GigaVUE-420. User s Guide. Software Version 4.0

(1)

GigaVUE-420

User’s Guide

Software Version 4.0

(2)

COPYRIGHT

© 2006-2008 Gigamon Systems LLC. All Rights Reserved. No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language in any form or by any means without the written permission of Gigamon Systems, LLC.

TRADEMARK ATTRIBUTIONS

Gigamon, Gigamon Systems, GigaVUE-420, and GigaVUE-MP are registered trademarks or trademarks of Gigamon Systems, LLC. All other registered and unregistered trademarks herein are the sole property of their respective owners.

(3)

3

About This Guide . . . 13

Audience of this Guide . . . 13

How To Use This Guide . . . 14

Conventions Used in this Guide . . . 16

Product Naming Conventions . . . 16

GigaVUE-420 Models . . . 17

Other Sources of Information . . . 18

Contacting Customer Support . . . 19

Contacting Sales . . . 20

Chapter 1 Introducing GigaVUE-420 4.0 . . . 21

GigaVUE-420 Overview . . . 21

GigaVUE-420 Features and Benefits . . . 22

GigaVUE-420 Chassis . . . 25

GigaVUE-420 Chassis – Front View (Copper and Optical). . . 26

GigaVUE-420 Chassis – Rear View (AC and DC). . . 26

GigaVUE-420 vs. the GigaVUE-MP. . . 28

Differences in Hardware Features . . . 28

GigaVUE-420 – Front View . . . 29

GigaVUE-MP – Front View . . . 29

(4)

GigaVUE-MP – Rear View . . . 30

Differences in Software Features . . . 31

Differences in Maps and Filters. . . 31

Differences in Restrictions on Legacy Commands. . . 34

Differences in Stacking Commands for 10 Gb Ports . . . 35

Differences in Port-Stat Counters . . . 35

Differences in Mgmt Port . . . 36

New Features in GigaVUE-420 v4.0 . . . 37

System Management Features . . . 37

Filter and Map-Rule Features . . . 39

Traffic Distribution Features . . . 41

GigaVUE-420 Specifications . . . 42

GigaVUE-420 Physical Dimensions and Weight . . . 42

Power Requirements . . . 42

Environmental Specifications . . . 43

Chapter 2 Updating the GigaVUE-420 . . . 45

Chapter 3 Getting Started with GigaVUE-420: A Roadmap . 47

First Steps – Getting Connected and into the CLI . . . 48

Next Steps . . . 49

Chapter 4 Rack-Mounting the GigaVUE-420 . . . 51

Unpacking GigaVUE-420 . . . 51

Rack-Mounting the GigaVUE-420 . . . 52

Safety Precautions . . . 52

Rack Mounting Hardware . . . 53

Four-Point Mounting in Four-Post Racks . . . 54

Center-Mounting in Two-Post Racks . . . 56

Chapter 5 Connecting the GigaVUE-420 . . . 59

Basic GigaVUE-420 Connections . . . 59

(5)

Contents 5

GigaTAP-Sx/GigaTAP-Lx/GigaTAP-Zx Modules . . . 67

GigaTAP-Tx Module . . . 68

Passive Mode vs. Active Mode . . . 68

Configuring Tap Connections . . . 69

GigaLINK Modules (CU and XR) . . . 73

Using Modules – Best Practices . . . 74

Traffic Distribution and Replacing Modules . . . 75

Chapter 6 Getting Started in the Command Line Interface . . 79

Establishing a Configuration Session with GigaVUE-420 . . . 79

Local Connections to the Console Port using the Console Cable . . . 80

Remote Connections to the Mgmt Port . . . 82

Configuring the Mgmt Port’s Network Settings. . . 82

SSH2 vs. Telnet. . . 86

Command Line Basics . . . 91

The CLI Prompt . . . 91

Getting Help in the Command Line Interface . . . 91

Command Line Syntax – Entering Commands . . . 92

Command Structure . . . 93

The Basic Commands. . . 94

Completing the Initial GigaVUE-420 Setup . . . 95

Initial User Account Configuration (Optional) . . . 96

Configuring the GigaVUE-420 Name and Date . . . 98

Configuring GigaVUE-420 Time Options . . . 99

Setting Time Manually . . . 99

Setting Time from an SNTP Server . . . 99

Using Automatic Daylight Savings Time Adjustments. . . 100

Using a Custom Login Banner . . . 102

Saving Changes . . . 104

Chapter 7 Stacking GigaVUE-420 Boxes . . . 105

About Cross-Box Configurations . . . 106

About GigaVUE-420 10 Gb Stacking Ports . . . 108

Creating Cross-Box Stacks: A Roadmap . . . 109

Stacking Rules . . . 110

Planning the Stack . . . 110

(6)

Create the Stack Map . . . 111

Create the Configuration Plans . . . 113

Configuring a Box’s Stacking Information . . . 114

Assigning Box IDs: config system bid . . . 116

Designating Stacking Ports: config port-type . . . 116

Specifying Neighbor Boxes: config system x1_bid/x2_bid . . . 117

Sample Commands . . . 117

Configuring Cable Lengths (GigaLINK-CU Stacking Ports) . . . 118

Activating Stacking Ports: config system active_link . . . 119

Stack Examples: CLI Commands . . . 119

Example: Two-Box Cross-Box Stack . . . 120

Example: Cross-Box Stack with Four Systems . . . 121

Making Physical Connections . . . 122

Verifying a Cross-Box Stack’s Connectivity . . . 122

Check the show diag Output. . . 122

Set Up Cross-Box Connections . . . 124

Configuring Cross-Box Packet Distribution. . . 125

Troubleshooting Cross-Box Stacks . . . 125

Making Changes to an Existing Cross-Box Stack . . . 127

Adding a Box to the Edge of a Stack . . . 127

Remove a Box from the Edge of a Stack . . . 128

Adding a Box to the Middle of a Stack . . . 128

Disconnect a Box in the Middle of a Stack . . . 129

Power Loss Considerations for Cross-Box Stacks . . . 131

Power Loss on Box in the Middle of a Stack . . . 131

Power Loss and Power Restore to the Entire Stack . . . 131

Chapter 8 Configuring GigaVUE-420 Security Options . . . 133

About GigaVUE-420 Security . . . 134

Configuring Users and Passwords . . . 135

Examples . . . 137

Changing Passwords . . . 137

Maximum Simultaneous Sessions . . . 138

(7)

Contents 7

Configuring Authentication (AAA). . . 143

Authentication Options . . . 144

Syntax for the config system aaa Command . . . 146

Examples. . . 147

Using GigaVUE-420 with an External Authentication Server . . . 148

Specifying TACACS+ Servers in GigaVUE-420 . . . 149

Specifying RADIUS Servers in GigaVUE-420 . . . 152

Setting up GigaVUE-420 Users in an External Authentication Server . . . 156

Differences in Commands for External and Local Users . . . 164

Chapter 9 Using SNMP . . . 165

Configuring SNMP Traps . . . 166

Adding a Destination for SNMP Traps . . . 167

Example – Adding SNMP Trap Destinations . . . 167

Enabling GigaVUE-420 Events for SNMP Traps . . . 169

Example – All Trap Events Enabled . . . 171

Receiving Traps . . . 172

Enabling GigaVUE-420’s SNMP Server . . . 172

Chapter 10 Using Configuration Files . . . 175

What’s Saved In a Configuration File . . . 176

Saving a Configuration File . . . 177

Viewing the Contents of a Configuration File . . . 179

Storing Configuration Files on a TFTP Server . . . 179

Uploading a Configuration File to a TFP Server . . . 179

Downloading a Configuration File from a TFTP Server . . . 180

Applying Configuration Files. . . 180

Applying a Configuration File from Flash . . . 181

Setting a Configuration File to Boot Next . . . 182

Restoring Configuration Files in a Cross-Box Stack . . . 183

Chapter 11 Configuring Logging . . . 185

Configuring Logging – A Roadmap . . . 186

Specifying Which Events Are Logged . . . 186

(8)

