组网说明:
本案例使用S5820交换机与华为5720交换机对接二层远程端口镜像,源设备和目的设备都是华为5720交换机,目的设备是H3C S5820交换机。通过S5820交换机与华为5720交换机对接二层远程端口镜像,实现流量的镜像及监控。
S5820版本信息如下:
H3C Comware Software, Version 7.1.045, Release 2418P06
Copyright (c) 2004-2015 Hangzhou H3C Tech. Co., Ltd. All rights reserved.
H3C S5820V2-48S uptime is 240 weeks, 3 days, 2 hours, 10 minutes
Last reboot reason : USER reboot
华为5720版本信息如下:
Huawei Versatile Routing Platform Software
VRP (R) software, Version 5.170 (S5720 V200R010C00SPC600)
Copyright (C) 2000-2016 HUAWEI TECH CO., LTD
HUAWEI S5720-56C-EI-AC Routing Switch uptime is 97 weeks, 3 days, 9 hours, 49 minutes
ES5D2T52C002 0(Master) : uptime is 97 weeks, 3 days, 9 hours, 48 minutes
DDR Memory Size : 2048 M bytes
FLASH Memory Size : 344 M bytes
Pcb Version : VER.C
BootROM Version : 020a.0001
BootLoad Version : 020a.0001
CPLD Version : 010c
Software Version : VRP (R) Software, Version 5.170 (V200R010C00SPC600)
PWR1 information
Pcb Version : PWR VER.B
PWR2 information
Pcb Version : PWR VER.B
FAN1 information
Pcb Version : NA
S5800的MAC如下:
dis lldp local-information
Global LLDP local-information:
Chassis ID : 741f-4a25-ae4b
System name : s5800
System description : H3C Comware Platform Software, Software Version 7.1.045,
Release 2418P06
H3C S5820V2-48S
Copyright (c) 2004-2015 Hangzhou H3C Tech. Co., Ltd. All
rights reserved.
System capabilities supported : Bridge, Router, Customer Bridge, Service Bridge
System capabilities enabled : Bridge, Router, Customer Bridge
S5820远程端口镜像配置:
vlan 666
undo mac-address mac-learning enable
quit
mirroring-group 1 remote-destination
mirroring-group 1 remote-probe vlan 666
mirroring-group 1 monitor-port Ten-GigabitEthernet 1/0/16
int ten 1/0/16
port link-type access
port acc vlan 666
quit
interface Bridge-Aggregation45
port link-type trunk
undo port trunk permit vlan 1
port trunk permit vlan 666
quit
int ten 1/0/45
port link-type trunk
undo port trunk permit vlan 1
port trunk permit vlan 666
port link-aggregation group 45
quit
int ten 2/0/45
port link-type trunk
undo port trunk permit vlan 1
port trunk permit vlan 666
port link-aggregation group 45
quit
源设备远程端口镜像配置:
vlan 666
mac-address learning disable //禁止镜像vlan学习MAC
#
observe-port 1 interface XGigabitEthernet0/0/4 vlan 666
#
interface GigabitEthernet0/0/1 //镜像端口
port link-type access
port default vlan 2
port-mirroring to observe-port 1 inbound
port-mirroring to observe-port 1 outbound
#
#
interface XGigabitEthernet0/0/4 观察端口
port link-type trunk
port trunk allow-pass vlan 666
#
#中间设备配置:
vlan 666
mac-address learning disable
#
#
interface XGigabitEthernet0/0/3
port link-type trunk
port trunk allow-pass vlan 666
#
#
interface Eth-Trunk1
port link-type trunk
port trunk allow-pass vlan 666
#
该案例暂时没有网友评论
✖
案例意见反馈
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作