Routing

 View Only
last person joined: 8 days ago 

Ask questions and share experiences about ACX Series, CTP Series, MX Series, PTX Series, SSR Series, JRR Series, and all things routing, including portfolios and protocols.
  • 1.  Remote Port Mirroring on QFX or EX switches

    Posted 07-04-2024 13:54

    Hi everyone,

    We have a requirement where traffic from virtual machines on vDS ESXI must be  port-mirrored  to our  long-time storage for forensic analysis.

    Our set up:

    Virtual environment ESXI  2.2.2.2-----L3network----------1.1.1.1( QFX or EX) -xe-0/0/0/10------------STORAGE

    Where 2.2.2.2 is ESXI management IP that can reach 1.1.1.1 on QFX/EX

    OnESXI vDS, we have an option to send mirrored-traffic to target destination over GRE as shown below:

    So I set up the Port-mirroring using 1.1.1.1 ( QFX/EX) .

    I can see GRE encapsulated traffic arriving on QFX/EX SW,  but  QFX/EX is not  port-mirroring the decapsulated traffic out of xe-0/0/10.

    Below are the configurations I tried:

    on QFX/EX:

    set forwarding-options analyzer TEST ingress gr-0/0/0.1

    set forwarding-options analyzer TEST output xe-0/0/10

    Is this a expected behavior on QFX/EX?

    Much appreciated!!



    ------------------------------
    Be kind!!
    ------------------------------


  • 2.  RE: Remote Port Mirroring on QFX or EX switches

    Posted 07-05-2024 05:23

    I don't believe you should configure the QFX with analyzer/port-mirror.

    Try instead on the gr-0/0/0.1 to configure it as "family bridge", and as access-port to VLAN XXX.

    Then add also port xe-0/0/10 to that same VLAN.



    ------------------------------
    PER GRANATH
    ------------------------------