Specifying an External Syslog Server . . . 188

Packet Format for Syslog Output . . . 189

Viewing Log Files . . . 190

Uploading Log Files for Troubleshooting . . . 192

Example – Saving a Log File to a Spreadsheet . . . 192

Chapter 12 Introducing Packet Distribution . . . 197

About Packet Distribution . . . 198

About Network and Tool Ports . . . 198

Designating a Port’s port-type. . . 199

Packet Distribution Illustrated . . . 200

About Single-Box and Cross-Box Distribution . . . 201

Cross-Box Commands: Enter All Commands on All Boxes . . . 202

Getting Started with Packet Distribution . . . 203

Example – Designating and Connecting Tool Ports . . . 205

Connecting vs. Mapping – The Differences . . . 208

About Connections . . . 208

Connection Examples . . . 208

About Maps . . . 209

Map Example . . . 211

Combining Pass-All with Connections and Maps . . . 213

Sharing Network and Tool Ports . . . 214

Chapter 13 Connections, Filters, and Pass-Alls . . . 215

Cross-Box Config: Enter Commands on All Boxes . . . 216

Connecting Network Ports to Tool Ports . . . 216

Connection Syntax . . . 216

Showing Connections . . . 217

Deleting Connections . . . 218

Using Filters with Connections . . . 219

Using Filters – Procedure . . . 220

Pre-Filters vs. Post-Filters . . . 220

Example: When to Use Pre-Filters and Post-Filters . . . 220

(9)

Contents 9

Combining Filters and Filter Logic . . . 235

Examples of Filter Logic . . . 235

Working with User-Defined Pattern Match Filters . . . 237

User-Defined Pattern Match Syntax . . . 238

User-Defined Pattern Match Rules . . . 239

User-Defined Pattern Match Examples . . . 241

Mixing Allow and Deny Filters . . . 242

Showing Filters . . . 243

Deleting Filters . . . 244

Filter Examples . . . 245

Filtering on RTP Traffic . . . 245

MAC Address Filter Examples . . . 246

Example 1 – Deny Filter . . . 246

Example 2 – Allow Filter . . . 247

Example 3 – Deny Filter . . . 247

Example 4 – Denying Odd-Numbered MAC Addresses . . . 248

Example 5 – Allowing Odd-Numbered MAC Addresses . . . 249

Using the Pass-All Command. . . 250

Syntax for config pass-all . . . 250

Rules for config pass-all . . . 252

Maximum Number of Pass-All Destinations . . . 252

Pass-All Matrix. . . 253

Filters and the config pass-all Command . . . 254

Examples for config pass-all . . . 256

Illustration of Pass-Alls in the Show Connect Screen . . . 260

Chapter 14 Working with Maps (Single-Box and Cross-Box) . . .

263

Cross-Box Config: Enter Commands on All Boxes . . . 264

Mapping Network Ports to Tool Ports . . . 264

Creating Maps: config map/config xbmap . . . 266

Single-Tool Maps vs. Multi-Tool Maps . . . 267

Syntax for the config map / config xbmap Commands . . . 270

Creating Map-Rules: config map-rule . . . 271

How GigaVUE-420 Processes Map-Rules . . . 271

Syntax for the config map-rule Command . . . 271

Binding Maps to Ports: config mapping / config xbmapping . . . 273

(10)

Syntax for config mapping /config xbmapping. . . 273

Showing Maps . . . 275

Changing Maps . . . 277

Adding Map-Rules to Single-Box/Cross-Box Maps . . . 277

Deleting a Map-Rule from Single-Box/Cross-Box Maps . . . 278

Deleting a Single-Box Mapping. . . 278

Deleting a Single-Box/Cross-Box Map . . . 279

Combining Pass-All with Maps . . . 280

Map-Rule Priority and Guidelines. . . 280

Map Creation Guidelines . . . 281

Map Examples . . . 282

Map Example – Selectively Forwarding VLAN Ranges . . . 282

What this Map Will Do. . . 283

Commands to Create this Map . . . 284

Showing the Map in the CLI . . . 285

Map Illustration . . . 286

Map Example – Single-Tool vs. Multi-Tool . . . 287

Single-Tool Map. . . 287

Multi-Tool Map . . . 291

Command Line Reference . . . 295

config commands . . . 296

config connect . . . 296

config file . . . 296

config filter command . . . 297

config map command . . . 304

config map-rule . . . 305

config mapping command . . . 306

config pass-all command . . . 306

config password command . . . 307

config port-alias command . . . 307

config port-filter command . . . 307

config port-owner command . . . 307

(11)

Contents 11

config restore command . . . 313

config save command . . . 313

config snmp_server commands . . . 314

config snmp_trap commands . . . 314

config sntp_server command . . . 316

config syslog_server . . . 317

config system commands . . . 318

config tac_server command . . . 324

config uda command . . . 326

config user command . . . 327

config xbconnect command . . . 328

config xbmap command . . . 329

config xbmapping command . . . 330

config xbport-filter command . . . 330

delete commands . . . 331 exit command . . . 332 help command . . . 333 history command . . . 333 install commands . . . 334 logout command. . . 336 reset commands . . . 336 show commands . . . 337 upload command . . . 340

CLI Parameter Limits . . . 341

Lock-Level Reference . . . 347

About Lock-Levels and Port Ownership . . . 347

Abbreviations in this Section . . . 348

Login Command. . . 349 Show Commands . . . 349 Delete Commands . . . 351 Config Commands . . . 353 Install Command . . . 355 Reset Commands . . . 356

(12)

Port Statistics Counters . . . 357

Console Cable Pinouts . . . 359

DB9 Pinouts – Figure . . . 359

RJ45 Pinouts – Figure. . . 360

DB9 to RJ45 Pinouts – Table . . . 360

(13)

13

About This Guide

This guide describes how to install, connect, configure, and operate the GigaVUE-420™_{data access switch.}

Audience of this Guide

This guide assumes that you are familiar with basic networking concepts and are comfortable configuring network equipment such as switches and routers in a command-line interface.

(14)

How To Use This Guide

This User’s Guide is divided into several main sections. Each section corresponds to a different stage of GigaVUE-420 operations, as summarized below.

Section Chapter

Welcome to GigaVUE-420 4.0

These chapters introduce you to the GigaVUE-420 and orient

GigaVUE-MP customers to the new product. They also describe how to upgrade the system once new versions are available.

Chapter 1, Introducing GigaVUE-420 4.0

Chapter 2, Updating the GigaVUE-420

Initial Configuration

These chapters describe how to perform the initial system

configuration of the GigaVUE-420 4.0.

After working through these chapters, your unit will be up and running. You will most likely only need to read these chapters once.

