12-30-2022 09:52 AM
In each of our offices we have a x460G2 at the core and then a number of x440G2 switches uplinked to that which are used for PCs and VOIP.
At each of our colocation facilities, we have 4 x 695s and 3 x 5520s. Our external internet connects to one of the x695s, the MPLS network that connects the colos and the two offices connects to another x695, and a P2P that directly connects the colos connects to the other x695.
The 4 x 695s are all connected via a tiered MLAG setup. Should we just monitor the ports that uplink switches to another site or should we monitor all ports on all switches? We also have a number of VMware servers that I know we will need to setup the Virtual Sensor for.
01-05-2023 05:19 AM - edited 01-05-2023 05:21 AM
Topology: Switch X is connected to Switch Y
Scenario A: enable analytics on Switch X only
Scenario B: enable analytics on both Switch X and Y
Scenario C: enable analytics on edge ports of Switch X and Y = exclude inter-switch links.
For EXOS the recommendation/best practice is Scenario B.
Regarding the Virtual Sensor:
01-25-2023 02:41 PM
Thank you for the clarification. I tried adding more of our switches but what of them is giving this error which I am not sure what to do about.
An error has occurred while adding a telemetry source to the selected engine. The switch's ACLs may be fully utilized due to other switch policy. You can use the EXOS "show access-list" command to investigate. See below for an error message from the EXOS device.
01-26-2023 09:20 AM
Every switch HW has some limitations in the ASIC chip. The premium edge devices have more ACL space compare to non-premium devices.
You can try the command "configure policy resource-profile" to limit the resource allocation made by policy.
You can modify the telemetry.pol file to limit the analytics.
I hope it helps. Good luck.
01-04-2023 09:16 AM
I read your initial comment of "I recommend enabling analytics on all ports where the traffic can enter your network" to mean that we only needed to enable Analytics on the ports connected to our MPLS network and infrastructure (entering our network between sites) and not as "entering the network" from anywhere like a PC or server connected to the network.
So enable it on all ports on all switches? For example in our one office, we have the core switch which uplinks to a desktop switch stack and a VoIP switch stack. So we want Analytics enabled on all ports on all of those or just the core?
Is there any benefit/need to also install the Virtual Sensor on our VMware servers if we already have analytics enabled on every switch port?