Port monitor filter configuration
The following example shows how to create port monitor filters and apply them to a port monitor session.
Step |
Command |
---|---|
Define rule 10 for the firewall ruleset dev with the action to accept packets |
|
Identify the source subnet for rule 10 |
|
Identify the destination subnet for rule 10 |
|
Identify the protocol (UDP) that rule 10 applies to |
|
Define rule 20 for the firewall ruleset dev with the action to drop packets |
|
Define rule 30 for the firewall ruleset dev2 with the action to accept packets |
|
Identify the source subnet for rule 30 |
|
Define rule 40 for the firewall ruleset dev2 with the action to drop packets |
|
Commit the configuration |
|
Show the configuration |
|
Specify that port monitoring session 2 will use the dev ruleset to filter ingress traffic. Allowed session types are SPAN, RSPAN-source, and ERSPAN-source |
|
Specify that port monitoring session 2 will use the dev2 ruleset to filter egress traffic. Allowed session types are SPAN, RSPAN-source, and ERSPAN-source |
|
Commit the configuration |
|
Show the configuration |
|