[j-nsp] MX80 port-mirror config
Matthew Crocker
matthew at corp.crocker.com
Sat May 31 12:15:44 EDT 2014
Hello,
I’m trying to setup a port-mirror to see the traffic in/out on a XE interface of my MX80. The port-mirror is working but it is only showing layer 3, not layer 2 data. I would like to be able to see the VLAN & MAC addresses used in the original packets. Right now the Ethernet frame info is Juniper -> Wireshark
Anyone know what I can do to make this show all the data?
interface ge-1/3/3 {
description "Wireshark port-mirror destination";
enable;
mtu 9192;
unit 0 {
family inet {
address 192.168.10.10/24;
}
}
interfaces xe-0/0/2 {
enable;
flexible-vlan-tagging;
mtu 9192;
unit 1155 {
vlan-id 1155;
family inet {
filter {
input port-mirror;
output port-mirror;
}
address A.B.C.D/25;
}
}
port-mirroring {
input {
rate 1;
maximum-packet-length 9216;
}
family inet {
output {
interface ge-1/3/3.0 {
next-hop 192.168.10.2; <— IP of linux machine running tcpdump/wireshark
}
}
}
}
firewall {
family inet {
filter port-mirror {
term pcap {
then {
port-mirror;
accept;
}
}
}
}
--
Matthew S. Crocker
President
Crocker Communications, Inc.
PO BOX 710
Greenfield, MA 01302-0710
E: matthew at crocker.com
P: (413) 746-2760
F: (413) 746-3704
W: http://www.crocker.com
More information about the juniper-nsp
mailing list