Duplicating network traffic through transparent VLAN flooding
First Claim
Patent Images
1. A method comprising:
- determining, based on contents of a packet received at a network device, that the received packet is to be sent to one or more monitoring devices, wherein the network device includes a virtual local area network (VLAN), the VLAN including a receiving port and a plurality of I/O ports, the receiving port and the plurality of I/O ports of the VLAN corresponding to ports of the network device, wherein Media Access Control (MAC) learning has been disabled for the receiving port;
generating a duplicate packet from the received packet;
causing the duplicate packet to be sent to the receiving port of the VLAN; and
upon receiving the duplicate packet at the receiving port of the VLAN, causing a copy of the duplicate packet to be sent to each of one or more of the plurality of I/O ports of the VLAN.
7 Assignments
0 Petitions
Accused Products
Abstract
An approach to duplicating network traffic is described. In one approach, a method of creating multiple copies of network traffic is detailed. The method involves receiving network traffic, producing a duplicate copy of the network traffic, and forwarding the duplicate copy to a monitoring port. The monitoring port forwards copies to a number of indicated ports.
246 Citations
28 Claims
-
1. A method comprising:
-
determining, based on contents of a packet received at a network device, that the received packet is to be sent to one or more monitoring devices, wherein the network device includes a virtual local area network (VLAN), the VLAN including a receiving port and a plurality of I/O ports, the receiving port and the plurality of I/O ports of the VLAN corresponding to ports of the network device, wherein Media Access Control (MAC) learning has been disabled for the receiving port; generating a duplicate packet from the received packet; causing the duplicate packet to be sent to the receiving port of the VLAN; and upon receiving the duplicate packet at the receiving port of the VLAN, causing a copy of the duplicate packet to be sent to each of one or more of the plurality of I/O ports of the VLAN. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A non-transitory computer-readable medium storing a plurality of instructions executable by one or more processors of a network device, the network device including a virtual local area network (VLAN), the VLAN including a receiving port and a plurality of I/O ports, the receiving port and the plurality of I/O ports of the VLAN corresponding to ports of the network device, wherein Media Access Control (MAC) learning has been disabled for the receiving port;
- and
wherein the plurality of instructions comprise; instructions for causing at least one processor from the one or more processors to determine, based on contents of a packet received at the network device, that the received packet is to be sent to one or more monitoring devices; instructions for causing at least one processor from the one or more processors to generate a duplicate packet from the received packet; and instructions for causing at least one processor from the one or more processors to cause the duplicate packet to be sent to the receiving port of the VLAN of the network device; and upon receiving the duplicate packet at the receiving port of the VLAN; instructions for causing at least one processor from the one or more processors to cause a copy of the duplicate packet to be sent to each of one or more of the plurality of I/O ports of the VLAN. - View Dependent Claims (13, 14, 15, 16)
- and
-
17. A network device, comprising:
-
a plurality of ports, comprising a first port configured as a receiving port for a VLAN configured for the network device, the plurality of ports further comprising a set of ports configured as I/O ports of the VLAN, wherein Media Access Control (MAC) learning has been disabled for the receiving port; wherein the network device is configured to; determine, based on contents of a packet received at the network device, that the received packet is to be sent to one or more monitoring devices; generate a duplicate packet from the received packet; cause the duplicate packet to be sent to the receiving port of the VLAN of the network device; and upon receiving the duplicate packet at the receiving port of the VLAN, cause a copy of the duplicate packet to be sent to each of one or more of the I/O ports of the VLAN. - View Dependent Claims (18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28)
-
Specification