Chapter 3, Getting Started with GigaVUE-420: A Roadmap

Chapter 4, Rack-Mounting the GigaVUE-420 Chapter 5, Connecting the GigaVUE-420

Chapter 6, Getting Started in the Command Line Interface Chapter 7, Stacking GigaVUE-420 Boxes

Chapter 8, Configuring GigaVUE-420 Security Options Chapter 9, Using SNMP

Chapter 10, Using Configuration Files Chapter 11, Configuring Logging Configuring Packet

Distribution

This chapter describes the core features of GigaVUE-420 4.0 – how to configure the distribution of traffic arriving at network ports to

destination tool ports. You will likely return to these

Chapter 12, Introducing Packet Distribution Chapter 13, Connections, Filters, and Pass-Alls

(15)

About This Guide 15 Appendixes

These chapters provide useful reference information. You will likely return to these chapters as you have specific questions about

GigaVUE-420 features.

Appendix A, Command Line Reference

Appendix B, CLI Parameter Limits Appendix C, Lock-Level Reference

Appendix D, Port Statistics Counters Appendix E, Console Cable Pinouts

(16)

Conventions Used in this Guide

The following notational conventions are used in this guide.

Bold face Bold is used for GigaVUE-420 CLI commands within text. For example:

Use the config connect command to connect a network port to a tool port.

Bold Sans-Serif Bold, sans-serif font is used for GigaVUE-420 CLI commands when standing by themselves (for example, where the only text on a line is a CLI command, or within a table cell).

Italic Italic font is used in two different ways:

- the first time a new term or concept is introduced, - in cross references to headings or chapters. For example:

See About Tool Ports on page 44.

Product Naming Conventions

This guide refers to GigaVUE-420 components by the names used in the command-line reference. Occasionally, these names may be slightly different than those used by Gigamon sales literature. The following table shows how the names used in this manual

correspond to those used by sales literature.

Engineering Product Name

Sales Product Name Description

GigaLINK-CU GigaLINK-CU Optional 10 Gb copper interface for stacking, network or tool port use.

(17)

About This Guide 17

GigaVUE-420 Models

There are four basic GigaVUE-420 models available: GigaLINK-XR

GigaLINK-SR Optional 10 Gb optical Short Range interface for stacking, network or tool port use.

GigaLINK-LR Optional 10 Gb optical Long Range interface for stacking, network or tool port use.

GigaLINK-ER Optional 10 Gb optical Extended Range interface for stacking, network or tool port use.

GigaTAP-Tx GigaTAP-Tx Dual Copper Tap Module

GigaTAP-Sx GigaTAP-Sx Dual Multi Mode 850 nm Optical Tap Module

GigaTAP-Lx GigaTAP-Lx Dual Single Mode 1310 nm Optical Tap Module

GigaTAP-Zx GigaTAP-Zx Dual Single Mode 1550 Optical Tap Module

GigaPORT GigaPORT 4 port Copper/Optical SFP Expansion Module

Engineering Product Name

Sales Product Name Description

GVS-421 • Copper GigaMGMT Module

• AC Power

GVS-422 • Optical GigaMGMT Module

• AC Power

GVS-423 • Copper GigaMGMT Module

• DC Power

GVS-424 • Optical GigaMGMT Module

(18)

Other Sources of Information

GigaVUE-420 provides other sources of information that can help you get up to speed with the equipment, including an online help system. There are several ways to use online help:

• Whenever you are working with the command-line interface, you can type either ? or help to see basic description of GigaVUE-420 commands.

• Command Completion. If you have partially typed a command, you can press Tab and the CLI will attempt to complete the command for you based on what’s been entered so far. If it is unable to complete the command, the CLI will simply redraw the line with the cursor at the end of the line.

• Word Help. When you are typing a command and are not sure how to spell the word you are working on, type a ? mark immediately following the partially-typed word (for example, config x?). The CLI will show you a list of all possible words using the word entered so far.

• Command Help. When you are typing a command and have finished a word but are not sure what the rest of the syntax is, you can type a space after the word and then a ?. The CLI will list all possible commands using the words you have entered so far. For example, if you type config system ?, the CLI will return all possible config system commands.

(19)

About This Guide 19

Contacting Customer Support

Contact Gigamon Systems LLC’s Support department with product questions using the information in Table i. The Customer Service department’s hours of operation are from 7:30 AM to 5:30 PM Pacific Time, Monday through Friday.

Table i: Customer Support Contact Information

Telephone (408) 263-2022

Fax (408) 263-2023

E-Mail [email protected]

Web http://www.gigamon.com

Mail 736 South Hillview Drive Milpitas, CA 95035

(20)

Contacting Sales

Table ii shows how to reach the Sales Department at Gigamon Systems.

Table ii: Sales Contact Information

Telephone (408) 263-2022

(21)

21

Chapter 1

Introducing GigaVUE-420 4.0

This section introduces the GigaVUE-420 4.0 data access switch, describes its features and functions, and provides an orientation to the physical layout of the box. It includes the following major sections:

• GigaVUE-420 Overview on page 21 • GigaVUE-420 Chassis on page 25

• GigaVUE-420 vs. the GigaVUE-MP on page 28 • New Features in GigaVUE-420 v4.0 on page 37 • GigaVUE-420 Specifications on page 42

GigaVUE-420 Overview

GigaVUE-420 is an out-of-band data access switch for enterprise networks. It provides dynamic connectivity for 10 Gb and 1 Gb Ethernet network monitor, compliance, and archival tools, including: • Intrusion Detection Systems

• Protocol Analyzers • VoIP Analyzers

(22)

• Application Performance Monitors • Stream-to-Disk Data Recorders

GigaVUE-420 Features and Benefits

GigaVUE-420 unobtrusively acquires and maps relevant traffic from multiple data sources to multiple tools, including the following common scenarios:

Figure 1-1 summarizes these features: Filtering and Mapping

(Any-to-Any)

Direct traffic from any network port to any tool port. Use filters to focus on particular traffic types. Use map-rules to send different types of traffic to different tool ports.

Aggregation (Many-to-Any)

Aggregate traffic from multiple links to deliver a “big pipe” view to any tool. Merge Tx and Rx traffic into a single tool interface.

Multicasting (Any-to-Many)

Multiplex filtered or unfiltered, singular or aggregated traffic to multiple tools.

(23)

Introducing GigaVUE-420 4.0 23

(24)

The table below lists GigaVUE-420’s major features and benefits.

Benefit Descriptions

Share SPAN Ports Connect a SPAN port to a network port on the GigaVUE-420. Then, use GigaVUE-420’s command-line interface to multicast that traffic to multiple different tool ports, giving multiple different tools access to the same data. You can apply different filters to individual tool ports to ensure that each tool sees the data that best suits its individual strengths.

Aggregate Links Send the data from multiple different network ports to one or more tool ports, allowing you to combine traffic from multiple access points into a single stream for analysis.

Filter Packets Set both pre-filters and post-filters, allowing or denying traffic that meets specified criteria, including IP address and port ranges, VLAN IDs, protocols, and so on.

• Pre-filters are filters applied on a network port. • Post-filters are filters applied on a tool port.

Remote Management Configure GigaVUE-420’s operations from an intuitive command-line interface:

• Local access over the serial Console port.

• Remote network access using Telnet or SSH2 over the 10/100/1000 Ethernet Management port.

• Secure access to the CLI, either through local authentication or optional RADIUS/TACACS+ support.

Fault Tolerant Taps GigaTAP modules protect production links at all times (for copper, relay closes if power fails; for fiber, optical link maintains connection).

Modularized Design Install once and never touch any links again. You can move, add, and reconfigure tools at will without affecting production networks.

