OPBNOS R2.5
Release
  • Open Packet Broker
  • What's New?
  • Getting Started
    • Licensing
    • Limitations
    • Image Management
      • Installing OPBNOS from ONIE
      • Installing OPBNOS from USB Drive
      • Image Upgrade from OPBNOS
      • Selecting OPBNOS on next boot
      • Removing available images
      • Rebooting the Switch
    • Supported HwSku
    • Scalability
    • Downloads
  • CLI Configuration Guide
    • Configuring License
    • Configuring Hostname
    • Configuring Username
    • On-Box FlowVision
    • Configuring AAA
      • Configuring AAA
      • Configuring TACACS
      • Configuring RADIUS
    • Interface Management
      • Configuring Management Interface
      • Configuring Physical Interface
    • Link Layer Discovery Protocol (LLDP)
      • Enabling LLDP
      • Displaying LLDP Neighbors
    • Configuring Interface Description
    • Configuring Auto Negotiation
    • Configuring FEC
    • Configuring Maximum Transition Unit
    • Configuring Port Speed
    • Configuring Interface Type
    • Configuring VLAN Modes
    • Configuring Loopback Mode
    • Configuring Packet Slicing
    • Configuring Ingress VLAN
    • Configuring Egress Tagging
    • Configuring Tx-only
    • Configuring An-clause
    • Configuring PortChannel
    • Configuring LAG Hash
    • Configuring Flows and Rules
      • Configuring Network Ports
      • Configuring Tool Ports
      • Configuring Flows
      • Configuring Flow Description
      • Configuring Flow Rules (NVIDIA)
      • Configuring Flow Rules (Broadcom)
      • Configuring Flow Match Expression Rules
      • Configuring Flow UDF Rules
      • Configuring Push/Pop VLAN
      • Configuring Flow Override Action(s)
      • Display Flow Information
      • Clear Flow Counters
    • Configuring GTP Flow
    • Configuring VxLAN Flow
    • Configuring SNMP
      • Configure SNMP community
      • Configuring SNMP Trap
      • Configuring SNMP Threshold
      • Configuring SNMP User
      • Configuring SNMP Location
      • Configuring SNMP Contact
    • Configuring SYSLOG
    • Ping
    • Traceroute
    • Configuring NTP
    • Configuring Timezone
    • Configuring sFlow
    • Display Interface Information
      • Front Panel Port Mapping
    • Display System Information
      • Interface Transceiver Information
      • System Uptime
      • Reboot Cause
      • Show Environment
      • Show System Memory
      • Show Docker Memory
      • Show Services
      • Show Platform Fan
      • Show platform pcieinfo
      • Show Platform PSU
      • Show Platform SSD
      • Show Platform Summary
      • Show Platform Syseeprom
      • Show Platform Temperature
    • Configuration Management
      • Copying Files To Device
      • Copying Files From Device
      • Copying Running and Startup Configuration
      • Saving Configuration
      • Display Configuration
      • Clearing Startup configuration
    • Zero Touch Provisioning
      • DHCP Discovery
      • ZTP Boot File
      • Enable ZTP
    • Troubleshooting
  • Aviz FlowVision Graphical User Interface Guide
    • FlowVision Controller Installation
      • FV ESXi Host Installation
      • FV VirtualBox Installation
    • System
      • Viewing the Dashboard
      • Accessing System and Device Information
      • Managing Topologies
      • Managing Devices
      • Viewing System Log
      • Managing Users
      • Performing Backup and Restore
      • Viewing Audit Logs
    • Configuration
      • Configuring Ports
      • Configuring Port Groups
      • Configuring Rule Templates
      • Configuring Flows
    • Statistics
      • Viewing Port Statistics
      • Viewing Flow Statistics
    • Help
  • REST API Guide
    • FLOW
    • Interface Management
    • Port Channel
    • LLDP
    • SNMP
    • System and Platform
    • Statistics
  • Use Cases
    • For Engineers
      • VxLAN Deployment (NVIDIA)
      • GTP Deployment
      • Truncation and Load Balancing
      • Ingress VLAN and Egress Tagging
      • Loopback-mode Port
      • VLAN Mode/Tag Actions
    • Command Reference
      • Converting Network-to-Tool port
      • Configuring 1G Electrical SFP
      • Enabling FlowVision On-box Support
  • Solution Integration
    • Network Visibility and Analysis with OPB, Arkime, Elasticsearch & Kibana
      • Installation Pre-Requisites
      • Solution Components
      • Configuring OPBNOS
      • Installing Arkime
      • Installing Kibana
      • Troubleshooting
  • Support
    • How to contact Aviz Networks Support?
Powered by GitBook
On this page

Was this helpful?

