Extreme Networks

Thanks, all. I can see traffic flows with application groups and respone times shown.

i setup a purview appliance with 1 interface in VMWare, using GRE Tunnel for mirrored traffic. If you use policy manager, configure a rule/mirror there.

# tg.2.24 is an unused dummy port
set mirror create 1
set mirror 1 mirrorN 15
set mirror ports tg.2.24 1

# tg.2.15 is the port with the traffic that should be mirrored
set policy profile 9 name PurviewMirror pvid-status enable pvid 4095 mirror-destination 1
set policy rule admin-profile port tg.2.15 mask 16 port-string tg.2.15 admin-pid 9

# GRE Tunnel
# 10.10.10.1 - routable address
# gre tunnel set on the "dummy" port tg.2.24
# x.x.x.x your purview appliance
interface loop.0.1
ip address 10.10.10.1 255.255.255.255 primary
no shutdown
exit
interface tun.0.1
tunnel destination x.x.x.x
tunnel mode gre l2 tg.2.24
tunnel mirror enable
tunnel source 10.10.10.1
no shutdown
exit

then configure the gre endpoint at the purview appliance (specify source 10.10.10.1)

This example is almost from "purview deployment guide". There you can find various implementation options.

Forgot to mention that this config assumes mirrored traffic to be analyzed is fed into the SSA through port ge.1.48.

KeN, Here's a configuration for an SSA switch that connects to the Purview engine configured in Deployment Mode 2 2. Dual Interface Mirrored Separate interfaces are configured for management and monitoring traffic. The monitoring interface will be put into tap mode for traffic monitoring. The switch sends NetFlow information through port ge.1.2 and packet information through port ge.1.17. No GRE tunnels configured here so ge.1.17 must be directly connected to eth2 port in the Purview appliance.

Here's a diagram. Sorry, the legends are in spanish...

The commands to configure this are:
set vlan create 100,1111-1112 clear vlan egress 1 lag.0.1-62;tbp.0.1-62;ge.1.1-48;tg.1.1-4 set vlan egress 100 ge.1.1-16 untagged
set vlan egress 1111 ge.1.17 untagged set vlan egress 1112 ge.1.48 untagged set ip interface vlan.0.100 default set ip address 192.168.100.1 mask 255.255.255.0 interface vlan.0.100 set port vlan ge.1.1-16 100 modify-egress set port vlan ge.1.17 1111 modify-egress set port vlan ge.1.48 1112 modify-egress set prompt PoC-SSA set cdp status disable set ciscodp status disable set gvrp disable set lacp disable set mirror create 1 set mirror 1 mirrorN 15 set mirror ports ge.1.17 1 set netflow export-interval 1 set netflow export-destination 192.168.100.20 2055 set netflow export-version 9 set netflow export-rate 20000 1 set netflow export-data enable mac set netflow export-data enable vlan set netflow port ge.1.48 enable rx set netflow template refresh-rate 30 timeout 1 set netflow cache enable
set policy profile 1 name Purview pvid-status enable pvid 0 mirror-destination 1 set policy rule admin-profile port ge.1.48 mask 16 port-string ge.1.48 admin-pid 1 set spantree portadmin ge.1.1-17,48 disable
set ssh enabled set telnet disable inbound set telnet disable outbound