10 Gb Support • Support for up to four separate 10 Gb ports, allowing for a full tap of both

sides of two full-duplex 10 Gb links.

• Aggregate multiple 1 Gb network ports to 10 Gb tool port. • Split out 10 Gb network port to multiple 1 Gb tool ports.

• 10 Gb ports in x1/x2 slots can be used for stacking multiple GigaVUE-420 systems.

(25)

GigaVUE-420 Chassis

Each GigaVUE-420 unit consists of a 1U, rack-mountable, 19”-wide chassis. The chassis comes equipped with a 4-port base unit

(GigaMGMT) permanently installed on the front side, available with either copper or optical ports. Figure 1-2 shows front and rear views of the GigaVUE-420:

(26)

Base Ports –

Copper Version Optional Front Module Slots

GigaVUE-420 Chassis – Front View (Copper and Optical)

Base Ports – Optical Version

GigaVUE-420 Chassis – Rear View (AC and DC)

Optional Rear 10 Gb Module Slots Power Supplies – AC

Optional Front Module Slots

Power supply audible alarm reset button Fan 1 Fan 2

(27)

Introducing GigaVUE-420 4.0 27 Chassis Front – 10/100/1000 Modules

As shown in Figure 1-2, the front of the GigaVUE-420 chassis accepts up to four hot-swappable, 4-port, 10/100/1000 modules for a total of 20 ports. The following modules are available for the chassis front: • GigaPORT Module (Four-port UTP or SFP)

• GigaTAP-Sx /GigaTAP-Lx/GigaTAP-Zx Module • GigaTAP-Tx Module

NOTE: See GigaVUE-420 Modules on page 63 for more information on the base unit and optional modules.

Chassis Rear – 10 Gb Modules

You can install up to four hot-swappable 10 Gb modules on the rear side of the chassis. Slots for 10 Gb modules are numbered x1 – x4. This same terminology is used when working with the 10 Gb ports in the GigaVUE CLI.

Both copper (GigaLINK-CU) and optical (GigaLINK-XR) 10 Gb modules are available for the x1 – x4 slots.

Total Available Ports in a Maximally Sized Stack

You can stack up to 10 GigaVUE-420 systems for a total of 222 potential network/tool ports. There would be 240 total ports in such a stack (24 x 10). Of the total potential 240 ports, eighteen would be used as stack ports – two apiece for each of the 8 middle systems and one on each of the stack endpoints.

(28)

GigaVUE-420 vs. the GigaVUE-MP

The GigaVUE-420 is the next generation of Gigamon Systems’ award-winning GigaVUE-MP data access switch. This section lists and describes the major differences between the two products.

Differences in Hardware Features

The GigaVUE-420 takes the power built into the GigaVUE-MP and increases its 10 Gb support. Users familiar with the GigaVUE-MP will notice some key differences in the GigaVUE systems shown in Figure 1-3 and Figure 1-4 right away:

• More 10 Gb Ports – Instead of the two possible 10 Gb ports provided by the GigaVUE-MP, you can now have up to four separate 10 Gb ports. In contrast to the GigaVUE-MP’s front and rear-mounted 10 Gb ports, 10 Gb ports on the GigaVUE-420 are all rear-mounted in individual module slots numbered from x1 to x4). You can use any combination of fiber-optical (GigaLINK-XR) or copper (GigaLINK-CU) 10 Gb modules.

• More Front Module Slots – You still get a maximum of 20 separate 10/100/1000 ports on the front of the GigaVUE, but now those ports are distributed across the four ports in the base GigaMGMT unit (available with copper or optical ports) and four optional module slots. In contrast, the GigaVUE-MP used an 8-port base module (the GigaMUX) and included three optional module slots.

The types of optional modules available for the GigaVUE-420 are still the same as those available with the GigaVUE-MP:

• GigaPORT Module (Four-port UTP or SFP) • GigaTAP-Sx /GigaTAP-Lx/GigaTAP-Zx Module • GigaTAP-Tx Module

(29)

Figure 1-3: GigaVUE-420 vs. GigaVUE-MP – The Front Side

The GV-420’s base module includes four ports (copper or optical) instead of eight, giving you more slots for different module types.

Both systems accept the same optional module types (GigaPORT and GigaTAP) and support a maximum of 20 ports on the front side. However, the GV-420 has four optional module slots instead of three.

GigaVUE-420 – Front View

(30)

Figure 1-4: GigaVUE-420 vs. GigaVUE-MP – The Back Side

GigaVUE-420 – Rear View

Both systems use the same power supplies. DC power supplies are also available.

GigaVUE-MP – Rear View

The GigaVUE-420 supports up to four separate copper or optical 10 Gb modules. In contrast, the GigaVUE-MP supported a maximum of two (one in the front and one in the rear).

(31)

Differences in Software Features

GigaVUE-MP users will have no trouble adjusting to the

GigaVUE-420 – the new system’s CLI works much the same as the old system. However, there are some key differences, as summarized in the tables below.

Differences in Maps and Filters

Many of the limitations regarding maps and filters have been relaxed on the GigaVUE-420, as summarized below:

Feature GigaVUE-MP 3.5 GigaVUE-420 4.0

Maximum Number of Localized Cross-Box, Multi-Tool Maps

A multi-tool cross-box map is considered localized when it is mapped to at least one network port on the local box.

4 10

Maximum Number of Filter Entries in Database 200 4,000

Maximum Number of Tool Ports with Filters Bound

4 23

Maximum Number of Filters Bound to Tool Ports per Box

(tool port-filters)

480 100

Maximum Number of Network Port Filters and Single-Tool Map-Rules Bound per Box

2520 network port-filters 3600 map-rules

2048

Maximum Number of Multi-Tool Map-Rules Bound per Box

(32)

User-Defined Pattern Match Filters

Supports 4-byte patterns. Supports 16-byte patterns. Supports offsets at 4-byte boundaries

from 0-80 bytes.

Supports offsets at 4-byte boundaries from 2-126 bytes. Offsets configured within config filter

command.

Offsets configured separately from patterns using the config uda command.

Patterns configured using config filter [offsetx <1-byte-hex>] [datax

<4-byte-hex>] [maskx <4-byte-hex>]

command

Patterns configured using config filter [udax_data <16-byte-hex>] [udax_mask <16-byte-hex>]

command. User-defined pattern match filters

available in multi-tool maps and tool port filters.

User-defined pattern match filters not available in multi-tool maps and tool port filters. Use single-tool maps or network port-filters for user-defined pattern matches.

Filtered Tool Port Sharing Filtered tool ports cannot be shared with a map-rule.

Filtered tool ports can be shared with a connect, map-rule, xbconnect, or xbmap-rule.

Applying Filters to Unconnected Tool Ports

Filters can only be applied to tool ports with a connection in place.

Filters can now be applied to tool ports without a connection in place. NOTE: You still cannot apply a

filter to a network port without a connection in place.

Overlapping Map-Rule Ranges

Overlapping ranges in map-rules only allowed when other arguments in map-rule are different.

Overlapping ranges in map-rules allowed regardless of whether other arguments in map-rule are different.

