반응형
SMALL

GigaVUE-OS 6.x로 올라가면서 Flexible inline map 구현을 위해 사용되는 Canvas 사용 시 주의 사항입니다.
Gigamon FM Canvas는 Flexible inline map을 구현하는데 편의성을 제공 합니다.

나는 이러한 기능을 사용하기 위한 설명을 작성하는 것은 아니며, 이러한 FM의 Canvas 기능을 사용 시 주의를 요하는 부분을 얘기 하고 싶습니다. 아래 예제를 통해 확인해 보겠습니다.
FM Canvas를 통해 아래와 같이 Rule 하나가 추가 되었습니다.

이후 실수도 동일한 Rule을 추가 하였습니다.

Deploy 하기 전까지는 문제 없이 잘 적용 되었습니다.
이후 Deploy를 수행하면 아래와 같이 실패 원이이 뜹니다.

아 어딘가에 문제가 있구나 하고 실패 원인을 확인 하여 문제를 해결 합니다.
이때까지도 몰랐습니다. 잘못된 부분을 수정하여 다시 적용 하면 되겠지라고 생각 했습니다.
하지만 HC 장비에서는 아래와 같은 증상이 발생 되었습니다.

Deploy 실패와 관련된 inline-network가 "NORMAL" 상태에서 "PHYSICAL BYPASS"로 변환이 되었습니다.
따라서 Canvas 를 통해 Deploy시 실패가 될 경우 inline-network 상태 점검이 꼭 필요합니다.

반응형
LIST
저작자표시

'업무이야기 > 패킷전달플랫폼' 카테고리의 다른 글

Gigamon HC Series CLI를 통한 Firmware upgrade  (1) 2024.09.05
@cloud에서 Gigamon으로 패킷 전송 config  (2) 2024.09.05
Gigamon FM Canvas Export & Import에 관하여  (0) 2024.08.01
Gigamon Config Backup 및 수정을 통한 Config Restore 방법  (0) 2024.01.18
GigaVUE-FM에 등록된 Node의 비밀번호 변경 시  (0) 2024.01.08
반응형
SMALL

Example 4 is a protected inline bypass solution using bypass combo modules on GigaVUE-HC2. It also configures heartbeat and negative heartbeat profiles.

Protected inline networks are based on the pairs of ports associated with the physical protection switches located on the bypass combo modules. Unlike the unprotected examples, you do not need to configure inline network ports because they are created automatically. On GigaVUE-HC2, the port pairs are numbered for example: 2/2/x17 and 2/2/x18, 2/2/x19 and 2/2/x20, 2/2/x21 and 2/2/x22, 2/2/x23 and 2/2/x24.

You do not need to configure inline networks because they are also created automatically on bypass combo modules. The aliases of the default inline networks are: default_inline_net_2_2_1, default_inline_net_2_2_2, default_inline_net_2_2_3, default_inline_net_2_2_4.

On GigaVUE-HC3, protected inline bypass can be configured on the bypass combo module on ports c1..c4.

On GigaVUE-HC1, protected inline bypass can be configured on the bypass combo module. It can also be configured on the TAP-HC1-G10040 module placed in either bay 2 or bay 3, so the ports will be 1/2/g1..g8 or 1/3/g1..g8. For an example, refer to Example to Configure Inline Bypass on H Series Nodes.

Note: The default value of the physical-bypass attribute of protected inline networks is set to enable, which means that the fibers attached to ports net-a and net-b of the inline network are optically coupled and the traffic is exchanged between end nodes without coming to the switching fabric of the GigaVUE node. As shown in Example 4, after configuring the inline tool and the map passall, the physical-bypass attribute is set to disable in order to activate the inline-bypass solution.

Step

Description

Command

  1. Configure inline tool ports, port type (inline-tool), and administratively enable inline tool ports.

(config) # port 2/2/x11 alias iT1
(config) # port iT1 type inline-tool
(config) # port iT1 params admin enable

(config) # port 2/2/x12 alias iT2
(config) # port iT2 type inline-tool
(config) # port iT2 params admin enable

  1. Configure heartbeat profile alias.

(config) # hb-profile alias hb2
(config hb-profile alias hb2) # exit
(config) #

  1. Configure negative heartbeat profile alias and PCAP file.

(config) # nhb-profile alias nhb1
(config nhb-profile alias nhb1) # custom-packet http://remote/home/hnb.pcap
(config nhb-profile alias nhb1) # exit
(config) #

  1. Configure inline tool. Also specify the heartbeat profile, the negative heartbeat profile, enable heartbeat and negative heartbeat, and also enable inline tool.

