© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The ProCurve 3500yl/5400zl/6200yl.

Slides:



Advertisements
Similar presentations
Access Control List (ACL)
Advertisements

Mitigating Layer 2 Attacks
LAN Segmentation Virtual LAN (VLAN).
Chapter 3: Link Aggregation
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Implement Inter- VLAN Routing LAN Switching and Wireless – Chapter 6.
RIP V1 W.lilakiatsakun.
Virtual LANs.
Chapter 9: Access Control Lists
VLAN KRISHNAKUMAR RAJENDRAN NIKITA PATEL TEJENDRA PATEL Guided by Prof, Edmund Gean.
Switching Topic 4 Inter-VLAN routing. Agenda Routing process Routing VLANs – Traditional model – Router-on-a-stick – Multilayer switches EtherChannel.
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—4-1 Managing IP Traffic with ACLs Configuring IP ACLs.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 VLANs LAN Switching and Wireless – Chapter 3.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 W. Schulte Chapter 5: Inter-VLAN Routing Routing And Switching.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 5: Inter-VLAN Routing Routing & Switching.
VLANs (Virtual LANs) CS 158B Elaine Lim Allison Nham.
Year 2 - Chapter 6/Cisco 3 - Module 6 ACLs. Objectives  Define and describe the purpose and operation of ACLs  Explain the processes involved in testing.
Implementing Standard and Extended Access Control List (ACL) in Cisco Routers.
(part 3).  Switches, also known as switching hubs, have become an increasingly important part of our networking today, because when working with hubs,
VLANs.ppt CCNA Exploration Semester 3 Chapter 3
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 5: Inter-VLAN Routing Routing And Switching.
© 2006 Cisco Systems, Inc. All rights reserved. Network Security 2 Module 8 – PIX Security Appliance Contexts, Failover, and Management.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 9: Access Control Lists Routing & Switching.
Access Control List ACL. Access Control List ACL.
VLAN V irtual L ocal A rea N etwork VLAN Network performance is a key factor in the productivity of an organization. One of the technologies used to.
Access Control Lists (ACLs)
Access Control List (ACL) W.lilakiatsakun. ACL Fundamental ► Introduction to ACLs ► How ACLs work ► Creating ACLs ► The function of a wildcard mask.
CCNA 3 Week 9 VLAN Trunking. Copyright © 2005 University of Bolton Origins Dates back to radio and telephone Trunk carries multiple channels over a single.
Page 1 Access Lists Lecture 7 Hassan Shuja 04/25/2006.
Access Control List ACL’s 5/26/ What Is an ACL? An ACL is a sequential collection of permit or deny statements that apply to addresses or upper-layer.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicITE I Chapter 6 1 Filtering Traffic Using Access Control Lists Introducing Routing and Switching.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Filtering Traffic Using Access Control Lists Introducing Routing and Switching.
Verify that timestamps for debugging and logging messages has been enabled. Verify the severity level of events that are being captured. Verify that the.
The University of Bolton School of Games Computing & Creative Technologies LCT2516 Network Architecture CCNA Exploration LAN Switching and Wireless Chapter.
Switch Features Most enterprise-capable switches have a number of features that make the switch attractive for large organizations. The following is a.
Managing Networks and Network Devices
Chapter 3 - VLANs. VLANs Logical grouping of devices or users Configuration done at switch via software Not standardized – proprietary software from vendor.
The University of Bolton School of Games Computing & Creative Technologies LCT2516 Network Architecture CCNA Exploration LAN Switching and Wireless Chapter.
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 9: Access Control Lists Routing & Switching.
HP Hybrid Switches. HP OpenFlow Enabled Switches OF Firmware for Existing Procurve Switches – 5406zl, 5412zl, 3500yl and 6600 – Supports OpenFlow 1.0.
Switching Topic 2 VLANs.
Virtual Local Area Networks (VLANs) Part II
W&L Page 1 CCNA CCNA Training 2.5 Describe how VLANs create logically separate networks and the need for routing between them Jose Luis.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco Public 1 Version 4.0 Filtering Traffic Using Access Control Lists Introducing Routing and Switching.
+ Routing Concepts 1 st semester Objectives  Describe the primary functions and features of a router.  Explain how routers use information.
LAN Switching Virtual LANs. Virtual LAN Concepts A LAN includes all devices in the same broadcast domain. A broadcast domain includes the set of all LAN-connected.
Network Troubleshooting CT NWT NameTP No. Gan Pei ShanTP Tan Ming FattTP Elamparithi A/L ThuraisamyTP Tan Ken SingTP
Virtual Local Area Networks In Security By Mark Reed.
25/09/ Firewall, IDS & IPS basics. Summary Firewalls Intrusion detection system Intrusion prevention system.
Instructor Materials Chapter 2: Scaling VLANs
InterVLAN Routing 1. InterVLAN Routing 2. Multilayer Switching.
Instructor Materials Chapter 7: EIGRP Tuning and Troubleshooting
Instructor Materials Chapter 5: Network Security and Monitoring
Instructor Materials Chapter 7: Access Control Lists
Switching and VLANs.
Switching and VLANs.
Instructor Materials Chapter 6: VLANs
Welcome! Thank you for joining us. We’ll get started in a few minutes.
Chapter 5: Inter-VLAN Routing
1Y0-253 Exam Implementing Citrix NetScaler 10.5 for App and Desktop Solutions
Chapter 2: Scaling VLANs
Chapter 5: Network Security and Monitoring
Chapter 4: Access Control Lists (ACLs)
Implement Inter-VLAN Routing
Routing and Switching Essentials v6.0
Chapter 4: Access Control Lists
Switching and VLANs.
Switching and VLANs.
Implement Inter-VLAN Routing
Chapter 2: Scaling VLANs
Implement Inter-VLAN Routing
Presentation transcript:

© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The ProCurve 3500yl/5400zl/6200yl Switch Software Update NPI Technical Training NPI Technical Training Version 1.0b 6 December 2006

© 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. Traffic Mirroring Section

3 Traffic Mirroring Allows you to monitor traffic to detect threats or troubleshoot problems Advantages Allows you to monitor traffic from the local switch or from multiple remote switches Eliminates the need for a monitoring port on every switch Reduces the number of necessary security appliances Network Stations 5400zl Switch 3500yl Switch IDS/IPS* Traffic is selected based on port, VLAN, or ACL. Selected traffic is mirrored to another switch. Destination switch forwards mirrored traffic to IDS/IPS. *Intrusion detection system (IDS)/ Intrusion prevention system (IPS)

4 Remote Traffic Mirroring Allows you to monitor traffic to detect threats or troubleshoot problems from across the network and bring information back to the analyzer. Network Stations 5400zl Switch 3500yl Switch IDS/IPS* *Intrusion detection system (IDS)/ Intrusion prevention system (IPS)

5 Guidelines for Using Traffic Mirroring Two types of traffic mirroring: Local mirroring—source and destination are on the same switch Remote mirroring—source and destination are on different switches Each switch can be the: Originator for four mirror sessions, with the destination on either the local switch or another switch Destination for 32 mirror sessions Network 5400zl Switch 3500yl Switch IPS/IDS Four mirror sessions originate on the local 5400zl Switch. The 3500yl Switch can receive up to 28 additional mirror sessions.

