Extreme Networks

Giuseppe_Montan · ‎07-27-2020

Good Morning, we replaced an Enterasys S4 with a pair of X590s.

The customer configured on S4 an IDS ( Snort ) to monitor the vlans ( one port for each vlan )

with this command:

set vlan interface 1 create
set smon vlan create vtap.0.1
set port mirroring create vtap.0.1 ge.4.13 both

set vlan interface 50 create
set smon vlan create vtap.0.50
set port mirroring create vtap.0.50 ge.4.18 both

set vlan interface 100 create
set smon vlan create vtap.0.100
set port mirroring create vtap.0.100 ge.4.19 both

In this way the interfaces belong to a vlan and have an ip address.

Is possible to do the same on X590 ?

Thanks

Giuseppe

Giuseppe_Montan · ‎07-27-2020

Hi Miguel, yes, I created a mirror port to monitor the vlan, but the port to which I connect the IDS does not belong to any Vlan, while in the S series with the commands that I have shown the port belongs to a vlan and I can configure a IP address of that Vlan on IDS.

I would like to do the same on X590 if is possible obviously.

Giuseppe

Miguel-Angel_RO · ‎07-27-2020

Giuseppe,

Did you checked https://gtacknowledge.extremenetworks.com/articles/How_To/How-To-Enable-And-Configure-Mirroring-In-E... ?

Mig

Extreme Networks

How to create mirror port on X590

How to create mirror port on X590