set interface <LAN> enable-port-mirroring
In the R81.10.X releases, this command is available starting from the R81.10.00 version.
Description
All traffic that goes through one or more LAN ports of the appliance can be duplicated into one designated mirror port.
For example, all traffic that passes through LAN1 and LAN2 ports is duplicated into LAN5 port, which is configured as the mirror port. If an external device is connected to the mirror port, it receives all traffic that goes through LAN1/LAN2 of the appliance. This enables you to monitor traffic that goes through the appliance from the external device.
Starting from R81.10.10, this is also supported on bridge interfaces.
-
You can only configure one port to be mirrored at a time.
-
You can configure more than one port to be mirrored to the same port.
See:
-
Other "
set" commands
Syntax
|
|
Parameters
|
Parameter |
Description |
|---|---|
|
interface <LAN> |
The LAN port to be mirrored. |
|
port <LAN> |
The LAN port to which the traffic will be mirrored. |
Example Command
|
|
To see the mirror configuration
-
Run:
show interface LAN5 -
Examine these rows:
Parameter
Description
is-mirror-enabled
Indicates if this interface is used as a mirror port.
Values:
-
true -
false
mirrored-ports
List of LAN ports that are mirrored to this port.
enable-port-mirroring
Indicates if this port is mirrored to another port.
Values:
-
true- enabled -
false- disabled
-
Example:
show interface LAN5 ...(truncated for brevity)... is-mirror-enabled: true mirrored-ports: LAN1,LAN2 enable-port-mirroring: false ...(truncated for brevity)... |
LAN5 is used as the mirror port, but is not mirrored to another port.