port mirroring

An administrator configures port mirroring by assigning a port from which to copy all packets and another port where those packets will be sent. A packet bound for or heading away from the first port will be forwarded onto the second port as well. The administrator places a protocol analyzer on the port receiving the mirrored data to monitor each segment separately. The analyzer captures and evaluates the data without affecting the client on the original port.

The monitor port may be a port on the same SwitchModule with an attached RMON probe, a port on a different SwitchModule in the same hub, or the SwitchModule processor.

Port mirroring can consume significant CPU resources while active. Better choices for long-term monitoring may include a passive tap like an optical probe or an Ethernet repeater.

Read more about port mirroring: - SearchNetworking.com provides links to papers about "Router/Switch Configuration."

Do you have something to add to this definition? Let us know. Send your comments to techterms@whatis.com

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Networking data visualization not just for pointy-headed bosses Dipping your feet in networking data visualization doesn't take expensive software: just Excel and a little help from your friends. Visual Security Analysis -- 'Applied Security Visualization,' Chapter 5 Visual Security Analysis, Chapter 5 of the book 'Applied Security Visualization,' shows different ways of analyzing security data using visual... SIEM platform secures university's open network With security information and event management platform QRadar, Wayne State University has secured its open network without locking down its systems.

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary deep packet inspection (DPI)  (SearchNetworking.com) Deep packet inspection (DPI) is an advanced method of packet filtering that functions at the Application layer of the OSI (Open Systems... FCAPS  (SearchNetworking.com)