Net Optics Director manual Create Complex Filters, Logical and filter connection

Page 33

Director

•	ip_src, ip_src_mask	IPv4 source address and mask
•	ip_dst, ip_dst_mask	IPv4 destination address and mask
•	ip6_src, ip6_src_mask	IPv6 source address and mask
•	ip6_dst, ip6_dst_mask	IPv6 destination address and mask
•	l4_src_port, l4_src_port_mask	Layer 4 source port and mask
•	l4_dst_port, l4_dst_port_mask	Layer 4 destination port and mask
•	mac_src, mac_src_mask	MAC source address and mask
•	mac_dst, mac_dst_mask	MAC destination address and mask
•	vlan	VLAN number

Create Complex Filters

Multiple filter parameters can be specified in a single filter add command. Packets must satisfy all of the filter parameters to be selected; in other words, the filter parameters have a logical AND connection.

To select all TCP traffic arriving from IP address 192.186.10.0:

1.Enter filter add in_ports=n1.5 ip_src=192.186.10.0 ip_proto=6 action=redir redir_ports=m.1. A filter has been defined to select all IPv4 TCP packets from Network Port 5 with a source IP address of 192.186.10.0; packets matching the filter are copied to Monitor Port 1.

2.Enter filter commit. The filter is activated.

Network Port 5		Source IP =		Protocol =		Monitor Port 1
Network Port 5	192.186.10.0			TCP		Monitor Port 1
	192.186.10.0			TCP

lter add in_ports=n1.5 ip_src=192.186.10.0 ip_proto=6 action=redir redir_ports=m.1

Figure 28: Logical AND filter connection

A logical OR connection can be made between filters by specifying multiple filters with the same network and monitor port lists.

To select all packets which are either TCP or UDP protocol:

1.Enter filter add in_ports=n1.5 ip_proto=6 action=redir redir_ports=m.1. A filter has been defined to select all IPv4

TCP packets from Network Port 5 and copy them to Monitor Port 1.

2.Enter filter add in_ports=n1.5 ip_proto=17 action=redir redir_ports=m.1. Another filter has been defined to select all IPv4 UDP packets from Network Port 5 and copy them to Monitor Port 1.

3.Enter filter commit. The filters are activated.

29

Image 33

Contents Data Monitoring Switch Trademarks and Copyrights Contents Chapter Chapter Configuring Filters Using the CLIAppendix a Appendix BChapter Introduction Ease of Use Key FeaturesMonitor port Filtering Passive, Secure TechnologyDescription About this GuideDirector internal architecture Director ArchitectureDirector Management USB portNetwork Links Typical ApplicationMonitoring Tools In-line Monitoring of 10 Gigabit Links 10 Gigabit in-line network connection using a network TapDirector Front Panel Power LEDsMonitor Port LEDs DNM / Network Port LEDsXFP Director Rear PanelChapter Installing Director Unpack and Inspect the Director device Plan the InstallationInstall Director Network Modules Install SFP and XFP Monitor port ModulesRack Mount the Director device Connect the local CLI Interface Connect Power to DirectorBaud Data bits No parity 1 stop bit No flow control Connect the remote CLI InterfaceTip To connect the CLI for remote use over the Management portTo log into the CLI Log into the CLIConfigure Director using the CLI Change Director PasswordTo change the login password Assign a New Manager IP Address To change the port modeTo assign a new Manager IP address to Director Change Port ModesSet the Current Date and Time Save and Load Director ConfigurationsTo view CLI help information Using the CLI Help CommandShow name show running, factory, default, or file name Using the CLI Command History BufferTo connect a Span port Connect Span Ports to DirectorTo connect an in-line network link Connect Director With In-line Network LinksConfigure a Matrix Switch connection in Director Check the InstallationConnect Monitoring Tools to Director Syntax Chapter Configuring Filters Using the CLICopy Traffic From Any Network Port to Any Monitor Port Enter filter commit. The switch connection is activatedLter add inports=n1.1 action=redir redirports=m.3-m.5 Regenerate Traffic to Any Set of Monitor PortsTo create a filter that selects IPv4 packets by protocol Create FiltersLogical and filter connection Create Complex FiltersUDP View filtersConfigurable 10 Gigabit XFP ports used as Network ports Work with configurable 10 Gigabit portsXFP Port Protocol = Monitor Port CAM Understand filter interactionsFlow diagram now looks as follows N1.1 ipproto=UDP action=drop N1.1 m.1 Exclusive filtersUnderstand pending and active filters To change the Director filter configurationFilter running command Enter filter list to view the pending filter list Inports=n1.1-n1.7 Ipproto=6 Vlan=100 Redirports=m.1-m.5,m.10 Filter capacityDaisy-chaining Multiple Director Chassis Specifications, chassis Appendix a Director SpecificationsEnvironmental Specifications, DNMCertifications Available ModelsAppendix B Command Line Interface Commit Command Sub-Command Arguments Example and descriptionFilter discard Image Quit User add name=bob pw=bob-pw priv=3 Filter parameters Vlan=128 Director Filter Parameters Qual Value Example DescriptionNum Keyword Protocol Appendix C Protocol NumbersMobile L2TP Limitations on Warranty and Liability By Net Optics, Inc. All Rights Reserved