From owner-freebsd-net@FreeBSD.ORG Sat Jan 18 12:56:24 2014 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id D755BD7E for ; Sat, 18 Jan 2014 12:56:24 +0000 (UTC) Received: from mail-ve0-x232.google.com (mail-ve0-x232.google.com [IPv6:2607:f8b0:400c:c01::232]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 92E351F01 for ; Sat, 18 Jan 2014 12:56:24 +0000 (UTC) Received: by mail-ve0-f178.google.com with SMTP id oy12so1550224veb.9 for ; Sat, 18 Jan 2014 04:56:23 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=N0tbEj2hMXTj6BvGjNg1ZKXnW1Eiwe/k0sVndGjMk2g=; b=TwrGNtHHfpJlwGOOjfnvMeqgVPEN2AMjUaJQo0B5batPmwV8ZUi8PTqHo1w68V4vVe bZ1gh8zgZILT2E32vS81vMumgCFEhlVPU1cKaPBtcyJ04hBjHTkc7Gqz/Cj8DxT2jJAO OIdr1yHXTMmhXPBlRMI7+cyC5fsmjv++uO3+t1+NuJKCa8rLQTeWIv095DWTvM/S08oa 1tZypp4jChL6WURbp2t+PcH6FY7PHSzPYZBAFd5qd6mWJVrPC9RYFH6RrDshfljZxWdC 8vA3ddsPiKQfUr54y4uu/gm78f7d10xy+N6dxaBMumXKwtgxKXOYebHL/CPbv3vjo92a 9eWw== MIME-Version: 1.0 X-Received: by 10.58.229.164 with SMTP id sr4mr2920493vec.18.1390049783632; Sat, 18 Jan 2014 04:56:23 -0800 (PST) Sender: ndenev@gmail.com Received: by 10.220.78.84 with HTTP; Sat, 18 Jan 2014 04:56:23 -0800 (PST) In-Reply-To: <77DEFAFC-6EFD-40A9-A111-2AB99BC241AF@dataix.net> References: <77DEFAFC-6EFD-40A9-A111-2AB99BC241AF@dataix.net> Date: Sat, 18 Jan 2014 12:56:23 +0000 X-Google-Sender-Auth: l_0l6GPBMrYI84yLHYkXXfK1Jjw Message-ID: Subject: Re: Port mirroring on FreeBSD From: Nikolay Denev To: Jason Hellenthal Content-Type: text/plain; charset=ISO-8859-1 Cc: "freebsd-net@freebsd.org" , Luigi Rizzo , hiren panchasara X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 18 Jan 2014 12:56:24 -0000 On Sat, Jan 18, 2014 at 7:10 AM, Jason Hellenthal wrote: > Sorry for the top post but cell phone here . . . > > Have you thought of pf with the dup-to rule ? > > Also have thoughts of cisco etherChannel > > -- > Jason Hellenthal > Voice: 95.30.17.6/616 > JJH48-ARIN > >> On Jan 18, 2014, at 1:58, hiren panchasara wrote: >> >> I have this weird requirement that I am juggling right now and I >> wanted to reach out to larger audience: >> >> In this box I have 2 dualport ixgbe 10G cards. On ingress, I want to >> get data off of 2 ports of first 10G card and lagg/lacp them into 1 >> stream of data. But for outgoing, I want to have 2 identical streams >> of data going out on 2 ports of the second 10G card. (not >> load-balancing but more of a mirroring). >> >> The reason for this is, I need to be able to provide same data to 2 >> different application hosts downstream for monitoring. Something like: >> http://www.juniper.net/techpubs/en_US/junos13.2/topics/concept/port-mirroring-ex-series.html >> >> I believe a regular switch might be perfect but for I could not find >> anything simple in FreeBSD to do that. >> >> Luigi: Can netmap/vale be helpful here? >> >> Any other pointers would be really appreciated. >> >> Cheers, >> Hiren >> _______________________________________________ >> freebsd-net@freebsd.org mailing list >> http://lists.freebsd.org/mailman/listinfo/freebsd-net >> To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" if_bridge(4) and a port in the bridge configured as "span" port with ifconfig? However I'm not sure if that's going to be fast enough for 10G, and maybe as you've mentioned Netmap might be a better solution. --Nikolay