Users Guide

flow-based enable

2 Dene in access-list rules that include the keyword monitor. For port monitoring, Dell Networking OS only considers trac matching

ip access-group access-list

Example of the flow-based enable Command

To view an access-list that you applied to an interface, use the show ip accounting access-list command from EXEC Privilege

mode.

Dell(conf)#monitor session 0

Dell(conf-mon-sess-0)#flow-based enable

Dell(conf)#ip access-list ext testflow

Dell(config-ext-nacl)#seq 5 permit icmp any any count bytes

monitor

Dell(config-ext-nacl)#seq 10 permit ip 102.1.1.0/24 any count bytes monitor

!

interface GigabitEthernet 1/1

ip address 10.11.1.254/24

ip access-group testflow in

shutdown

Dell(conf-if-gi-1/1)#exit

Dell(conf)#do show ip accounting access-list testflow

!

Extended Ingress IP access list testflow on GigabitEthernet 1/1

Total cam count 4

--------- ------ ----------- --------- ---- ----

0 Gi 1/1 Te 1/2 rx interface Flow-based

While local port monitoring allows you to monitor trac from one or more source ports by directing it to a destination port on the same

switch/router, remote port mirroring allows you to monitor Layer 2 and Layer 3 ingress and/or egress trac on multiple source ports on

dierent switches and forward the mirrored trac to multiple destination ports on dierent switches.

Remote port mirroring helps network administrators monitor and analyze trac to troubleshoot network problems in a time-saving and

ecient way.

In a remote-port mirroring session, monitored trac is tagged with a VLAN ID and switched on a user-dened, non-routable L2 VLAN. The

VLAN is reserved in the network to carry only mirrored trac, which is forwarded on all egress ports of the VLAN. Each intermediate