0/1 and GigabitEthernet 1/0/2 to the port mirroring
group as two source ports. Configure port GigabitEthernet 1/0/3 as the outbound mirroring port.
z
Configure port GigabitEthernet 1/0/3 of Switch A, port GigabitEthernet 1/0/1 and GigabitEthernet
1/0/2 of Switch B, and port GigabitEthernet 1/0/1 of Switch C as trunk ports and configure them to
permit packets of VLAN 2.
z
Create a remote destination mirroring group on Switch C. Configure VLAN 2 as the remote port
mirroring VLAN and port GigabitEthernet 1/0/2, to which the data monitoring device is connected,
as the destination port.
Figure 1-4
Network diagram for remote port mirroring configuration
Configuration procedure
1) Configure
Switch
A (the source device).
# Create a remote source port mirroring group.
<SwitchA> system-view
[SwitchA] mirroring-group 1 remote-source
# Create VLAN 2.
[SwitchA] vlan 2
[SwitchA-vlan2] quit
# Configure VLAN 2 as the remote port mirroring VLAN of the remote port mirroring group. Add port
GigabitEthernet 1/0/1 and GigabitEthernet 1/0/2 to the remote port mirroring group as source ports.
Configure port GigabitEthernet 1/0/3 as the outbound mirroring port.
[SwitchA] mirroring-group 1 remote-probe vlan 2
[SwitchA] mirroring-group 1 mirroring-port GigabitEthernet 1/0/1 GigabitEthernet 1/0/2
inbound
[SwitchA] mirroring-group 1 monitor-egress GigabitEthernet 1/0/3
# Configure port GigabitEthernet 1/0/3 as a trunk port and configure the port to permit the packets of
VLAN 2.
[SwitchA] interface GigabitEthernet 1/0/3