Stratix 5800 Port Mirroring

ESECOTV
18 Sept 202403:01

Summary

TLDRThis video tutorial demonstrates how to set up a SPAN (Switched Port Analyzer) port on a Stratica 5800 switch to mirror network traffic. It covers the process using both the command line interface and the web interface, with a focus on the latter. The video guides viewers through configuring a SPAN session on the web interface, selecting source and destination ports, and verifying traffic capture using Wireshark. It's a practical guide for network professionals to monitor and analyze network traffic effectively.

Takeaways

  • 🔍 Span ports, also known as port mirroring, allow traffic from one port to be copied to another for analysis.
  • 🌐 This feature is useful for capturing and analyzing network traffic, which can be sent to a network analyzer like Wireshark.
  • 💻 The demonstration uses a Stratica 5800 switch, but the process is also applicable to the Stratica 5200 model.
  • 🔌 The switch is configured for DHCP, with a default VLAN 1 and an IP address of 10.10.10.254.
  • 🛠️ Two methods are available for creating a span session on Stratica switches: via command line interface or web interface.
  • 🌐 The web interface is used in the video to create a span session, offering a user-friendly approach.
  • 🔑 Users may encounter a warning about the switch's self-signed certificate, which can be bypassed by clicking 'advanced' and then 'continue'.
  • 🔄 The process involves selecting a source port (in this case, Gigabit Ethernet 1/9) and a destination port (Gigabit Ethernet 1/3) for mirroring.
  • ✅ After configuration, applying the changes and saving is crucial to ensure the span session is active.
  • 📡 To verify the setup, traffic can be generated on the source port, and its reflection on the destination port can be observed using Wireshark.
  • ❓ For further assistance or questions, viewers are directed to contact their local ESN account manager or automation specialist.

Q & A

  • What are SPAN ports used for?

    -SPAN (Switched Port Analyzer) ports are used to mirror traffic from one or more source ports to a destination port, which can then be connected to a network analyzer for monitoring and analysis.

  • Can SPAN be set up for an entire VLAN?

    -Yes, SPAN can be configured to mirror traffic from an entire VLAN that passes through the device.

  • What is the purpose of sending mirrored traffic to a network analyzer?

    -Mirrored traffic sent to a network analyzer, such as Wireshark, allows for the capture and analysis of network traffic for troubleshooting, monitoring, and security purposes.

  • Which switch model is demonstrated in the video?

    -The video demonstrates the setup process on a Stratica 5800 switch.

  • Is it possible to create a SPAN session on a Stratica 5200 switch?

    -Yes, the process demonstrated can also be used on a Stratica 5200 switch.

  • What are the two methods to create a SPAN session on Stratica switches?

    -You can create a SPAN session on Stratica switches either via the command line interface (CLI) or through the web interface.

  • What is the default VLAN on the demonstrated Stratica 5800 switch?

    -The default VLAN on the demonstrated Stratica 5800 switch is VLAN 1.

  • What IP address is assigned to the default VLAN on the switch used in the video?

    -The IP address assigned to the default VLAN on the switch is 10.10.10.254.

  • How can you access the web interface of the Stratica 5800 switch?

    -You can access the web interface of the Stratica 5800 switch by opening a web browser and navigating to the IP address assigned to the switch.

  • What is the process to confirm if Wireshark is seeing the mirrored traffic?

    -You can confirm if Wireshark is seeing the mirrored traffic by creating some traffic on the source port, then opening Wireshark and checking if the traffic is being captured and displayed.

  • Who should you contact if you need further assistance after setting up SPAN?

    -If you need further assistance, you should reach out to your local ESN account manager or automation specialist.

