Traffic mirroring and forwarding between CPE devices

Kaspersky SD-WAN supports traffic forwarding and mirroring between CPE devices. You can redirect or mirror traffic from traffic collection points to traffic destination using TAP services. Forwarding means sending traffic that arrives to traffic collection points to the traffic destination point, and mirroring means sending a copy of the traffic.

Service interfaces are used as collection points and destinations of traffic. Both individual service interfaces and service interfaces added to a transport service can be traffic collection points.

You need to create a traffic destination and then specify this traffic destination and traffic collection points when creating or editing a TAP service. You do not need to create traffic collection points in advance.

Managing traffic destinations

To display the list of traffic destinations, go to the Infrastructure menu section, click Management → Configuration menu next to the controller, and go to the TAP services section.

The actions you can perform with the list are described in the Managing solution component tables instructions.

Creating a traffic destination

To create a traffic destination:

1. In the menu, go to the Infrastructure section.

   This opens the resource management page. By default, the Network resources tab is selected, which displays the table of controllers.

2. Click Management → Configuration menu next to the controller.
3. Go to the TAP services section.

   By default, the Mirroring destinations tab is selected, which displays the table of traffic destinations.

4. In the upper part of the page, click + Mirroring destination.
5. This opens a window; in that window, in the Switch and Port drop-down lists, select the CPE device and the created service interface that you want to use as the traffic destination.
6. Click Create.

The traffic destination is created and displayed in the table.

Deleting a traffic destination

Deleted traffic destinations cannot be restored.

To delete a traffic destination:

1. In the menu, go to the Infrastructure section.

   This opens the resource management page. By default, the Network resources tab is selected, which displays the table of controllers.

2. Click Management → Configuration menu next to the controller.
3. Go to the TAP services section.

   By default, the Mirroring destinations tab is selected, which displays the table of traffic destinations.

4. Click Delete next to the traffic destination that you want to delete.
5. In the confirmation window, click Delete.

The traffic destination is deleted and is no longer displayed in the table.

Managing TAP services

To display the table of TAP services, go to the Infrastructure menu section, click Management → Configuration menu next to the controller, go to the TAP services section, and select the TAP services tab. Information about TAP services is displayed in the following columns of the table:

• Mirroring destination contains information about the service interface used as the traffic destination:
  • Name and DPID of the CPE device on which the service interface was created
  • Number of the OpenFlow port which the service interface is mapped to
• Mirror traffic indicates whether the TAP service mirrors traffic from traffic collection points to the traffic destination:
  • Yes
  • No
• Type is the type of traffic collection points:
  • SI means individual service interfaces are used as traffic collection points.
  • If the service interfaces used as traffic collection points are added to a transport service, the type of the transport service is displayed:
    • P2P
    • IP multicast
    • L3 VPN
    • P2M
    • M2M
• Transport service is the transport service to which the service interfaces being used as traffic collection points have been added. The value in this column is displayed only if the Source point type column is displaying the type of the transport service.
• Source points contains information about service interfaces that are being used as traffic collection points:
  • Names and DPIDs of the CPE devices on which the service interfaces were created
  • Numbers of OpenFlow ports which the service interfaces are mapped to
• Status is the status of the TAP service:
  • Up
  • Down

The actions you can perform with the table are described in the Managing solution component tables instructions.

Creating a TAP service

To create a TAP service:

1. In the menu, go to the Infrastructure section.

   This opens the resource management page. By default, the Network resources tab is selected, which displays the table of controllers.

2. Click Management → Configuration menu next to the controller.

   This opens the controller configuration menu. By default, you are taken to the Controller nodes section, which displays a table of controller nodes.

3. Go to the TAP services section.

   By default, the Mirroring destinations tab is selected, which displays the table of traffic destinations.

4. Select the TAP services tab.

   A table of TAP services is displayed.

5. In the upper part of the page, click + TAP service.
6. If you want the TAP service to mirror traffic from traffic collection points to the traffic destination, select the Mirror traffic check box. When this check box is selected, a copy of the traffic is sent to the destination; when the check box is cleared, the traffic is forwarded. This check box is cleared by default.
7. In the Balancing mode drop-down list, select the balancing mode for balancing traffic across links:
   • Per-flow means the traffic streams (5-Tuple) are distributed among the links in accordance with the link cost. Default value.
   • Per-packet means the traffic packets are distributed among the links in accordance with the link cost.
   • Broadcast means the traffic packets are duplicated and transmitted simultaneously through all links to avoid loss.

   You can manually specify link cost.

8. In the Mirroring destination drop-down list, select the created traffic destination.
9. In the Source point type drop-down list, select the traffic collection point type:
   • Service interface means individual service interfaces are used as traffic collection points.
   • Transport service means service interfaces that are added to a transport service are used as traffic collection points.
10. If in the Source point type drop-down list, you selected Transport service, follow these steps:
    1. In the Type drop-down list, select the type of the transport service:
       • P2P
       • IP multicast
       • L3 VPN
       • P2M
       • M2M
    2. In the Transport service drop-down list, select the transport service.
11. In the Source points drop-down list, select the created service interface that you want to use as a traffic collection point.

    The traffic collection point is added and displayed in the lower part of the window. You can add multiple traffic collection points or delete a traffic collection point. To delete a traffic collection point, click Delete next to it.

12. Click Next and select the created traffic classification rules for traffic collection points.
13. Click Create.

The TAP service is created and displayed in the table.

Viewing statistics of a TAP service

To view the statistics of a TAP service:

1. In the menu, go to the Infrastructure section.

   This opens the resource management page. By default, the Network resources tab is selected, which displays the table of controllers.

2. Click Management → Configuration menu next to the controller.
3. Go to the TAP services section.

   By default, the Mirroring destinations tab is selected, which displays the table of traffic destinations.

4. Select the TAP services tab.

   A table of TAP services is displayed.

5. Click Management → Statistics next to the TAP service whose statistics you want to view.

This opens a window with statistics of the TAP service.

Editing a TAP service

To edit a TAP service:

1. In the menu, go to the Infrastructure section.

   This opens the resource management page. By default, the Network resources tab is selected, which displays the table of controllers.

2. Click Management → Configuration menu next to the controller.
3. Go to the TAP services section.

   By default, the Mirroring destinations tab is selected, which displays the table of traffic destinations.

4. Select the TAP services tab.

   A table of TAP services is displayed.

5. Click Management → Edit next to the TAP service that you want to edit.
6. This opens a window; in that window, edit the TAP service settings, if necessary. For a description of the settings, see the instructions for creating a TAP service.
7. Click Save.

The TAP service is modified and updated in the table.

Deleting a TAP service

Deleted TAP services cannot be restored.

To delete a TAP service:

1. In the menu, go to the Infrastructure section.

   This opens the resource management page. By default, the Network resources tab is selected, which displays the table of controllers.

2. Click Management → Configuration menu next to the controller.
3. Go to the TAP services section.

   By default, the Mirroring destinations tab is selected, which displays the table of traffic destinations.

4. Select the TAP services tab.

   A table of TAP services is displayed.

5. Click Management → Delete next to the TAP service that you want to delete.
6. To delete the service interfaces added to the TAP service, select the Delete associated service interfaces check box in the confirmation window. This check box is cleared by default.
7. Click Delete.

The TAP service is deleted and is no longer displayed in the table.