JUNOSe 9.1.x Policy Management Configuration Guide > Configuring RADIUS-Based Mirroring > RADIUS Attributes Used for Packet Mirroring

RADIUS Attributes Used for Packet Mirroring

Table 42 lists the packet mirroring triggers. The triggers are RADIUS attributes that identify a user whose traffic is to be mirrored. A packet mirroring session starts when the router receives a RADIUS packet that contains mirroring attribute and then applies the mirroring configuration to the appropriate interface. For example, packet mirroring starts when a logon request occurs that contains a specified User-Name attribute.

The triggers also enable RADIUS-initiated mirroring to start when the user is already logged in.

 Table 42:  RADIUS Attributes Used as Packet Mirroring Triggers 

 Standard Number
 Attribute Name

 [1]

 User-Name


 [8]

 Framed-IP-Address


 [26-1]

 Virtual-Router


 [31]

 Calling-Station-ID


 [44]

 Acct-Session-ID


 [87]

 Nas-Port-ID 



 


 

You add the trigger to the RADIUS record of the user whose traffic will be mirrored. In addition, you must include the RADIUS VSAs listed in Table 43 in the mirrored user's RADIUS record.

NOTE: For IP mirroring, you must include both VSA 59 and 61 or neither. If you use only one of these two VSAs, the configuration fails.

 Table 43:  RADIUS-Based Mirroring Attributes 

 Standard Number
 Attribute Name
 Setting

 [26-58] 

 LI-Action

 0 = disable mirroring 
1 = enable mirroring
2 = no action 


 [26-59]

 Med-Dev-Handle

 String (not null-terminated)


 [26-60]

 Med-IP-Address

 IP address of analyzer device


 [26-61]

 Med-Port-Number

 UDP port number of monitoring application in analyzer device



 


 

A Mirror-Action setting of 2 specifies that the router does not perform any packet mirroring–related configuration. This setting can provide additional security by confusing unauthorized users who attempt to access packet mirroring communication between the router and the RADIUS server.