No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - Network Management and Monitoring

S1720, S2700, S5700, and S6720 V200R011C10

This document provides the configurations of network management and monitoring features supported by the product, including SNMP, RMON and RMON2, LLDP, Performance Management, iPCA, NQA, Service Diagnosis, Mirroring, Packet Capture, NetStream, sFlow, TWAMP Light, and NETCONF.

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Feature Limitations

Feature Limitations

Support for the mirroring function:
  • Only the S5710EI, S5700HI, S5710HI, S5720EI, S5720HI, S6700EI, S6720EI, and S6720S-EI series switches support 1:N mirroring and M:N mirroring in V200R005 and later versions.

  • All switch models support N:1 mirroring.

  • In a stack, packets can be mirrored from one member switch to another.

  • Packets mirrored to an observing port cannot be mirrored again on the same device.

    Assume that Port1 of SwitchA mirrors the received packets to the observing port Port2 of SwitchA. Because Port2 of SwitchA is connected to Port1 of SwitchB, Port1 of SwitchB also receives the mirrored packets, but does not re-mirror these packets.

  • The S5720HI does not support VLAN mirroring or MAC address mirroring. You can configure traffic mirroring with traffic classification rules VLAN ID and MAC address.

  • On the S5720HI, a physical port cannot be configured as an observing port and mirrored port simultaneously.

  • On the S1720GFR, S1720GW, S1720GWR, S1720GW-E, S1720GWR-E, S1720X, S1720X-E, S2720EI, S2750EI, S5700LI, S5700S-LI, S5710-C-LI, S5710-X-LI, S5700SI, S5720LI, S5720S-LI, S5720SI, S5720S-SI, S5730SI, S5730S-EI, S6720LI, S6720S-LI, S6720SI, and S6720S-SI, a physical port cannot be configured as an observing port and outbound mirrored port simultaneously.

  • On the S5710EI, S5700HI, S5710HI, S6700EI, S5720HI, S5720EI, S6720EI, and S6720S-EI running V200R005 or a later version, an Eth-Trunk can function as an observing port. In a stack, Eth-Trunk member ports can be located on different member switches.
Notes about mirroring of outbound packets:
  • VLAN mirroring and MAC address mirroring do not apply to outbound packets.

  • For the S6720EI and S6720S-EI, outbound traffic mirroring only copies known unicast packets.

  • On switches of versions earlier than V200R005, as well as S5700EI, S6700EI, S6720S-EI, and S6720EI of V200R005 and later versions, the copy of outbound packets may be different from the original packets because the mirroring operation is performed before other forwarding operations on the original packets. For example, if the DSCP value of the original packets needs to be changed, the copied packets are different from the original packets because they have been copied to the observing port before the change.

  • On a switch that supports outbound mirroring (except S5720EI and S5720HI), outbound mirroring conflicts with other traffic behaviors. That is, after outbound mirroring is configured on a port, other traffic behaviors cannot be configured on the port.

Other configuration guidelines:
  • An observing port is dedicated to forwarding mirrored traffic. Do not configure other services on an observing port; otherwise, mirrored traffic and other service traffic interfere with each other. Do not configure any member port of an Eth-Trunk as an observing port. If you must do so, ensure that the bandwidth of service traffic on this port and the bandwidth occupied by the mirrored traffic do not exceed the bandwidth limit of the port.

  • If the mirroring function is deployed on many ports of a device, a great deal of internal forwarding bandwidth will be occupied, which affects the forwarding of other services. Additionally, if the mirrored port bandwidth is higher than the observing port bandwidth, for example, 1000 Mbit/s on a mirrored port and 100 Mbit/s on an observing port, the observing port will fail to forward all mirrored packets in a timely manner because of insufficient bandwidth, leading to packet loss.

  • When configuring Layer 2 remote mirroring, you are advised not to perform other service configurations in the VLAN associated with the observing port, that is, the VLAN used to transmit mirrored packets to the monitoring device. On the intermediate device between the observing port and monitoring device, run the mac-address learning disable command in the VLAN associated with the observing port to disable MAC address learning, and run the undo mac-address vlan vlan-id command in the system view to delete all MAC address entries in this VLAN.

  • If both port mirroring and traffic mirroring are configured simultaneously for the same packets on the S1720GFR, S1720GW, S1720GWR, S1720GW-E, S1720GWR-E, S1720X, S1720X-E, S2720EI, S2750EI, S5700LI, S5700S-LI, S5710-C-LI, S5710-X-LI, S5700SI, S5720LI, S5720S-LI, S5720SI, S5720S-SI, S5730SI, S5730S-EI, S6720LI, S6720S-LI, S6720SI, and S6720S-SI, port mirroring takes effect. On other switch models, traffic mirroring takes precedence over port mirroring.

  • For the S1720GFR, S1720GW, S1720GWR, S1720GW-E, S1720GWR-E, S1720X, S1720X-E, S2720EI, S2750EI, S5700LI, S5700S-LI, S5710-C-LI, S5710-X-LI, S5700SI, S5720LI, S5720S-LI, S5720SI, S5720S-SI, S5730SI, S5730S-EI, S6720LI, S6720S-LI, S6720SI, and S6720S-SI, if N:1 mirroring or multiple 1:1 mirroring configurations are implemented, mirrored packets may be lost.
  • An observing port in blocked state can still forward mirrored packets.

  • During the traffic mirroring configuration, the deny parameter cannot be configured in the ACL referenced in a traffic classifier. Otherwise, the packets matching the deny parameter can still be mirrored, but the original packets will be discarded. Therefore, to mirror only the specified service packets, set the permit parameter in all ACL rules.

  • If remote port mirroring is configured, the switches through which the mirrored traffic passes perform STP calculation on the mirrorred BPDUs, resulting in an STP convergence exception.

Translation
Download
Updated: 2020-02-06

Document ID: EDOC1000178174

Views: 207405

Downloads: 825

Average rating:
This Document Applies to these Products

Related Version

Related Documents

Share
Previous Next