(33)

Choosing Map Types in the GigaVUE-420

As with the GigaVUE-MP, the GigaVUE-420 supports both

single-tool and multi-tool maps. However, when working with the GigaVUE-420, it’s important to understand the trade-offs that accompany these map types. In general:

Single-Tool Maps

Use single-tool maps if you want to use user-defined pattern match filters. The trade-off is that you will have fewer port-pair and pass-all resources for ports in single-tool maps. Single-tool maps consume system resources needed to construct pass-alls and port-pairs. Filters/Map-Rules for

IP Fragments

Matches all fragments for all

conversations. Intended to be used in a single map-rule with no other attributes.

Can be combined with IP Address and Port filters to focus on fragments associated with specific traffic.

Only available in map-rules. Available in both filters and map-rules

Filter either fragments or no fragments.

Filter on different types of fragments, including: • Unfragmented packets • Fragment in IP header

• Unfragmented or fragment in IP header

• Fragment but not in IP header • All fragments

Single-Tool Maps

Plus Minus

Support Pattern Match Filters

Fewer Port-Pairs (2 instead of 12)

Fewer Pass-All Destination Ports for Ports in the Map (4 instead of 23)

(34)

Multi-Tool Maps

Multi-tool maps can consist entirely of map-rules that only send traffic to a single tool port. There is no requirement that a multi-tool map have at least one multi-tool rule.

This is important to keep in mind when deciding which type of map to use – you can use a multi-tool map if you want to maximize the number of pass-alls and port-pairs available for ports in the map. The trade-off is that you will not be able to use user-defined pattern matches in multi-tool map-rules.

Differences in Restrictions on Legacy Commands

Multi-Tool Maps

Plus Minus

More Port-Pairs (12 instead of 2)

No User-Defined Pattern Match Map-Rules More Pass-All Destination Ports for Ports in the

Map (23 instead of 4)

Command GigaVUE-MP 3.5 GigaVUE-420 4.0

Port-Pair

• Can only be established between ports in the same module.

• Can be established between any ports on the same GigaVUE-420. • Can only be established between ports

running at the same speed.

• Can be established between ports using different speeds (for example, from a 1 Gb port to a 10 Gb port). • No support for link status propagation. • Supports link status propagation –

when one port goes down, the other port goes down (and vice-versa).

Pass-All

• Can only be established within the GigaMGMT (ports 1-8) or within ports 9-20.

• Can be established between any ports on the GigaVUE-420.

• Can only be established to a single tool port destination.

• Can be established to multiple tool port destinations.

(35)

Differences in Stacking Commands for 10 Gb Ports

Many of the arguments for the stacking commands in the

GigaVUE-MP used “front” and “back” designators for the 10 Gb ports. Because the GigaVUE-420’s 10 Gb ports are all on the back of the unit now, the arguments for these commands have changed to use x1 and x2 instead. The table below summarizes the differences.

Differences in Port-Stat Counters

Some of the port statistics shown by the show port-stats command are counted differently on the GigaVUE-420. See Appendix D, Port Statistics Counters for full description of the available port statistics.

Command GigaVUE-MP 3.5 GigaVUE-420 4.0

config system active_link

Specifies which stacking ports are in use on the GigaVUE-420.

config system active_link <front | back | both | none>

config system active_link <x1 | x2 | both | none>

Specifying Stack Neighbors

These commands inform the local GigaVUE-420 of the boxes reachable from its stacking ports. These commands are renamed so that they no longer use the “front” and “back” designators.

config system front_bid <1-10> config system back_bid <1-10>

config system x1_bid <1-10> config system x2_bid <1-10>

Configuring Cable Lengths

You must specify the cable length for any copper stacking port connections. These commands are renamed and have moved from config system to config port-params.

config system front_glink_cable_len config system back_glink_cable_len

config port-params <port-id> ib_cable_len

Changes to cable length settings saved immediately.

Changes to cable length settings must be saved manually using

config save.

Statistic GigaVUE-MP 3.5 GigaVUE-420 4.0

IfInOctets Includes undersize frames. Excludes undersize frames.

IfInUcastPkts Includes packets with FCS/CRC errors.

Excludes packets with FCS/CRC errors.

(36)

Differences in Mgmt Port

You can configure speed and duplex options for the GigaVUE-420’s Mgmt port:

IfInDiscards Discards due to oversubscription counted only on Tool ports in a pass-all configuration.

Discards due to oversubscription counted on Tool port in ALL configurations.

IfOutDiscards

This counter increments when a packet is discarded at a tool port due to a tool port filter.

Not supported in GigaVUE-MP Supported in GigaVUE-420

IfInError Includes oversize packets

without FCS/CRC.

Excludes oversize packets without FCS/CRC.

Statistic GigaVUE-MP 3.5 GigaVUE-420 4.0

Mgmt Port Speed Unconfigurable. Maximum speed of 100 Mbps.

Configurable.

The maximum configurable speed is 100 Mbps. However, with autonegotiation enabled, the Mgmt port can negotiate a 1 Gb speed.

Mgmt Port Duplex Unconfigurable. Configurable for 10/100 Mbps.

To achieve 1 Gb speed, autonegotiation must be enabled.

(37)

New Features in GigaVUE-420 v4.0

This section summarizes the major features in GigaVUE-420 v4.0, including the changes relative to the GigaVUE-MP 3.5 release. Features are grouped into the following major categories: • System Management Features on page 37

• Filter and Map-Rule Features on page 39 • Traffic Distribution Features on page 41

System Management Features

Feature Description

Logging GigaVUE-420 introduces comprehensive logging capabilities to keep track of events on the unit. Logged events are always written to the local syslog.log file. In addition, you can optionally specify an external syslog server as a destination for GigaVUE-420’s logging output.

First, check the log-level to make sure the events you’re interested in will be logged (the default log-level is Info, but you can change it). Then, use the show log command to view available log files and log file contents. You can filter the show log output by priority, type, and date range. You can also use the tail argument to show only the last x entries in the log.

See Configuring Logging on page 185 for information on working with logging.

Upload Log Files You can use the upload -log command to upload saved log files to a TFTP server. This can be useful for troubleshooting issues with Support staff. If you used the delim option to display the log file in comma-delimited format, you can easily import the file into a spreadsheet application.

See Uploading Log Files for Troubleshooting on page 192 for details.

(38)

History GigaVUE-420 includes a new History command that lets you see the last 50 commands you’ve issued during the current session. After issuing the History command, you can repeat any of the commands by typing !<command number>. For example, to repeat command number 6 in the list, you would type !6 and press

Enter. This makes it easy to reuse a command that you’ve already

entered in the CLI.

The History command is particularly useful when trying to construct complex map-rules or filters – long commands with exact syntax. Occasionally, you may try to construct a complex map-rule before its destination port is set up as a tool port, causing GigaVUE to reject the rule. In a case like this, you could configure the

destination port as a tool port and then use the History command to reuse the previously rejected config map-rule command. With the destination port properly configured as a tool port, GigaVUE will no longer reject the rule.

See history command on page 333 for details.

SNMP Traps

GigaVUE-420 adds new powerchange and fanchange SNMP trap events.

The powerchange trap is generated when:

• One of the two power supplies is powered on or off. • Power is lost or restored to one of the two power supplies. The fanchange trap is generated when the speed of one of the two fans on the GigaVUE-420 drops below 4,800 RPM.

See Enabling GigaVUE-420 Events for SNMP Traps on page 169

for details.

Gigamon’s MIB has been updated to support both the GigaVUE-420 and the GigaVUE-MP.

Save Adds “Next Boot” Flag The config save command now includes a new nb (“next boot”) argument, allowing you to specify that a newly saved configuration file should be loaded at the next system boot. In previous GigaVUE products, you could only enable the next boot flag for a

configuration file using the config file command

See Setting a Configuration File to Boot Next on page 182 for details.

