应用场景描述:
把核心交换机(BAS)与出口网关之间的所有流量全部镜像给安全态势感知设备,对所有进出的数据进行分析。
思路:
1、设置solt板卡观察序号
2、配置镜像端口/聚合口
3、配置观察端口/聚合口
4、查看配置结果
配置过程:
配置solt板卡观察序号
#
slot 1
mirror to observe-index 33
#
slot 2
mirror to observe-index 33
#
镜像端口配置(数据源端口):
interface Eth-Trunk1
description To-BAS-ME60
mode lacp-static
service-manage https permit
service-manage ping permit
service-manage ssh permit
service-manage snmp permit
service-manage telnet permit
port-mirroring inbound
port-mirroring outbound
#
观察端口配置(接流量分析设备):
interface Eth-Trunk3
description to:waf-device
port-observing observe-index 33
查看配置结果:
<Eudemon8000-X8>disp port-mirroring interface标签:index,ME60,service,manage,Eudemon8000E,X8,observe,permit,port From: https://blog.51cto.com/xieyunc/5806244
2022-10-26 21:15:54.990
------------------------------------------------------------------------------
Interface Vlan CAR Type In/Out WithLinkHeader Instance
------------------------------------------------------------------------------
ET1 no - Port In-Out Yes -
------------------------------------------------------------------------------
<Eudemon8000-X8>disp port-observing observe-index
2022-10-26 21:15:59.600
observe-index 33
observe-port : Eth-Trunk9
reference slot : 1, 2