(config) # inline-tool alias inTool1
(config inline-tool alias inTool1) # pair tool-a iT1 and tool-b iT2
(config inline-tool alias inTool1) # hb-profile hb2
(config inline-tool alias inTool1) # nhb-profile nhb1
(config inline-tool alias inTool1) # heart-beat
(config inline-tool alias inTool1) # negative-heart-beat
(config inline-tool alias inTool1) # enable
(config inline-tool alias inTool1) # exit
(config) #

  1. Configure map passall, from inline network to inline tool.

(config) # map-passall alias inMap1
(config map-passall alias inMap1) # from default_inline_net_2_2_1
(config map-passall alias inMap1) # to inTool1
(config map-passall alias inMap1) # exit
(config) #

  1. Configure the path of the traffic to inline tool.

(config) # inline-network alias default_inline_net_2_2_1 traffic-path to-inline-tool

  1. Disable physical bypass on the default inline network alias.

(config) # inline-network alias default_inline_net_2_2_1 physical-bypass disable

  1. Display the configuration for this example.

(config) # show port
(config) # show inline-network
(config) # show inline-tool
(config) # show map
(config) # show hb-profile
(config) # show nhb-profile

 

반응형
LIST
저작자표시

'업무이야기 > 패킷전달플랫폼' 카테고리의 다른 글

Gigamon Inline Tool Series  (0) 2021.01.17
Gigamon Inline Tool Group (N+1) Redundancy  (0) 2021.01.17
Gigamon Unprotected Inline Bypass with an Inline Tool Group  (0) 2021.01.17
Gigamon Unprotected Inline Bypass with Default Heartbeat  (0) 2021.01.17
Gigamon Unprotected Inline Bypass  (0) 2021.01.17
반응형
SMALL

Example 3 adds a second inline tool to the unprotected inline bypass solution on GigaVUE-HC2 in Example 1 and creates an inline tool group consisting of two tools. It also configures a custom heartbeat profile.

Step

Description

Command

  1. Configure inline network aliases, port type (inline-network), and administratively enable inline network ports.

(config) # port 3/1/x1 alias iN1
(config) # port iN1 type inline-network
(config) # port iN1 params admin enable

(config) # port 3/1/x2 alias iN2
(config) # port iN2 type inline-network
(config) # port iN2 params admin enable

  1. Configure inline network.

(config) # inline-network alias inNet pair net-a iN1 and net-b iN2

  1. Configure inline tool ports, port type (inline-tool), and administratively enable inline tool ports.

(config) # port 3/1/x3 alias iT1
(config) # port iT1 type inline-tool
(config) # port iT1 params admin enable

(config) # port 3/1/x4 alias iT2
(config) # port iT2 type inline-tool
(config) # port iT2 params admin enable

(config) # port 3/1/x5 alias iT3
(config) # port iT3 type inline-tool
(config) # port iT3 params admin enable

(config) # port 3/1/x6 alias iT4
(config) # port iT4 type inline-tool
(config) # port iT4 params admin enable

  1. Configure a custom heartbeat profile.

(config) # hb-profile alias hb_custom
(config hb-profile alias hb_custom) # custom-packet http://1.1.1.1/tftpboot/hbpackets/MyHBPacket.pcap
(config hb-profile alias hb_custom) # packet-format custom
(config hb-profile alias hb_custom) # exit
(config) #

  1. Configure inline tools and enable them.

(config) # inline-tool alias inTool1 pair tool-a iT1 and tool-b iT2
(config) # inline-tool alias inTool2 pair tool-a iT3 and tool-b iT4

(config) # inline-tool alias inTool1 enable
(config) # inline-tool alias inTool2 enable

  1. Specify heartbeat profile and enable heartbeat on each inline tool.

(config) # inline-tool alias inTool1 hb-profile hb_custom
(config) # inline-tool alias inTool2 hb-profile hb_custom
(config) # inline-tool alias inTool1 heart-beat
(config) # inline-tool alias inTool2 heart-beat

  1. Configure inline tool group and enable it.

(config) # inline-tool-group alias inToolGroup tool-list inTool1,inTool2
(config) # inline-tool-group alias inToolGroup enable

  1. Configure map passall, from inline network to inline tool group.

(config) # map-passall alias inMap
(config map-passall alias inMap) # from inNet
(config map-passall alias inMap) # to inToolGroup
(config map-passall alias inMap) # exit
(config) #

  1. Configure the path of the traffic to inline tool.

(config) # inline-network alias inNet traffic-path to-inline-tool

  1. Display the configuration for this example.

(config) # show inline-tool-group
(config) # show hb-profile
(config) # show map

 

반응형
LIST
저작자표시

'업무이야기 > 패킷전달플랫폼' 카테고리의 다른 글

Gigamon Inline Tool Group (N+1) Redundancy  (0) 2021.01.17
Gigamon Protected Inline Bypass Using Bypass Combo Modules  (0) 2021.01.17
Gigamon Unprotected Inline Bypass with Default Heartbeat  (0) 2021.01.17
Gigamon Unprotected Inline Bypass  (0) 2021.01.17
Gigamon APF, ASF Sample  (0) 2021.01.17
반응형
SMALL

Example 2 adds the default heartbeat profile to the unprotected inline bypass solution on GigaVUE-HC2 in Example 1.