(39)

Filter and Map-Rule Features

IPv6 Filters GigaVUE-420 adds several new filter options for IPv6:

• Allow or deny traffic from specific IPv6 source or destination addresses.

• Allow or deny IPv6 packets matching a particular IPv6 Flow Label.

• Allow or deny traffic based on IP version (IPv4 or IPv6). See Config Filter Syntax on page 225 for details on these options.

Improved Pattern Match Filters GigaVUE-420 significantly enhances the user-defined pattern match filters available in the GigaVUE-MP 3.5 product:

• You can now use 16-byte patterns instead of the 4-byte patterns available in the GigaVUE-MP 3.5.

• Offsets can now be set at 4-byte boundaries from offsets of 2-126 bytes instead of the 0-80 byte range supported in the GigaVUE-MP 3.5.

• You now set offsets for user-defined pattern matches separately from the patterns themselves.

See Working with User-Defined Pattern Match Filters on page 237

for details.

Filters for TCP Control Bits GigaVUE-420 adds built-in filter support for any of the eight standard control bits (“flags”) in the TCP header (ACK, SYN, FIN, and so on).

See Config Filter Syntax on page 225 for details.

Filters for TTL/Hop Limit Values GigaVUE-420 adds the ability to filter on Time To Live (TTL; IPv4) or Hop Limit (IPv6) values. These fields perform the same function, specifying the maximum number of hops a packet can cross before it reaches its destination.

(40)

Improved IP Fragment Filters GigaVUE-420 significantly enhances the IPv4 fragment filters available in the GigaVUE-MP 3.5 product:

• Available in both filters and map-rules (only available in map-rules on the GigaVUE-MP 3.5).

• Can be used with other filters/map-rules instead of standalone. Previously intended to be used in a single map-rule with no other attributes.

• Previous versions only let you match either fragments or no fragments. This release lets you filter on different types of fragments, including:

• Unfragmented packets • Fragment in IP header

• Unfragmented or fragment in IP header • Fragment but not in IP header

• All fragments

Protocol Filters GigaVUE-420 adds support for one-byte user-defined pattern matches in protocol filters. This way, you can specify a particular pattern to be matched against the Protocol (IPv4) or Next Header (IPv6) field in the IP header.

(41)

Traffic Distribution Features

Config Pass-All Enhancements The GigaVUE-420 relaxes some of the restrictions on the config

pass-all command from the GigaVUE-MP 3.5:

• You can set up pass-alls between any of the ports on each GigaVUE-420 chassis, including the 10 Gb ports. In contrast, the GigaVUE-MP requires that pass-alls be established either between Ports 1-8 (the GigaMGMT base unit) or Ports 9-20 (the optional module slots).

• You can set up pass-alls to multiple tool port destinations instead of just a single tool port.

See Using the Pass-All Command on page 250 for details.

Tool Port Sharing A filtered tool port can now be shared among multiple connection types (for example, an xbconnect and a map-rule).

(42)

GigaVUE-420 Specifications

This section provides the physical specifications and power requirements for the GigaVUE-420 unit.

GigaVUE-420 Physical Dimensions and Weight

The GigaVUE-420 is housed in a 1U high rack-mountable chassis. The table below summarizes its dimensions:

Power Requirements

The GigaVUE-420 is powered by dual redundant, load-sharing, hot-swappable power supplies. The GigaVUE-420 can be ordered with either dual 100-240V 50-60Hz AC power supplies, or dual -48V DC power supplies. The table below summarizes the electrical characteristics of the unit:

Specification Value

Width • 17.31 inches (without mounting ears) • 19.0 inches including the front mounting

ears

Height 1.75 inches (1U)

Depth 23.50 inches

Weight (Fully Populated) 30.8 lbs/14.0 kg (approximately) Shipping Weight 45 lbs/20.5 kg (approximately)

Power Supply Type Requirement

Heat/Power Dissipation For a fully populated system (24 ports) with all ports at 100% traffic load: nominally 160Watts/ 546 BTU/hour

(43)

NOTE: See Connecting -48 V DC Power Supplies on page 62 for instructions on how to connect DC power supplies.

Environmental Specifications

The following table summarizes the GigaVUE-420’s environmental specifications:

AC Power Supplies 100 to 240V AC, 50-60 Hz

Nominal current requirement: 1.45A @ 110 VAC

Frequency: 50/60 Hz

DC Power Supplies -36 to –72V

Optional external fuse rating: 6A Slow-Blo Nominal current requirement: 3.33A @ -48 VDC

Power Supply Type Requirement

Specification Value

Operating Temperature 32ºF to 104ºF (0ºC to 40ºC)

Operating Relative Humidity 20% to 80%, non-condensing

Non-Operating Temperature -4ºF to 158ºF (-20ºC to 70ºC)

Non-Operating Relative Humidity 15% to 85%, non-condensing

(44)

(45)

45

Chapter 2

Updating the GigaVUE-420

This section describes how to update the GigaVUE-420’s software with a new release. To update the GigaVUE-420, you will need the following items:

Item Description

Updated GigaVUE-420 Image

This is the image file containing the updated v4.0 software (gvb4003).

You can obtain this image by contacting Technical Support via either e-mail or telephone:

• E-mail: [email protected]

• Telephone: (408) 263-2022

TFTP Server You will need to copy the GigaVUE-420 4.0 software image onto this TFTP server. The GigaVUE-420 unit will need the TFTP server’s IP address so that it can connect to the server and download the image.

NOTE: There are freeware TFTP servers available on the Internet for a variety of operating systems.

(46)

Update Procedure

1. Copy the new GigaVUE-420 installation file to your TFTP server. 2. Log in to the system to be updated as a super user.

NOTE: Normal users do not have the necessary privileges to update the GigaVUE-420 software.

3. Use the config save command to save your configuration to flash

memory for version migration.

4. Use the following command to install the GigaVUE-420 software:

install image_name TFTP-server-ipaddr

For example, to install the GigaVUE-420 4.0 installation file named gv.bin.4.0.xx from a TFTP server running on IP address 192.168.1.102, you would use the following command:

install gv.bin.4.0.xx 192.168.1.102

5. The system may warn you that another image file already exists

in the system. Press y to confirm that you want to install the new image.

The system will erase the existing image and install the new one. Wait for this process to complete. The system will inform you that the image was installed successfully.

6. When the system prompt reappears, reset the system with the

reset system command.

7. When the login prompt appears, log in and use the config save

(47)

47

Chapter 3

Getting Started with

GigaVUE-420: A Roadmap

This chapter provides a flow chart of the major steps you need to perform to get GigaVUE-420 up and running on your network. It also describes what you should do once you have completed the initial setup of the unit.

• First Steps – Getting Connected and into the CLI on page 48 • Next Steps on page 49

(48)

First Steps – Getting Connected and into the CLI

You’ve received your GigaVUE-420 unit and now you’re ready to get up and running. Figure 3-1 shows the major steps you need to perform to get the GigaVUE-420 out of the box, into a rack, plugged in, and running on your network:

1 Step 1: Rack-Mount GigaVUE-420

See Rack-Mounting the GigaVUE-420 on page 51.

Step 2: Connect GigaVUE-420

See Connecting the GigaVUE-420 on page 59.

Step 3: Access the Command-Line Interface

See Getting Started in the Command Line Interface on page 79.

