OPBNOS R2.8
Release
  • Open Packet Broker
  • What's New?
  • Getting Started
    • Licensing
    • Limitations
    • Image Management
      • Installing OPBNOS from ONIE
      • Installing OPBNOS from USB Drive
      • Image Upgrade from OPBNOS
      • Selecting OPBNOS on next boot
      • Removing available images
      • Rebooting the Switch
    • Supported Platforms
    • Scalability
    • Downloads
  • CLI Configuration Guide
    • Configuring License
    • Configuring Hostname
    • Configuring Username
    • On-Box FlowVision
    • Configuring AAA
      • Configuring AAA
      • Configuring TACACS
      • Configuring RADIUS
    • Configure Packet Timestamping
    • Interface Management
      • Configuring Management Interface
      • Configuring Physical Interface
    • Link Layer Discovery Protocol (LLDP)
      • Enabling LLDP
      • Displaying LLDP Neighbors
    • Configuring Interface Description
    • Configuring Auto Negotiation
    • Configuring FEC
    • Configuring Maximum Transition Unit
    • Configuring Port Speed
    • Configuring Port Breakout
    • Configuring Interface Type
    • Configuring VLAN Modes
    • Configuring Loopback Mode
    • Configuring Packet Slicing
    • Configuring Ingress VLAN
    • Configuring Egress Tagging
    • Configuring Rx-only
    • Configuring Tx-only
    • Configuring An-clause
    • Configuring PortChannel
    • Configuring LAG Hash
    • Configuring Flows and Rules
      • Configuring Network Ports
      • Configuring Tool Ports
      • Configuring Flows
      • Configuring Flow Description
      • Configuring Flow Rules (NVIDIA)
      • Configuring Flow Rules (Broadcom)
      • Configuring Flow Match Expression Rules
      • Configuring Flow UDF Rules
      • Configuring Push/Pop VLAN
      • Configuring Flow Override Action(s)
      • Display Flow Information
      • Clear Flow Counters
    • Configuring GTP Flow
    • Configuring IPv6 Reachability Check
    • Configuring VXLAN Flow
    • Configuring VXLAN Stripping
    • Configuring SNMP
      • Configure SNMP community
      • Configuring SNMP Trap
      • Configuring SNMP Threshold
      • Configuring SNMP User
      • Configuring SNMP Location
      • Configuring SNMP Contact
    • Configuring SYSLOG
    • Ping
    • Traceroute
    • Configuring NTP
    • Configuring Timezone
    • Configuring sFlow
    • Display Interface Information
      • Front Panel Port Mapping
    • Display System Information
      • Interface Transceiver Information
      • System Uptime
      • Reboot Cause
      • Show Environment
      • Show System Memory
      • Show Docker Memory
      • Show Services
      • Show Platform Fan
      • Show platform pcieinfo
      • Show Platform PSU
      • Show Platform SSD
      • Show Platform Summary
      • Show Platform Syseeprom
      • Show Platform Temperature
    • Configuration Management
      • Copying Configuration from Switch
      • Copying Running and Startup Configuration
      • Saving Configuration
      • Display Configuration
      • Clearing Startup configuration
    • Zero Touch Provisioning
      • DHCP Discovery
      • ZTP Boot File
      • Enable ZTP
    • Troubleshooting
  • Aviz FlowVision Graphical User Interface Guide
    • FlowVision Controller Installation
      • FV ESXi Host Installation
      • FV VirtualBox Installation
    • System
      • Viewing the Dashboard
      • Accessing System and Device Information
      • Managing Topologies
      • Managing Devices
      • Viewing System Log
      • Managing Users
      • Performing Backup and Restore
      • Viewing Audit Logs
    • Configuration
      • Configuring Ports
      • Configuring Port Groups
      • Configuring Rule Templates
      • Configuring Vxlan Tunnel
      • Configuring Flows
      • Configuring VLAN
      • Configuring SNMP Trap
    • Statistics
      • Viewing Port Statistics
      • Viewing Flow Statistics
    • Help
  • REST API Guide
    • FLOW
    • Interface Management
    • Port Channel
    • LLDP
    • SNMP
    • System and Platform
    • Statistics
  • Use Cases
    • For Engineers
      • VxLAN Deployment (NVIDIA)
      • GTP Deployment
      • Truncation and Load Balancing
      • Ingress VLAN and Egress Tagging
      • Loopback-mode Port
      • VXLAN Stripping
      • VLAN Mode/Tag Actions
    • Command Reference
      • Converting Network-to-Tool port
      • Configuring 1G Electrical SFP
      • Enabling FlowVision On-box Support
  • Solution Integration
    • Network Visibility and Analysis with OPB, Arkime, Elasticsearch & Kibana
      • Installation Pre-Requisites
      • Solution Components
      • Configuring OPBNOS
      • Installing Arkime
      • Installing Kibana
      • Troubleshooting
  • Support
    • How to contact Aviz Networks Support?
Powered by GitBook
On this page
  • Enable GTP Parsing
  • GTP Rule Match For Inner Headers

