<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=ISO-8859-1">
</head>
<body bgcolor="#ffffff" text="#000000">
Hi List,<br>
<br>
We are using Brocade XMR routers and on one of these devices we need
to make a mirror of a specific VLAN. Normally we would use a port
mirror, but with the VLAN residing on a 10Gb port, this is not an
option.<br>
<br>
I've found a doc on the Brocade site explaining on how-to do this
(<a class="moz-txt-link-freetext" href="http://community.brocade.com/docs/DOC-2413">http://community.brocade.com/docs/DOC-2413</a>), but I think that this
is for ingress only, this after some testing. I've created a
testsetup;<br>
<br>
On another XMR I've created a VLAN (VLAN 60)+ VE and in the vlan
I've added two tagged ports, ethe 2/19 and 2/20. Port 2/10 will be
the mirror-port, the source-port will be 2/19. On the VE, a /29
subnet is configured.<br>
<br>
On each of the tagged ports I've connected a switch and each switch
has one IP address out of the /29. I then ping switch B from switch
A (this is working).<br>
<br>
I then created the mirror:<br>
<i>XMR# access-list 400 permit any any 60 mirror<br>
XMR# access-list 400 permit any any<br>
<br>
XMR# interface ethernet 2/19 <br>
XMR# mac access-group 400 in<br>
XMR# acl-mirror-port ethernet 2/10</i> <br>
<br>
When I hookup a laptop on port 2/10 and look via tcpdump, I'm not
receiving ingress and egress traffic, I'm only seeing the ping
requests or the ping replies (depending which switch sends the ping
requests), but not both. Is there a way to configure a VLAN mirror
so that we can see both ingress and egress traffic?<br>
<br>
Thanks! <br>
<pre class="moz-signature" cols="72">--
With regards,
Signet bv
Justin Suyk
T 040 - 707 4 907
F 040 - 707 4 909
Kvk 17089930
<a class="moz-txt-link-abbreviated" href="mailto:helpdesk@signet.nl">helpdesk@signet.nl</a>
altijd online?www.signet.nl
</pre>
</body>
</html>