본문 바로가기

업무이야기/패킷전달플랫폼

Gigamon Inline Flow Mapping Based Solution A

by 쫑콩아빠 2021. 1. 17.
728x90

Example 10 is an inline flow mapping based solution on GigaVUE-HC2. Example 10 has a single, unprotected inline network, a single inline tool, a rule-based map (VLAN 100) from the inline network to the inline tool, and a shared collector from the inline network to bypass. Traffic on VLAN 100 will be inspected by the inline tool while the remaining traffic will not be inspected (will be bypassed).

Step

Description

Command

  1. Configure inline network aliases, port type (inline-network), and administratively enable inline network ports.

(config) # port 7/2/x1 alias iN1
(config) # port iN1 type inline-network
(config) # port iN1 params admin enable

(config) # port 7/2/x20 alias iN2
(config) # port iN2 type inline-network
(config) # port iN2 params admin enable

  1. Configure inline network.

(config) # inline-network alias inNet pair net-a iN1 and net-b iN2

  1. Configure inline tool ports, port type (inline-tool), and administratively enable inline tool ports.

(config) # port 7/2/x2 alias iT1
(config) # port iT1 type inline-tool
(config) # port iT1 params admin enable

(config) # port 7/2/x15 alias iT2
(config) # port iT2 type inline-tool
(config) # port iT2 params admin enable

  1. Configure inline tool and enable it.

(config) # inline-tool alias inTool pair tool-a iT1 and tool-b iT2
(config) # inline-tool alias inTool enable

  1. Enable default heartbeat.

(config) # inline-tool alias inTool heart-beat

  1. Configure rule-based map, from inline network to inline tool.

(config) # map alias inMap1
(config map alias inMap1) # type inline byRule
(config map alias inMap1) # from inNet
(config map alias inMap1) # to inTool
(config map alias inMap1) # rule add pass vlan 100
(config map alias inMap1) # exit
(config) #

  1. Add a shared collector for any unmatched data and send it to bypass.

(config) # map-scollector alias scoll
(config map-scollector alias scoll) # from inNet
(config map-scollector alias scoll) # collector bypass
(config map-scollector alias scoll) # exit
(config) #

  1. Configure the path of the traffic to inline tool.

(config) # inline-network alias inNet traffic-path to-inline-tool

  1. Display the configuration for this example.

(config) # show inline-network
(config) # show inline-tool
(config) # show map

 

728x90