Dell Networking SONiC - 流量型鏡像

設定鏡像會話 

show running-configuration mirror-session
!
mirror-session 2
destination CPU direction both

設定名為 TEST 的存取清單

show running-configuration ip access-list TEST
!
ip access-list TEST
seq 10 permit ip any host 10.0.20.1 << in current case we would copy traffic with src any to dst 10.0.20.1 to CPU , additional port filters could be applied here.

設定名為 FLOW-MAP 的類別對應

show running-configuration class-map FLOW-MAP
!
class-map FLOW-MAP match-type acl
 match access-group ip TEST

設定原則對應流程原則

show running-configuration policy-map FLOW-POLICY
!
policy-map FLOW-POLICY type monitoring
class FLOW-MAP priority 99
  set mirror-session 2

將原則對應套用至實體介面乙太網路 6

show running-configuration interface Ethernet 6
!
interface Ethernet6
service-policy type monitoring in FLOW-POLICY 

現在，我們可以在套用上述 cfg 的傳輸交換器上執行 tcpdump，並查看封包/其內容。

DELLSONiC# exit 
admin@DELLSONiC:~$ sudo tcpdump -i any host 10.0.20.1