Outlines

00:00

🔍 Setting Up a SPAN Session on a Switch

This paragraph discusses the setup of SPAN (Switched Port Analyzer) ports on a network device, which are used to mirror traffic from one port to another for network analysis. The video demonstrates the process using a Stratica 5800 switch, which can be done via command line interface (CLI) or web interface. The video focuses on the web interface approach. The switch used in the demonstration is configured for DHCP, with a default VLAN 1 and an IP address of 10.10.10.254. The steps include logging into the switch's web interface, navigating to the configuration, setting up SPAN, selecting the source interface (Gigabit Ethernet 1/9), choosing the destination port (Gigabit Ethernet 1/3), applying the settings, and saving the configuration. The video also mentions using Wireshark on a PC to capture and analyze the mirrored traffic from the source port.

Mindmap

Keywords

💡SPAN Ports

SPAN (Switch Port Analyzer) ports are a feature on network switches or routers that allow the traffic from one or more ports to be mirrored to another port. This is useful for network monitoring and troubleshooting. In the video, setting up SPAN ports on a Stratica 5800 is demonstrated, showing how to mirror traffic from one port to another for analysis.

💡Port Mirroring

Port mirroring is the act of copying network traffic from one port to another. It's a common practice in network management for monitoring and analyzing traffic. The video script describes the process of setting up port mirroring on a Stratica switch to capture and analyze network traffic.

💡VLAN

A VLAN (Virtual Local Area Network) is a logical grouping of devices on a network that are configured to operate as if they are on a separate physical network. In the script, it's mentioned that the switch has a default VLAN 1 set up, which is a common configuration for network segmentation.

💡Network Analyzer

A network analyzer is a tool used to examine and troubleshoot network traffic. In the context of the video, Wireshark is used as a network analyzer to capture and analyze the mirrored traffic from the SPAN port.

💡Wireshark

Wireshark is a widely used network protocol analyzer software that allows users to capture and interactively browse the traffic running on a computer network. The video demonstrates using Wireshark to monitor the traffic mirrored from one port to another.

💡Command Line Interface (CLI)

The CLI is a text-based interface used to manage and configure network devices. The script mentions that SPAN sessions can be created via the CLI, which is an alternative method to the web interface demonstrated in the video.

💡Web Interface

A web interface is a graphical user interface accessed through a web browser, used for managing network devices. The video shows the process of setting up SPAN ports using the web interface of a Stratica 5800 switch.

💡DHCP

DHCP (Dynamic Host Configuration Protocol) is a network management protocol used to dynamically assign IP addresses and other network configuration parameters to devices. The script refers to the switch being set up for DHCP, which is necessary for the laptop to communicate with the switch.

💡Gigabit Ethernet

Gigabit Ethernet is a transmission technology based on the Ethernet frame format and protocol used in local area networks (LANs), but it is capable of much higher speeds, up to 1 gigabit per second. In the video, Gigabit Ethernet ports are used as both source and destination for SPAN port configuration.

💡Self-Signed Certificate

A self-signed certificate is a digital certificate that is issued by the entity operating the website, rather than by a certificate authority. The script mentions encountering a self-signed certificate warning when accessing the switch's web interface, which is a common security feature.

💡Traffic Flow

Traffic flow refers to the movement of data packets across a network. The video demonstrates how to set up SPAN ports to monitor and analyze the traffic flow between two ports using Wireshark.

Highlights

SPAN ports, also known as Port Mirroring, allow traffic from one port to be mirrored to another.

SPAN ports can mirror traffic from an entire VLAN through a device.

The mirrored traffic can be sent to a network analyzer for analysis.

The video demonstrates setting up SPAN on a Stratica 5800 switch.

The process shown can also be applied to a Stratica 5200 switch.

Two methods for creating a SPAN session are available: command line interface and web interface.

The demonstration uses the web interface for creating a SPAN session.

The Stratica 5800 is set up for DHCP, with an IP address of 10.10.10.254.

Access the switch's IP address in a web browser to begin the configuration.

Users may encounter a self-signed certificate warning, which can be bypassed.

Log in to the switch using the credentials set during initial setup.

Navigate to the Configuration section and select SPAN to begin setup.

