This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 

Purview appliance with more interfaces on different subnets

Purview appliance with more interfaces on different subnets

Antonio_Opromol
Contributor II

ā€Ž03-22-2016 02:40 PM

Hi, is possible to deploy the Pureview appliance with more interfaces on different subnets or under a NAT device respect the Pureview Sensor? In my scenario I've got a NAT device between my internal lan where I've got the ExtremeControl and the ExtremeAnalytics appliance (virtual) and the coreflow2 switch is on another subnet and I reach this throught the nat device. As test, I've natted 1-1 the Extreme Analytics Appliance and I've used the NAT IP address as the remote gre endpoint on the coreflow2 switch. In this test I see in the external interface of the nat\router the GRE packets, but nothing reach my internal Pureview appliance. How is possible to use Pureview in a deployment like that? Thanks
0 Kudos
16 REPLIES 16

Antonio_Opromol
Contributor II

ā€Ž03-31-2016 11:53 AM

Hi Matthew, I've removed the wrong default gateway entry in the SSA configuration: ip route 0.0.0.0/0 interface vlan.0.100 1 and now the netflow packets udp port 2055 arrive to the purview engine also on the external interface of the Purview VMs.. Regards, Antonio
0 Kudos

Antonio_Opromol
Contributor II

ā€Ž03-29-2016 05:13 PM

Hi Matthew, yes, my mirror port is ge.1.2, on the schema is writted an old interface...
Yes, the exported packets increase...

93dfaa3360f944228a7e1f53907a3777_RackMultipart20160329-38340-110hxlp-Cattura_inline.png


Then I've disabled and re-enabled the netflow cache, but seems that netflow udp packets on port destination 2055 don't reach the purview appliance....

0 Kudos

Matthew_Hum1
Extreme Employee

ā€Ž03-29-2016 02:15 PM

if you do successive show netflow statistics do you see the exported packets increase?
you can also try disabling the cache and re-enabling it.

Also your diagram says tg.1.2 is your mirror port but the config has ge.1.2...?
0 Kudos

Antonio_Opromol
Contributor II

ā€Ž03-29-2016 12:20 PM

In my case the gre tunnel is between SSA ip address 192.168.1.227 and the ip 172.29.151.102 that is the value assigned to the secondary NIC of my Purview appliance attached outside the NAT device, instead eth0 ip address is 192.168.10.102 and this interface is attached to a virtualswitch "inside" under the nat device. So now the gre tunnes is the red line in the picture below of the new schema

4b00c79340f945ffbff39dd66e681546_RackMultipart20160329-120120-1cz0yin-RackMultipart20160328-15973-16csb1t-Capture_inline_inline.jpg

0 Kudos
GTM-P2G8KFN