Setup Guide
1 Enable control plane egress acl using the following command:
mac control-plane egress-acl
2 Create an extended MAC access list and add a deny rule of (0x0180c2xxxxxx) packets using the following commands:
mac access-list extended mac2
seq 5 deny any 01:80:c2:00:00:00 00:00:00:ff:ff:ff count
3 Apply ACL on that RPM VLAN. In this example RPM vlan is 10.
DellEMC#show running-config interface vlan 10
!
interface Vlan 10
no ip address
mode remote-port-mirroring
tagged Port-channel 2
mac access-group mac2 out
no shutdown
4 Create Source RPM session as follows (port-channel 1 and port-channel 2 are LACP).
DellEMC(conf)#monitor session 1 type rpm
DellEMC(conf-mon-sess-1)#source port-channel 1 destination remote-vlan 10 dir rx
DellEMC(conf-mon-sess-1)#no disable
5 Show the output for the LACP.
DellEMC#show interfaces port-channel brief
Codes: L - LACP Port-channel
O - OpenFlow Controller Port-channel
LAG Mode Status Uptime Ports
L1 L3 up 00:01:17 Gi 1/4 (Up)
L2 L2 up 00:00:58 Gi 1/5 (Up)
DellEMC#
Encapsulated Remote Port Monitoring
Encapsulated Remote Port Monitoring (ERPM) copies trac from source ports/port-channels or source VLANs and forwards the trac
using routable GRE-encapsulated packets to the destination IP address specied in the session.
NOTE
:
When conguring ERPM, follow these guidelines
• The Dell EMC Networking OS supports ERPM source session only. Encapsulated packets terminate at the destination IP address or
at the analyzer.
• You can congure up to four ERPM source sessions on switch.
• Congure the system MTU to accommodate the increased size of the ERPM mirrored packet.
• The maximum number of source ports you can dene in a session is 128.
• The system encapsulates the complete ingress or egress data under GRE header, IP header, and outer MAC header and sends it
out at the next hop interface as pointed by the routing table.
• Specify flow-based enable in case of source as VLAN or where you need monitoring on a per-ow basis.
• Specify the monitor keyword in the access list rules for which you want to mirror.
• The system allows you to congure up to four ERPM sessions.
• ERPM sessions do not copy locally sourced remote VLAN trac from source trunk ports that carry RPM VLANs. ERPM sessions
do not copy locally sourced ERPM GRE-encapsulated trac from source ports.
• Flow-based mirroring is supported only for source VLAN ingress trac.
Changes to Default Behavior
• Rate-limiting is supported for the ERSPAN trac.
• You can congure the same port as both source and destination in an ERSPAN session.
• You can congure TTL and TOS values in the IP header of the ERSPAN trac.
Conguration steps for ERPM
Port Monitoring
617