Services on the QFX Series - Juniper.net

More documents

Recommendations

Info

<strong>Services</strong> on the QFX Series 2 Copyright © 2013, Juniper Networks, Inc.
CHAPTER 1 Port Mirroring Understanding Port Mirroring • Understanding Port Mirroring on page 3 • Understanding Layer 3 Logical Interfaces on page 7 • Port Mirroring Overview on page 3 • Port-Mirroring Terminology on page 4 • Port Mirroring Constraints and Limitations on page 5 Port Mirroring Overview Port mirroring copies packets entering or exiting a port or entering a VLAN and sends the copies to a local interface for local monitoring or to a VLAN for remote monitoring. Use port mirroring to send traffic to applications that analyze traffic for purposes such as monitoring compliance, enforcing policies, detecting intrusions, monitoring and predicting traffic patterns, correlating events, and so on. Port mirroring is needed for traffic analysis on a switch because a switch normally sends packets only to the port to which the destination device is connected. You configure port mirroring on the switch to send copies of unicast traffic to a local interface or a VLAN and run an analyzer application on a device connected to the interface or VLAN. You configure port mirroring by using the analyzer statement. Keep performance in mind when configuring port mirroring. For example, If you mirror traffic from multiple ports, the mirrored traffic may exceed the capacity of the output interface. We recommend that you limit the amount of copied traffic by selecting specific interfaces instead of using the all keyword. You can also limit the amount of mirrored traffic by using a firewall filter. Mirroring only the necessary packets reduces the possibility of a performance impact. You can use port mirroring to copy any of the following: • All packets entering or exiting an interface (in any combination)—For example, you can send copies of the packets entering some interfaces and the packets exiting other interfaces to the same local interface or VLAN. If you configure port mirroring to copy packets exiting an interface, traffic that originates on that switch or Node device (in a Copyright © 2013, Juniper Networks, Inc. 3
Page 1 and 2: Services on the QF
Page 3 and 4: Table of Contents About the Documen
Page 5 and 6: Table of Contents Part 3 Administra
Page 7 and 8: List of Figures Part 2 Configuratio
Page 9 and 10: List of Tables About the Documentat
Page 11 and 12: About the Documentation Documentati
Page 13 and 14: About the Documentation [edit] user
Page 15 and 16: About the Documentation https://www
Page 17: PART 1 Overview • Port Mirroring
Page 21 and 22: Chapter 1: Port Mirroring Table 3:
Page 23 and 24: Chapter 1: Port Mirroring • CPU-g
Page 25 and 26: CHAPTER 2 DHCP Relay DHCP and BOOTP
Page 27 and 28: PART 2 Configuration • Configurat
Page 29 and 30: CHAPTER 3 Configuration Examples
Page 31 and 32: Chapter 3: Configuration Examples u
Page 33 and 34: Chapter 3: Configuration Examples V
Page 35 and 36: Chapter 3: Configuration Examples S
Page 37 and 38: Chapter 3: Configuration Examples }
Page 39 and 40: CHAPTER 4 Configuration Tasks Confi
Page 41 and 42: Chapter 4: Configuration Tasks c. S
Page 43 and 44: Chapter 4: Configuration Tasks rela
Page 45 and 46: CHAPTER 5 Configuration Statements
Page 47 and 48: Chapter 5: Configuration Statements
Page 57 and 58: CHAPTER 6 Configuration Statements
Page 69 and 70:
Chapter 6: Configuration Statements
Page 71 and 72:
Page 73 and 74:
Page 75 and 76:
Page 77 and 78:
CHAPTER 7 Configuration Statements
Page 79 and 80:
Page 81 and 82:
Page 83 and 84:
Page 85 and 86:
PART 3 Administration • Monitorin
Page 87 and 88:
CHAPTER 8 Monitoring Commands for P
Page 89 and 90:
Chapter 8: Monitoring Commands for
Page 91 and 92:
PART 4 Troubleshooting • Troubles
Page 93 and 94:
CHAPTER 9 Troubleshooting Procedure
Page 95 and 96:
Chapter 9: Troubleshooting Procedur
show all

Services on the QFX Series - Juniper.net

Create successful ePaper yourself

Delete template?

Save as template?