This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to create mirror port on X590

How to create mirror port on X590

Giuseppe_Montan
Contributor

‎07-27-2020 08:10 AM

Good Morning, we replaced an Enterasys S4 with a pair of X590s.

The customer configured on S4 an IDS ( Snort ) to monitor the vlans ( one port for each vlan )

with this command:

set vlan interface 1 create
set smon vlan create vtap.0.1
set port mirroring create vtap.0.1 ge.4.13 both

set vlan interface 50 create
set smon vlan create vtap.0.50
set port mirroring create vtap.0.50 ge.4.18 both

set vlan interface 100 create
set smon vlan create vtap.0.100
set port mirroring create vtap.0.100 ge.4.19 both

 

In this way the interfaces belong to a vlan and have an ip address.

Is possible to do the same on X590 ?

Thanks

Giuseppe

 

0 Kudos
6 REPLIES 6

Giuseppe_Montan
Contributor

‎07-30-2020 03:01 PM

Thanks for your reply.

in this day I try to do this

 

ena mirror MIRROR_LAN TO remote-ip “ipaddress of IDS “

conf mirror MIRROR_LAN add vlan default

The traffic is tunneled Grev0 and the Intrusion Detection can not see the traffic

I would like finding a command similar to the command put on S4

 

Thanks in advance

 

Giuseppe

 

 

0 Kudos

Tomasz
Valued Contributor II

‎07-27-2020 11:58 AM

Hi Giuseppe,

 

On EXOS there are three ways to deliver mirrored traffic (with port-wide mirror or thru an ACL): target port, target VLAN, target IP.

If you want to deliver anything through layer 3 with particular VLAN interface, you might be thinking about this:

create vlan 50 // or create vlan Green tag 50 - the former creates VLAN with a name VLAN_0050, most commands allow to refer to VLANs by name or ID; the former allows to create many vlans at once BTW (e.g. create vlan 51-59,64), name can also be changed anytime;

configure vlan 50 ipaddress [address/netmask] (or abbreviated: conf [vlan name] ip [address/netmask])

Not sure what direction you want to follow, I’m not familiar with S4 smon thing.

 

Hope that helps,

Tomasz

0 Kudos

Giuseppe_Montan
Contributor

‎07-27-2020 08:53 AM

Ok, but on S4 series the ports where the customer connected the IDS are configured on vlan and the IDS has one IP for each vlan.


set vlan interface 50 create
set smon vlan create vtap.0.50
set port mirroring create vtap.0.50 ge.4.18 both

I did not find the command “smon” on Xos manual.

Giuseppe
 

0 Kudos

Miguel-Angel_RO
Valued Contributor II

‎07-27-2020 08:47 AM

From the doc:

d8506e79a66f4117a72a8b49a3473e8a_79c084ce-e054-407a-913f-c25111e3778c.png

 

0 Kudos
GTM-P2G8KFN