Access the Command Line Interface 2 3 Rack-Mount GigaVUE-420 Make GigaVUE-420 Connections

Step 4: Configure Essential CLI Options:

• Get familiar with the CLI • Configure System Options • Configure Users and Passwords • Set the Name, Date, and Time

See the sections beginning with Command Line Basics on page 91.

Configure Basic CLI Options

4

Step 5: Configure Cross-Box Stacks. If you are connecting multiple

GigaVUE-420 systems together in a cross-box stack, this chapter describes how to make the physical connections and use the correct configuration commands.

See Stacking GigaVUE-420 Boxes on page 105.

Configure Cross-Box Stacks

5

Step 6: Set Security Options. Set Security Options

(49)

Getting Started with GigaVUE-420: A Roadmap 49

Next Steps

Once you’ve performed the initial configuration of the GigaVUE-420 unit, installing, connecting, and configuring the unit, you’re ready to get started mapping traffic between network and tool ports.

See Introducing Packet Distribution on page 197 for information on these day-to-day GigaVUE-420 tasks.

(50)

(51)

51

Chapter 4

Rack-Mounting the

GigaVUE-420

This section describes how to unpack and rack-mount the

GigaVUE-420 chassis. The section covers the following major topics: • Unpacking GigaVUE-420 on page 51

• Rack-Mounting the GigaVUE-420 on page 52

Unpacking GigaVUE-420

Unpack GigaVUE-420 and inspect the box it was shipped in. If the carton was damaged, please file a claim with the carrier who

delivered it. Next, select a suitable location for the rack unit that will hold the GigaVUE-420.

Choose a location that is clean, dust free, and well ventilated. You will need access to a grounded power outlet. Avoid areas where heat, electrical wire, and electromagnetic fields are generated.

Plan for enough clearance in front of a rack so you can open the front door completely (approximately 25 inches) and enough clearance in the back of the rack to allow sufficient airflow and easy access for servicing the 10 Gb connections.

(52)

Rack-Mounting the GigaVUE-420

This section describes how to rack-mount the GigaVUE-420 in a standard 1U rack space using the hardware provided with the chassis. You can install the GigaVUE-420 in racks with a minimum width of 17.75”.

See the following sections: • Safety Precautions on page 52

• Rack Mounting Hardware on page 53

• Four-Point Mounting in Four-Post Racks on page 54 • Center-Mounting in Two-Post Racks on page 56

Safety Precautions

There are a wide variety of racks available on the market. Make sure you consult the instructions provided by your rack vendor for detailed mounting instructions before installing the GigaVUE-420 chassis.

NOTE: Before rack-mounting the GigaVUE-420, make sure you have read the following safety precautions:

• The GigaVUE-420 chassis weighs approximately 31 pounds when fully populated. Make sure you install any stabilizers provided for the rack before installing the chassis. Unsecured racks can tip over.

• Make sure you install boxes in the rack from the bottom up with the heaviest boxes at the bottom.

• Make sure you provide adequate ventilation to the systems installed in the rack.

(53)

Rack-Mounting the GigaVUE-420 53

Rack Mounting Hardware

Figure 4-1 shows the rack mount hardware included with the GigaVUE-420. You use this hardware together with the supplied screws to rack mount the system in either a four-post or two-post rack.

Figure 4-1: Rack Mount Hardware Kit

Slide Assemblies

Use the slide assemblies together with the orange rack ears for four-point mounting in a four-post rack.

Rack Ears

Use the rack ears either by themselves for center-mounting in a two-post rack or together with the slide assemblies for four-point mounting in a four-post rack.

(54)

Four-Point Mounting in Four-Post Racks

To mount the GigaVUE-420 in a four-post rack, you use both the orange rack ears and the slide assemblies. The rack ears attach at the front of the unit and the slide assemblies at the rear.

The slide assemblies make it easy to adjust the mount points to fit racks of varying widths:

• The unit can slide forward and backward on the slide assembly to fit the width of the rack.

• There are two attachment points on the side of the GigaVUE-420 for the slide assemblies, making it easy to adjust the width to fit the rack (Figure 4-2).

Figure 4-2: Attachment Points for Slide Assemblies

Slide Assembly Attached in Front Position In this picture, the slide assembly is attached in the front position.

Slide Assembly Attached in Rear Position

(55)

To mount the GigaVUE-420 chassis in a four-post rack:

1. Attach the orange rack ears to the front of the unit using the

supplied screws.

2. As shown in Figure 4-1 on page 53, the slide assemblies consist of

two parts – a flat tab with a beveled edge and a sliding bracket that fits over the tab. Attach the flat tabs to the GigaVUE-420 at one of the two rear positions (see Figure 4-2). Select the position that best fits the width of your rack.

3. Attach the bracket portions of the slide assembly to the rear posts

of the rack with the supplied screws.

4. Slide the chassis into the rack space occupied by the brackets,

making sure that the tabs fit into the brackets.

5. Slide the unit in until the orange rack ears are flush with the front

rack posts.

6. Attach the orange rack ears to the front posts of the rack with the

(56)

Center-Mounting in Two-Post Racks

To center-mount the GigaVUE-420 in a two-post rack, you attach the orange rack ears to the middle of the unit. As shown in Figure 4-3, you can attach the rack ears facing either forward or backward to best fit your rack.

Figure 4-3: Attaching Rack Ears for Center-Mounting

Forward-Facing Rack Ears

In this picture, the rack ears are attached at the center-mount position facing towards the front of the chassis.

Rear-Facing Rack Ears

(57)

To center-mount the GigaVUE-420 chassis in a two-post rack:

1. Attach the orange rack ears to the middle of the unit using the

supplied screws.

As shown in Figure 4-3, you can attach the rack ears facing towards either the front or the rear of the chassis. Select the orientation that best fits your rack. For example, one position may provide better clearance for rack doors at the front of the chassis.

2. While one person supports the weight of the unit with the rack

ears flush to the chassis, a second person can attach the ears to the rack with the supplied screws.

(58)

(59)

59

Chapter 5

Connecting the GigaVUE-420

This section explains how to make the basic GigaVUE-420

connections necessary to get the box powered up and communicating with a connected PC in the command-line interface. It includes the following major sections:

• Basic GigaVUE-420 Connections on page 59 • Connecting -48 V DC Power Supplies on page 62 • GigaVUE-420 Modules on page 63

• Using Modules – Best Practices on page 74

• Traffic Distribution and Replacing Modules on page 75

Basic GigaVUE-420 Connections

To make basic GigaVUE-420 connections:

1. Gigamon Systems provides the GigaVUE-420 with a DB9-to-RJ45

serial cable used to connect a PC’s COM port to the Console port on the GigaVUE-420. This cable is called a Console cable.

Connect the RJ45 end of the Console cable to the GigaVUE-420’s Console port.

(60)

NOTE: See Appendix E, Console Cable Pinouts for details on the connectors on this cable.

Figure 5-1: Connecting the GigaVUE-420’s Console Port

2. Connect the DB9 end of the Console cable to a PC’s COM port. 3. Make sure the power supply switches are both in the off position.

Then, plug power cables into each of the GigaVUE-420’s dual power supplies (Figure 5-2).

NOTE: For information on connecting the optional DC power supplies, see Connecting -48 V DC Power Supplies on page 62.

DB9-to-RJ45 Console Cable (RJ45 End)

(61)

Connecting the GigaVUE-420 61

4. Plug the other end of the power cables into a power source that

can supply adequate power. For optimal power protection, plug the power supplies into separate circuits.

