Switching

 View Only
last person joined: 3 days ago 

Ask questions and share experiences about EX and QFX portfolios and all switching solutions across your data center, campus, and branch locations.

  • 1.  RE: Remote port mirroring (port mirroring over layer3)

     
    Posted 07-13-2020 11:47

    Hello Folks,

     

    Is there a way to forward port-mirrored traffic over layer 3? A local "ge" interface needs to be monitored for an EX-4200 switch and then the mirrored traffic needs to be sent to a remote laptop, which is several hops away from this switch and is on separate broadcast domain compared to the switch interface being monitored.

     

    Basically checking to see if there is a way to transmit port-mirrored traffic over layer 3.

     

     



  • 2.  RE: RE: Remote port mirroring (port mirroring over layer3)

     
    Posted 07-13-2020 12:03

    Hi,

     

    You can specify the egress interface as a vlan for the purpose of sending the mirrored traffic to remote host 

    https://www.juniper.net/documentation/en_US/junos/topics/concept/layer-2-services-port-mirroring-remote-destination-using-destination-as-vlan.html

     

    If this solves your problem, please mark this post as "Accepted Solution."



  • 3.  RE: RE: Remote port mirroring (port mirroring over layer3)

     
    Posted 07-13-2020 12:11

    The above suggested approach looks like transmission over layer 2, which requires the layer 2 VLANS to be tagged along the network path, I am seeking for an approach to transfer mirrored traffic over layer 3.

     



  • 4.  RE: RE: Remote port mirroring (port mirroring over layer3)
    Best Answer

     
    Posted 07-13-2020 13:44

    Hey Biraj,

     

    Unfortunately, I don't think that this is not possible with this gear.

     

     This could be accomplished using a GRE tunnel but the EX4200 only supports one MPLS label and VPLS requires at least two. 

     

    [edit forwarding-options family vpls]
    set output interface gre-interface-name

     

    https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/configuring-layer-2-port-mirroring-over-gre-interface.html

     

    With an EVPN/VXLAN set up is possible but your EX4200 does not support any of these technologies. 

     

    https://www.juniper.net/documentation/en_US/release-independent/nce/topics/example/nce-175-port-mirroring-for-evpn-vxlan-example.html

     

     

    If this solves your problem, please mark this post as "Accepted Solution" so we can help others too \:)/

    Regards,

    Lil Dexx
    JNCIE-ENT#863, 3X JNCIP-[SP-ENT-DC], 4X JNCIA [cloud-DevOps-Junos-Design], Champions Ingenius, SSYB



  • 5.  RE: RE: Remote port mirroring (port mirroring over layer3)

     
    Posted 07-14-2020 09:32

    Hi Dex,

     

    Thanks for providing me with options using VPLS and EVPN. Really hope the port-mirroring feature over standard layer3 will be supported in the future, it will really help customers.

     



  • 6.  RE: RE: Remote port mirroring (port mirroring over layer3)

     
    Posted 07-14-2020 10:47

    Hey

     

    You are more than welcome, I don't believe that this would not be the case as Juniper is moving away from these types of platforms since they are considered legacy devices hence our chances of getting new features and enhancements are slim to none.

     

     

    If this solves your problem, please mark this post as "Accepted Solution" so we can help others too \:)/

    Regards,

     

    Lil Dexx
    JNCIE-ENT#863, 3X JNCIP-[SP-ENT-DC], 4X JNCIA [cloud-DevOps-Junos-Design], Champions Ingenius, SSYB