No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Configuration Guide - Network Management and Monitoring

CloudEngine 12800 and 12800E V200R005C10

This document describes the configurations of Network Management and Monitoring, including SNMP, RMON, LLDP, NQA, Service Diagnosis, Mirroring, Packet Capture, sFlow, and NETCONF.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Enabling Intelligent Traffic Analysis for TCP Flows

Enabling Intelligent Traffic Analysis for TCP Flows

Prerequisites

An ACL has been created using the acl (system view) command before intelligent traffic analysis for TCP flows is enabled. Currently, only some advanced ACL rules are supported. The ACL rules that are not supported cannot be delivered, and the TAP cannot receive service flows that match unsupported ACL rules. The following rules are supported:
  • Rule 1: TCP + destination IPv4 address
  • Rule 2: TCP + destination IPv4 address + destination TCP port number
  • Rule 3: TCP + source IPv4 address + destination IPv4 address
  • Rule 4: TCP + source IPv4 address + destination IPv4 address + destination TCP port number
NOTE:

In intelligent traffic analysis for TCP flows, the deny or permit action specified in an ACL rule does not take effect. As long as service flows match the preceding advanced ACL rules, they are sent to the TAP for processing.

Context

You can configure intelligent traffic analysis for TCP flows on the switch and deliver ACL rules to match service flows to be detected. The matched service flows are sent to the TAP for in-depth analysis so that the switch can obtain data about high-precision performance indicators. This function helps you monitor specified service flows in real time and locate faults quickly and accurately.

Because a built-in chip of a card functions as the TAP in the intelligent traffic analysis system, you must enable the enhanced mode of the card before configuring intelligent traffic analysis.

Intelligent traffic analysis for TCP flows allows the switch to create flow tables and analyze common IPv4 TCP packets and inner IPv4 TCP packets encapsulated in IPv4 VXLAN packets on all inbound interfaces. You can enable intelligent traffic analysis for common IPv4 TCP packets or inner IPv4 TCP packets encapsulated in VXLAN packets based on the actual networking.

Procedure

  1. Run system-view

    The system view is displayed.

  2. Run assign forward enp netstream enableslot{ slot-id | all }

    The enhanced mode of a card is enabled.

    By default, a card works in non-enhanced mode.

    NOTE:

    The configuration takes effect only after the card is restarted.

  3. Enable intelligent traffic analysis for TCP flows.

    • Enable intelligent traffic analysis for common IPv4 TCP packets.

      1. Run system-view

        The system view is displayed.

      2. Run traffic-analysistcpaclacl-numberinbound

        Intelligent traffic analysis is enabled for common IPv4 TCP packets globally and the switch is configured to sample common IPv4 TCP packets on all inbound interfaces.

        By default, intelligent traffic analysis for common IPv4 TCP packets is disabled.

      3. Run commit

        The configuration is committed.

    • Enable intelligent traffic analysis for inner IPv4 TCP packets encapsulated in VXLAN packets.

      1. Run system-view

        The system view is displayed.

      2. Run traffic-analysis tcp vxlan tag-format { none | single } acl acl-number inbound

        Intelligent traffic analysis is enabled for inner IPv4 TCP packets encapsulated in VXLAN packets globally and the switch is configured to sample inner IPv4 TCP packets in VXLAN packets on all inbound interfaces.

        By default, intelligent traffic analysis for inner IPv4 TCP packets encapsulated in VXLAN packets is disabled.

        NOTE:
        • When the CE12800E configured with FD-X series cards functions as a VTEP of a VXLAN tunnel, the switch cannot accurately match or filter untagged or single-tagged inner packets in VXLAN packets based on the tag-format { none | single } parameter specified in the traffic-analysis acl inbound command.
        • When the CE12800E configured with FD-X series cards functions as a transparent transmission node of a VXLAN tunnel, intelligent traffic analysis cannot be enabled for inner IPv4 TCP packets encapsulated in VXLAN packets.
      3. Run commit

        The configuration is committed.

Translation
Download
Updated: 2019-04-20

Document ID: EDOC1100075344

Views: 29386

Downloads: 29

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next