From owner-freebsd-net@FreeBSD.ORG  Sat Jan 18 06:58:36 2014
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 415C86D2
 for <freebsd-net@freebsd.org>; Sat, 18 Jan 2014 06:58:36 +0000 (UTC)
Received: from mail-ee0-x230.google.com (mail-ee0-x230.google.com
 [IPv6:2a00:1450:4013:c00::230])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id D1672168F
 for <freebsd-net@freebsd.org>; Sat, 18 Jan 2014 06:58:35 +0000 (UTC)
Received: by mail-ee0-f48.google.com with SMTP id t10so2460599eei.7
 for <freebsd-net@freebsd.org>; Fri, 17 Jan 2014 22:58:34 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:date:message-id:subject:from:to:cc:content-type;
 bh=KRCdpCrZm0+rvwAn7BSV7G3WcDBvqvxCvL2QEDZKkbE=;
 b=ejsviESAC43CSUG8zV+dmP8TLvQKrNLiNEbb+tx2oh7aEQCbczN/HnhlqcxyaJKcUM
 xfHh4nxUux4wybRKULuCsA472dx4yOAEuYVIGfl4tJbv+vvHg4t0piDXx0GjgZNm/FSd
 VC/a5JJmmBrC1Swf8K49MOUPVQQj5Sqs1inMRtrqM3qBSPYH6AcMU4pgjWvb+dNy3nO6
 yy4SkwzuiPIhtrCrdDenB9ih/ZxunHU4fjxcmM7gg/vuUXrCZiTy2lUOavN8Sc2NplGw
 ve8hLXEpLvR9dGDkdZcF5t9NM/87dGHAT4I2MFebCCNSwjhFYCWilqdwqlF/bop++skJ
 LCkQ==
MIME-Version: 1.0
X-Received: by 10.14.149.139 with SMTP id x11mr6585814eej.35.1390028314070;
 Fri, 17 Jan 2014 22:58:34 -0800 (PST)
Received: by 10.14.2.66 with HTTP; Fri, 17 Jan 2014 22:58:33 -0800 (PST)
Date: Fri, 17 Jan 2014 22:58:33 -0800
Message-ID: <CALCpEUF8xeq4asVB5U4sAm3VfaprnGEuphH4N3QmtazFV+ZWeA@mail.gmail.com>
Subject: Port mirroring on FreeBSD
From: hiren panchasara <hiren.panchasara@gmail.com>
To: "freebsd-net@freebsd.org" <freebsd-net@freebsd.org>
Content-Type: text/plain; charset=UTF-8
Cc: Luigi Rizzo <rizzo@iet.unipi.it>
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net/>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
 <mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 18 Jan 2014 06:58:36 -0000

I have this weird requirement that I am juggling right now and I
wanted to reach out to larger audience:

In this box I have 2 dualport ixgbe 10G cards. On ingress, I want to
get data off of 2 ports of first 10G card and lagg/lacp them into 1
stream of data. But for outgoing, I want to have 2 identical streams
of data going out on 2 ports of the second 10G card. (not
load-balancing but more of a mirroring).

The reason for this is, I need to be able to provide same data to 2
different application hosts downstream for monitoring. Something like:
http://www.juniper.net/techpubs/en_US/junos13.2/topics/concept/port-mirroring-ex-series.html

I believe a regular switch might be perfect but for I could not find
anything simple in FreeBSD to do that.

Luigi: Can netmap/vale be helpful here?

Any other pointers would be really appreciated.

Cheers,
Hiren