Net Optics Director manual Monitoring Tools

Page 11

Director

In this installation, Director has ten additional Span ports and one in-line link that are available for expansion, when more links need to be monitored.

Monitoring Tools

Still referring to Figure 2, six monitoring tools are connected to Director. They include protocol and performance analyzers, RMON probes, and an intrusion detection system (IDS). Any of the monitoring tools can be used to observe any of the connected network links, and the connections can be switched easily, using the Director CLI, without ever moving a cable or touching the tools. A set of possible data flows is indicated by the colored circles on the links in the diagram.

One of the network monitoring tools is capable of handling more than 1 Gbps, so it is attached to a 10 Gigabit XFP port. Through this port, the tool can be sent aggregated traffic up to 10 Gbps. For example, the colored circles in the diagram indicate that traffic from four links is being aggregated and sent to this port.

Four streams of traffic are also being aggregated to the red monitoring tool on the upper left. Since this is a 1 Gbps Monitor port, aggregated data up to 1 Gbps can be sent to the red tool. If the aggregated traffic exceeds 1 Gbps, packets will be dropped. To avoid dropping packets, filters should be configured to reduce the aggregated traffic load to 1 Gbps or less.

The two green RMON monitoring tools at the bottom are the same type of tool. Two identical tools provide the capabil- ity of monitoring a greater amount of data than a single tool can handle. Another reason to use identical monitoring tools is to provide redundancy in case one of the tools fails. In addition, Director can be configured to send different types of traffic to each tool, for example, all the TCP traffic to one tool, and the UDP traffic to the other.

7

Image 11

Contents Data Monitoring Switch Trademarks and Copyrights Contents Appendix B Chapter Configuring Filters Using the CLIChapter Appendix aChapter Introduction Passive, Secure Technology Key FeaturesEase of Use Monitor port FilteringDescription About this GuideDirector internal architecture Director ArchitectureDirector Management USB portNetwork Links Typical ApplicationMonitoring Tools In-line Monitoring of 10 Gigabit Links 10 Gigabit in-line network connection using a network TapDNM / Network Port LEDs Power LEDsDirector Front Panel Monitor Port LEDsXFP Director Rear PanelChapter Installing Director Unpack and Inspect the Director device Plan the InstallationRack Mount the Director device Install Director Network ModulesInstall SFP and XFP Monitor port Modules Connect the local CLI Interface Connect Power to DirectorTo connect the CLI for remote use over the Management port Connect the remote CLI InterfaceBaud Data bits No parity 1 stop bit No flow control TipTo log into the CLI Log into the CLITo change the login password Configure Director using the CLIChange Director Password Change Port Modes To change the port modeAssign a New Manager IP Address To assign a new Manager IP address to DirectorSet the Current Date and Time Save and Load Director ConfigurationsTo view CLI help information Using the CLI Help CommandShow name show running, factory, default, or file name Using the CLI Command History BufferTo connect a Span port Connect Span Ports to DirectorTo connect an in-line network link Connect Director With In-line Network LinksConnect Monitoring Tools to Director Configure a Matrix Switch connection in DirectorCheck the Installation Syntax Chapter Configuring Filters Using the CLICopy Traffic From Any Network Port to Any Monitor Port Enter filter commit. The switch connection is activatedLter add inports=n1.1 action=redir redirports=m.3-m.5 Regenerate Traffic to Any Set of Monitor PortsTo create a filter that selects IPv4 packets by protocol Create FiltersLogical and filter connection Create Complex FiltersUDP View filtersConfigurable 10 Gigabit XFP ports used as Network ports Work with configurable 10 Gigabit portsXFP Port Protocol = Monitor Port CAM Understand filter interactionsFlow diagram now looks as follows N1.1 ipproto=UDP action=drop N1.1 m.1 Exclusive filtersUnderstand pending and active filters To change the Director filter configurationFilter running command Enter filter list to view the pending filter list Inports=n1.1-n1.7 Ipproto=6 Vlan=100 Redirports=m.1-m.5,m.10 Filter capacityDaisy-chaining Multiple Director Chassis Specifications, chassis Appendix a Director SpecificationsAvailable Models Specifications, DNMEnvironmental CertificationsAppendix B Command Line Interface Commit Command Sub-Command Arguments Example and descriptionFilter discard Image Quit User add name=bob pw=bob-pw priv=3 Filter parameters Vlan=128 Director Filter Parameters Qual Value Example DescriptionNum Keyword Protocol Appendix C Protocol NumbersMobile L2TP Limitations on Warranty and Liability By Net Optics, Inc. All Rights Reserved