For information on GigaVUE-420 power requirements, see Power Requirements on page 42.

5. Turn on the power switches for each of the dual power supplies

(Figure 5-3).

6. See Establishing a Configuration Session with GigaVUE-420 on

page 79 for information on how to connect to the GigaVUE-420’s command-line interface.

Figure 5-3: Turning on the Power Switches

Power switches Power supply alarm

(62)

Connecting -48 V DC Power Supplies

The GigaVUE-420 is available with DC power supplies (Figure 5-4). instead of the standard AC power supplies provided with most systems. This section provides instructions for connecting a -48 V DC power source to the DC power supplies.

Figure 5-4: DC Power Supply with Screw Terminals

To connect a -48 V DC input to the screw terminal DC power supply:

1. Remove the safety cover from the power terminals.

2. Connect the power supply ground terminal ( ) to earth ground

(Figure 5-4).

3. Connect the positive and negative power cables to the screw

terminals using a Phillips screwdriver. See Figure 5-4 for the locations of the terminals:

• The top connector on the DC power supply is the 0V connector.

Ground terminal

-48V Terminal 0V Return Terminal

(63)

5. Connect the neutral and negative power cables to the DC power

source:

• Connect the neutral wire to the 0V (RTN) connector on the DC power source.

• Connect the negative wire to the -48v connector on the DC power source.

6. Repeat Step 2 through Step 5 for the second DC power supply in

the GigaVUE-420.

7. Once you have connected the DC power connections, switch the

power buttons for each of the power supplies to the ON position.

GigaVUE-420 Modules

This section describes each of the GigaVUE-420 modules. All GigaVUE-420 systems are shipped with the 4-port GigaMGMT (page 64) base unit with either copper or optical Ethernet ports. Then, you can use the following modules in the front and rear slots:

Modules for Front Slots The four front slots in the GigaVUE-420 chassis can be filled with any combination of the following optional modules:

• GigaPORT Module (page 65) • GigaTAP-Sx/Lx/Zx Module (page 67) • GigaTAP-Tx Module (page 68)

NOTE: The modules listed above are interchangeable between the

GigaVUE-MP and the GigaVUE-420. If you have existing versions from the GigaVUE-MP, you can use them in the GigaVUE-420.

Modules for Rear Slots The four rear slots in the GigaVUE-420 chassis can be filled with any combination of the following optional 10 Gb modules: • GigaLINK-CU (page 73)

(64)

GigaMGMT Four-Port Base Module

All GigaVUE-420 systems include a 4-port GigaMGMT base module (Figure 5-5) at the far left of the chassis. The GigaMGMT base

includes Mgmt and Console ports for administrative connections, as well as four network/tool ports. The GigaMGMT is available with either copper or optical network/tool ports. Both are shown in Figure 5-5.

Figure 5-5: The GigaMGMT Four-Port Base Module

The table below lists and describes the connectors on the GigaMGMT

Mgmt port for 10/100/1000 Ethernet configuration.

Console port for serial configuration.

Fiber-optical Gigabit Ethernet network/tool ports. GigaMGMT - Copper Ports

GigaMGMT - Optical Ports

10/100/1000 Ethernet network/tool ports.

Link (green) and Activity (yellow) LEDs for Mgmt port. Note that the LEDs for the Console port are not enabled.

(65)

GigaPORT Module

The GigaPORT module provides flexible connectivity to a total of four copper and/or fiber-optical Gigabit Ethernet network ports – there are four ports for each.

Although there are a total of eight connectors on the GigaPORT, you can only use four at a time. An easy way to visualize this is to think of the GigaPORT as having four ports, each with an electrical and an optical interface. Enabling one interface for a given port disables the other (for example, if the RJ45 electrical interface is enabled on Port 9, the optical SFP interface for Port 9 is disabled).

You use the config port-params <port-id> medium <electrical | optical> command to specify whether the RJ45 10/100/1000 Ethernet interface or the fiber-optical SFP interface is enabled for a given port. NOTE: You can always tell whether the copper or optical port is enabled by typing the show connect command in the GigaVUE-420 CLI. Ports listed in parentheses use an electrical/RJ45 interface. Ports listed without parentheses use an optical SFP/LC interface.

Table 5-1: GigaMGMT Base Module Connectors

Connector Description

Mgmt Use the Mgmt port for remote configuration of the GigaVUE-420 over a 10/100/ 1000 Ethernet network. See Remote Connections to the Mgmt Port on page 82

for information on establishing a Telnet or SSH configuration session with the GigaVUE-420.

Console Use the Console port for local configuration of the GigaVUE-420 over a serial connection. See Local Connections to the Console Port using the Console Cable on page 80 for information on establishing a serial configuration session with the GigaVUE-420 in a terminal window.

Tool/Network Ports (1-4)

Ports 1-4 can be used as either network (input) or tool (output) ports. There are separate copper and optical models available:

• Copper 10/100/1000 UTP Ethernet ports. • Fiber-optical Gigabit Ethernet ports.

(66)

NOTE: 850 nm multi-mode or 1310 nm single-mode SFP transceivers are available as standard options. Zx 1550 nm single-mode SFP transceivers are available as a special order.

Figure 5-6: The GigaPORT Module

GigaPORT Port Numbering

Ports on the GigaPORT module are numbered from top to bottom, left to right. Figure 5-7 illustrates how the ports would be numbered if this GigaPORT module was installed in the Ports 9-12 slot in the GigaVUE-420 chassis.

Figure 5-7: Sample Port Numbering – GigaPORT Module

Copper UTP 10/100/1000 Ethernet Ports Fiber-Optical 1 Gb Ports GigaPORT 9 10 11 12 9 10 11 12

(67)

GigaTAP-Sx/GigaTAP-Lx/GigaTAP-Zx Modules

GigaTAP-Sx and Lx modules provide the ability to tap fiber-optical Gigabit Ethernet links (1000BASE-Sx, 1000BASE-Lx, or 1000BASE-Zx, respectively). The GigaTAP-Sx/Lx/Zx modules use a fiber-optic splitter to tap the signal flowing through the module for distribution to GigaVUE-420 tool ports. There are two pairs of LC ports for tapping two different links.

NOTE: GigaTAP-Sx/Lx/Zx ports can only be used as network ports. They cannot be used as tool ports.

The optical GigaTAP modules protect production links during a power outage by using an optical switch.

Figure 5-8: The GigaTAP-Sx Module

Optical tap port pair.

(68)

GigaTAP-Tx Module

The GigaTAP-Tx module provides the ability to tap a copper Gigabit Ethernet link, copying traffic to specified tool ports as it flows

through the tap. There are two pairs of RJ45 connectors for tapping two different links.

NOTE: GigaTAP-Tx ports can be used as either network or tool ports.

Figure 5-9: The GigaTAP-Tx Module

Passive Mode vs. Active Mode

By default, the ports in the GigaTAP-Tx module operate in passive mode instead of active mode:

• In passive mode, the relays in the GigaTAP-Tx module are closed. This means that traffic received on one port is repeated out the other port in the pair but is never seen by the

GigaVUE-420 – it simply flows between the two ports.

Passive mode protects production links in case of power failure. The tap will always revert to passive mode in the event of power loss.

• In active mode, the relays in the GigaTAP-Tx module are open. Traffic received on one port is actively regenerated out the other port in the port-pair. In addition, it flows through the

RJ45 tap port pair.