Configuration Guide User guide
FastIron Configuration Guide 925
53-1002494-02
Chapter
25
Port mirroring and Monitoring
Table 158 lists the individual Brocade FastIron switches and the mirroring features they support.
These features are supported in the Layer 2, base Layer 3, edge Layer 3, and full Layer 3 software
images, except where explicitly noted.
NOTE
FWS, FCX, and ICX devices support only ingress VLAN-based mirroring. FSX devices support both
ingress and egress VLAN-based mirroring.
The procedures in this chapter describe how to configure port mirroring on Brocade devices.
Port mirroring and monitoring overview
Port mirroring is a method of monitoring network traffic that forwards a copy of each incoming or
outgoing packet from one port on a network switch to another port where the packet can be
analyzed. Port mirroring can be used as a diagnostic tool or debugging feature, especially for
preventing attacks. Port mirroring can be managed locally or remotely.
TABLE 158 Supported port mirroring and monitoring features
Feature FESX
FSX 800
FSX 1600
FWS FCX ICX 6610 ICX 6430
ICX 6450
Port mirroring and monitoring (mirroring
of both inbound and outbound traffic on
individual ports)
Yes Yes Yes Yes Yes
ACL-based mirroring of denied traffic Yes, on
SX-FI48GPP,
SX-FI-2XG,
SX-FI8XG,
SX-FI-24GPP,
and
SX-FI-24HF
modules
Yes Yes Yes Yes
ACL-based mirroring of permitted traffic Yes Yes Yes Yes Yes
MAC address filter-based mirroring No Yes Yes Yes Yes
VLAN-based mirroring Supported
on third
generation
SX modules
only
Yes Yes Yes Yes