Step

Description

Command

  1. Configure inline network aliases, port type (inline-network), and administratively enable inline network ports.

(config) # port 3/1/x1 alias iN1
(config) # port iN1 type inline-network
(config) # port iN1 params admin enable

(config) # port 3/1/x2 alias iN2
(config) # port iN2 type inline-network
(config) # port iN2 params admin enable

  1. Configure inline network.

(config) # inline-network alias inNet pair net-a iN1 and net-b iN2

  1. Configure inline tool ports, port type (inline-tool), and administratively enable inline tool ports.

(config) # port 3/1/x3 alias iT1
(config) # port iT1 type inline-tool
(config) # port iT1 params admin enable

(config) # port 3/1/x4 alias iT2
(config) # port iT2 type inline-tool
(config) # port iT2 params admin enable

  1. Configure default heartbeat profile.

(config) # hb-profile alias hb1
(config hb-profile alias hb1) # exit
(config) #

  1. Configure inline tool and enable it.

(config) # inline-tool alias inTool pair tool-a iT1 and tool-b iT2
(config) # inline-tool alias inTool enable

  1. Specify heartbeat profile and enable heartbeat.

(config) # inline-tool alias inTool hb-profile hb1
(config) # inline-tool alias inTool heart-beat

  1. Configure map passall, from inline network to inline tool.

(config) # map-passall alias inMap
(config map-passall alias inMap) # from inNet
(config map-passall alias inMap) # to inTool
(config map-passall alias inMap) # exit
(config) #

  1. Configure the path of the traffic to inline tool.

(config) # inline-network alias inNet traffic-path to-inline-tool

  1. Display the configuration for this example.

(config) # show hb-profile
(config) # show inline-tool

 

 

반응형
LIST
저작자표시

'업무이야기 > 패킷전달플랫폼' 카테고리의 다른 글

Gigamon Protected Inline Bypass Using Bypass Combo Modules  (0) 2021.01.17
Gigamon Unprotected Inline Bypass with an Inline Tool Group  (0) 2021.01.17
Gigamon Unprotected Inline Bypass  (0) 2021.01.17
Gigamon APF, ASF Sample  (0) 2021.01.17
How To: Configure Out of band clustering on H seriesStep by step example for out of band clustering  (0) 2021.01.17
반응형
SMALL

Example 1: Unprotected Inline Bypass

On GigaVUE-HC1, an unprotected inline bypass solution can be configured on the base module, with the inline networks and inline tools on ports 1/1/x1..x12 and
1/1/g1..g4, or on the bypass combo module on ports x1..x4.

Step

Description

Command

  1. Configure inline network aliases, port type (inline-network), and administratively enable inline network ports.

(config) # port 3/1/x1 alias iN1
(config) # port iN1 type inline-network
(config) # port iN1 params admin enable

(config) # port 3/1/x2 alias iN2
(config) # port iN2 type inline-network
(config) # port iN2 params admin enable

  1. Configure inline network.

(config) # inline-network alias inNet pair net-a iN1 and net-b iN2

  1. Configure inline tool ports, port type (inline-tool), and administratively enable inline tool ports.

(config) # port 3/1/x3 alias iT1
(config) # port iT1 type inline-tool
(config) # port iT1 params admin enable

(config) # port 3/1/x4 alias iT2
(config) # port iT2 type inline-tool
(config) # port iT2 params admin enable

  1. Configure inline tool and enable it.

(config) # inline-tool alias inTool pair tool-a iT1 and tool-b iT2
(config) # inline-tool alias inTool enable

  1. Configure map passall, from inline network to inline tool.

(config) # map-passall alias inMap
(config map-passall alias inMap) # from inNet
(config map-passall alias inMap) # to inTool
(config map-passall alias inMap) # exit

  1. Configure the path of the traffic to inline tool.

(config) # inline-network alias inNet traffic-path to-inline-tool

  1. Display the configuration for this example.

(config) # show port
(config) # show inline-network
(config) # show inline-tool
(config) # show map

 

 

반응형
LIST
저작자표시

'업무이야기 > 패킷전달플랫폼' 카테고리의 다른 글

Gigamon Unprotected Inline Bypass with an Inline Tool Group  (0) 2021.01.17
Gigamon Unprotected Inline Bypass with Default Heartbeat  (0) 2021.01.17
Gigamon APF, ASF Sample  (0) 2021.01.17
How To: Configure Out of band clustering on H seriesStep by step example for out of band clustering  (0) 2021.01.17
GigaSMART SSL Decryption for Out-of-Band Tools  (0) 2021.01.17
반응형
SMALL

 

반응형
LIST
저작자표시

'업무이야기 > 패킷전달플랫폼' 카테고리의 다른 글

Setting Up the Gigamon Cloud Suite for Nutanix Demo Video  (0) 2020.06.04
GigaSMART® Packet De-duplication  (0) 2020.06.04
GigaSMART® SSL Decryption  (0) 2020.06.04
What is Gigamon ?  (0) 2020.06.04
Application Filtering Intelligence Configuration Sample  (0) 2020.06.03

+ Recent posts

티스토리툴바