service portmonitor session <id> filter
Specifies a filter for a port monitoring session.
- id
- The number of a session. The maximum number of sessions on the router is eight. Enter an integer from 1 to 31.
- filter-name
- The name of the firewall instance that defines the portmonitor filter rules.
Configuration mode
service {
portmonitor {
session id {
filter in string
filter out string
}
}
}
Each filter mirrors selected traffic based on the specified rules. "in" filters apply to ingress traffic, and "out" filters apply to egress traffic.
Use the set form of the command to specify an ingress or egress filter for the port monitoring session.
Use the delete form of the command to delete an ingress or egress filter for the port monitoring session.
Use the show form of the command to show the filters defined for the port monitoring session.
The following limitations apply to port monitor filter rules:
- Only stateless IPv4 packet filters are supported.
- Rules can match source IP address, destination IP address, source port, destination port, IP protocol, or DSCP.