  1. Solution Integration
  2. Network Visibility and Analysis with OPB, Arkime, Elasticsearch & Kibana

Configuring OPBNOS

PreviousSolution ComponentsNextInstalling Arkime

Last updated 1 year ago

Was this helpful?

Aviz OPBNOS provides a highly scalable, flexible and affordable solution to aggregate, filter and load balance network traffic from hardware or virtual TAPs to connected tools for analysis and visualization.

It provides line rate traffic forwarding using switching ASIC by configuring flow paths between two or multiple ports, By leveraging the OPBNOS solution, enterprises can quickly be scaled up or down to meet the ever-changing demands of network visibility and security tools.

  • Download the latest build of OPBNOS from

  • OPBNOS can be installed by following the

  • Login into the switch with default credentials

    • User: admin

    • Password: admin

  • Configure 

configure terminal
interface mgmt
ip address 10.4.4.96/23 gateway 10.4.4.1
end

  • Configure , these are the ports that connect to network-taps

configure terminal
interface ethernet Ethernet63/1
forward-error-correction rs
type network
end

  • Configure , these are the ports that connect to security tools

configure terminal
interface ethernet Ethernet64/1
forward-error-correction rs
type tool
end
// Traffic Truncation (IPv4 and IPv6)

configure terminal
interface ethernet Ethernet63/1 
truncate 64

// Traffic Redirection (L2 and L3 Traffic)

configure terminal
flow flow01
network-ports Ethernet63/1
tool-ports Ethernet64/1
rule 1 permit vlan 100 counters enable
rule 2 permit vlan 512 counters enable
rule 3 permit src-ip 10.10.10.1/32 dest-ip 20.20.20.1/32 counters enable
rule 4 permit src-ip 213.22.1.2/32 dest-ip 112.23.42.2/32 protocol udp counters enable
enable
end
// LoadBalance Traffic on Multiple Tool Ports

// Traffic Distribution (IPv4 and IPv6) and Symmetric Hashing
configure terminal
port-group 10 ports Ethernet6/1, Ethernet7/1

flow flow2
network-ports Ethernet63/1
tool-ports port-channel10
rule 1 permit src-ip 1.1.1.1/32 dest-ip 2.2.2.2/32 protocol tcp counters enable
rule 2 permit src-ip 2401::1 src-netmask f::f dest-ip 2401::2 dest-netmask f::f counters enable
enable
end

  • Verify configured flow

pbnoscli# show flow summary
Flow-Name       Rule-Id        Status      Counter-Value
=========================================================
flow01          2             Active          52562              
flow01          1             Active          56289              
pbnoscli#
pbnoscli# show running-config          
configure terminal
interface ethernet Ethernet248
forward-error-correction rs
type network
!
interface ethernet Ethernet252
forward-error-correction rs
type tool
!
interface mgmt
ip address 10.4.4.96/23 gateway 10.4.4.1
!
port-group 10 ports Ethernet6/1, Ethernet7/1
flow flow01
enable
network-ports Ethernet63/1
tool-ports port-group10
rule 1 permit src-ip 10.10.10.1/32 dest-ip 20.20.20.1/32 counters enable
rule 2 permit src-ip 213.22.1.2/32 dest-ip 112.23.42.2/32 protocol udp counters enable
!
pbnoscli#

to filter and forward traffic

The same rules can also be configured by using the :

here
installation guide
Management IP
network ports
tool ports
Configure flow
Aviz FlowVision
Aviz FlowVision
Aviz FlowVision