Choose the source interface to be mirrored, such as Gigabit Ethernet 1/9.

Select a destination port to receive the mirrored traffic, like Gigabit Ethernet 1/3.

Apply the configuration to the device and save the settings.

Connect a device to the source port to generate traffic for mirroring.

Use Wireshark on a PC to analyze the mirrored traffic from the source port.

Confirm that Wireshark is capturing the mirrored traffic from the source port.

The video concludes with a reminder to reach out for further assistance if needed.

Transcripts

play00:00

span ports also referred to as Port

play00:03

mirroring are ports on a switch or

play00:04

router that can be set up to mirror

play00:06

traffic on another Port ports are an

play00:09

entire VLAN that pass through the device

play00:12

and sends them back to a specific

play00:14

destination Port where it can be sent to

play00:16

a network analyzer in this video we'll

play00:19

go through the process using a stratic

play00:21

5800

play00:23

[Music]

play00:30

keep in mind this process can be used on

play00:33

a Strax 5200 as well to capture the

play00:36

output a network analyzer can be used in

play00:39

this case we'll be using a PC with wire

play00:41

shark installed there are two ways to

play00:44

create a span session on the newest

play00:46

generation of stratic switches you can

play00:48

enable via command line interface or via

play00:51

the web interface in this demonstration

play00:54

we're going to go through the steps to

play00:55

create a span using the web interface if

play00:58

you need steps to use the command line

play01:00

those instructions will be listed in the

play01:02

description below the stratic 5800 we

play01:05

are using as setup for dhtp so we are

play01:08

connected via the ethernet port on my

play01:10

laptop that has DHCP enabled for that

play01:13

Port this switch only has one VLAN setup

play01:16

which is the default VLAN 1 with an IP

play01:18

address of

play01:20

101010 254 so now you'll open your web

play01:24

browser and go to that address you may

play01:26

get a warning page about the switch's

play01:28

self-signed certificate if so just click

play01:31

on the advanced and then click continue

play01:33

log in using the username and password

play01:35

you set up when you initially set up the

play01:37

switch on the left side you will click

play01:40

on configuration then you're going to

play01:42

click on span and then you'll click on

play01:44

add this will bring up another window

play01:47

where we will be able to choose the

play01:49

source interfaces we will be mirroring

play01:52

in this example we will scroll down here

play01:54

to choose the interface gigabit Ethernet

play01:58

1/9 then click the arrow to the right to

play02:01

add it now go below and choose a

play02:04

destination port in this example I'm

play02:06

going to choose gigabit Ethernet 1/3 and

play02:10

click the arrow to add click apply to

play02:13

the device below and then click the save

play02:15

icon in the upper right and then click

play02:18

on okay now we can connect something on

play02:20

Port 9 and create some traffic in this

play02:23

case I'm using a second laptop now we

play02:26

can confirm if wi shark is seeing the

play02:29

traffic flow we are creating we do that

play02:31

by opening wire shark and creating some

play02:33

traffic on Port 9 by doing this we can

play02:36

see that the traffic from Port 9 is

play02:38

being captured and is mirrored to our

play02:41

destination of Port 3 thanks for

play02:43

watching and if you need further

play02:45

assistance please reach out to your

play02:46

local ESN account manager or automation

play02:49

specialist

play02:51

[Music]

関連動画をさらに表示

Using Healthscores in ACI to troubleshoot issues

NAC313 - VLAN

Applying Subnet Networks to Network Devices - CCNA 2: Day 2

How to create wifi hotspot on linux

Tutup DDOS attack dan port scaning dengan mikrotik firewall

SMT 2-6 Sniffing

Rate This

5.0 / 5 (0 votes)

Summary
Outlines
Mindmap
Keywords
Highlights
Transcripts
関連タグ
Port MirroringStrati 5800Network AnalysisWiresharkDHCP SetupWeb InterfaceVLAN ConfigurationEthernet PortTraffic CaptureNetwork Monitoring
英語で要約が必要ですか?