6 Guidelines for Using Traffic Mirroring Continued For local mirroring, configure exit ports: Configure multiple mirror sessions to use the same exit port Load balance mirror sessions across multiple exit ports Core IDS/IPS

7 Overview of Configuration Steps 1. Configure the destination switch for remote traffic mirroring. 2. Configure the source switch. Define the session number and the destination for the mirror session on the source switch. – Local traffic mirroring—port on the same switch – Remote traffic mirroring—another 3500yl, 5400zl, or 6200yl Switch Define the source interface and the direction of traffic – Ports, including mesh ports – Static trunks – Static virtual LANs (VLANs) – Direction of traffic—inbound, outbound, or both directions Apply an optional Access Control List (ACL) to further select traffic. – Select inbound traffic on the source interface with an extended or standard ACL

8 Overview of Configuration Steps 3.For remote traffic mirroring, enable jumbo frames to mirror information fields larger than 1446 bytes (untagged) or (tagged) On both source and destination switches Any infrastructure switches in between The end stations, in this case the IPS/IDS if you know the originating frame was larger than 1522 bytes. 5400zl Switch 3500yl Switch IPS/IDS Mirror session originates on the local 5400zl Switch. The destination is on the remote 3500yl Switch. ProCurve (config)# vlan jumbo

9 Configuring the Destination Switch 1.For remote traffic mirroring, configure the source and destination of the mirror session on the destination switch ProCurve_dst_switch(config)# mirror endpoint ip port Options IP address of the VLAN or subnet on which the mirrored traffic enters or leaves the source switch The unique UDP port number to use for the session IP address of the VLAN or subnet for the exit port on the destination switch Exit port on the destination switch These settings must match the settings you will configure on the source switch.

10 Configuring the Source Switch Remote traffic mirroring 2.Configure the source switch —For remote traffic mirroring, identify the mirror session, the source, and the destination. – Replace with the number to identify this mirror session. – Assign an optional name if you want an easier way to identify the session. – Ensure the other settings match those configured on the destination switch. ProCurve_source_switch(config)# mirror [name ] remote ip

11 Configuring the Source Switch Local traffic mirroring For local traffic mirroring, identify the session and configure the exit port ProCurve_source_switch(config)# mirror [name ] port Core IPS/IDS Exit port is port 8.

12 Configuring the Source Switch Define the originating interface Define the originating interface as a port, trunk, or mesh port ProCurve_source_switch(config)# interface monitor all [in | out | both] mirror [mirror...] Options Port, trunk, or mesh [in | out | both]Direction of traffic that you want mirrored: in = traffic entering port out = traffic exiting port both = all traffic Number for this mirror session

13 Define the originating interface as a VLAN or VLANs – Replace with a VLAN or a range or VLANs. ProCurve_source_switch(config)# vlan monitor all [in | out | both] mirror [mirror...] Configuring the Source Switch Select the originating interface 5400zl Switch Network VLAN 1 VLAN 2

14 Using an ACL to Further Select Traffic Optional To use an ACL to select traffic arriving on an interface, enter: – Replace with the name of the ACL you have configured. ProCurve_source_switch(config)# interface monitor ip access-group in mirror [mirror...] ProCurve_source_switch(config)# vlan monitor ip access-group in mirror [mirror...]

15 Enabling Jumbo Frames 3.For remote traffic mirroring, enable jumbo frames on the source switch, destination switch, and any intervening infrastructure switches For example: ProCurve_Source (config)# vlan 8 jumbo ProCurve_Destination (config)# vlan 8 jumbo ProCurve_Infrastructure (config)# vlan 8 jumbo

16 Traffic Mirroring show Commands View information about mirror sessions configured on the switch ProCurve# show monitor [ ] Network Monitoring SessionsStatus Type Sources active port 1 2 active IPv4 3 3 active port 1 4 Inactive Mirror endpoint Type Dest Address Source Address UDP Src UDP Dst Port IPv A17 Port = local mirror session IPv4 = remote mirror session Indicates # of criteria for mirror session

17 Example Configuration Source Switch Destination Switch IPS/IDS Running configuration: !Dst switch! vlan 8 untagged 1-5 ip address jumbo exit mirror endpoint ip port 22 Running configuration: !Source switch! vlan 8 untagged B1-B24 ip address jumbo exit mirror 1 remote ip interface B1 monitor all both mirror 1 exit interface B2 monitor all both mirror 1 exit Originating interface

18

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.