Configuring Port Mirroring on a Security Gateway

To configure a port mirroring log:

1. Create a new bridge group:

   > add bridging group 0

2. Add the interface to bridging group br0:

   > add bridging group 0 <if_name>

   <if_name> = Interface name

3. In SmartDashboard, add the bridge interface to the 61000/41000 Security System gateway object.
4. Change the bridge interface name to br0.
5. Select Global Properties from the Policy menu.
6. Select Stateful Inspection and clear these options:
   • Drop out of state TCP packets
   • Drop out of state ICMP packets

   

7. Install the policy.
8. From the 61000/41000 Security System command line, define the interface as a SPAN port:

   > asg_span_port set

9. Reboot all SGMs.
10. In Global Properties > Stateful Inspection > Exceptions, add an exception for the 61000/41000 Security System.

We recommend that you run asg if to make sure that the bridge and its related interface are up and running.