Was this helpful?

Export as PDF
  1. CLI Configuration Guide

Configuring GTP Flow

PreviousClear Flow CountersNextConfiguring IPv6 Reachability Check

Was this helpful?

Enable GTP Parsing

Reference

Command

gtp no gtp

Description

Global GTP Parsing

Parameters

None

Mode

EXEC

Example

//enabling GTP
pbnoscli(config)# gtp 

//disabling GTP
pbnoscli(config)# no gtp

GTP Rule Match For Inner Headers

Using the following commands, you can configure a rule with GTP packet qualifiers to monitor the packets.

  • Before configuring rules, network and tool ports must be configured.

  • GTP must be enabled in config mode.

GTP and UDF can not be configured together on a device

Reference

Command

rule <ruleid> ( permit ) [description <cstring>] [gtp <gtpexpression> ] [counters (enable | disable)]

no rule <ruleid>

Description

Rule Configuration

Parameters

ruleid: It should be in the range 1 to 6000 description: max 50 characters.

gtp Example qualifiers: teid - Tunnel ID, match-all-ipv4 - Match all inner IPv4, match-all-ipv6 - Match all inner IPv6 ,inner-sip - Inner IP Source Address, inner-dip - Inner IP Destination Address, inner-protocol - Inner Header Protocol, inner_l4srcport - Inner Header UDP Source Port, inner_l4destport - Inner Header UDP Destination Port

Mode

FLOW

Example

pbnoscli# configure terminal 
pbnoscli(config)# flow flow01
pbnoscli(config-flow-flow01)# network-ports Ethernet1/1
pbnoscli(config-flow-flow01)# tool-ports Ethernet4/1
pbnoscli(config-flow-flow01)# rule 1 permit gtp "teid 0x11112222 inner-sip 10.10.10.10/24 inner-dip 20.20.20.20/24 inner_protocol tcp inner_l4srcport 2152 inner_l4destport 2153" counters enable
pbnoscli(config-flow-flow01)# rule 2 permit gtp "teid 0x11112222 inner-sip 1001:11::1 inner-smask ffff:: inner-dip 2002:22::2 inner-dmask f::f inner_protocol tcp inner_l4srcport 2152 inner_l4destport 2153" counters enable
pbnoscli(config-flow-flow01)#

To verify flow, use the following command:

pbnoscli# show flow summary 
Flow-Name       Rule-Id        Status      Counter-Value
=========================================================
flow01          2             Active          3574             
flow01          1             Active          1123               
pbnoscli# 

pbnoscli# show flow all
===================================
Flow : flow01 (CLI)
===================================
Status       : enable          
Network-Port : Ethernet1/1     
Tool-Port    : Ethernet4/1     

Rule : 1               
++++++++++++++++++++++++++++++++++
TEID                     : 0x11112222      
Inner Source IP          : 10.10.10.10     
Inner Source Mask        : 255.255.255.0   
Inner Destination IP     : 20.20.20.20     
Inner Destination Mask   : 255.255.255.0   
Inner Protocol           : tcp             
Inner Source l4port      : 2152            
Inner Destination l4port : 2153            
Action                   : permit          
Counters                 : enable          

Rule : 2               
++++++++++++++++++++++++++++++++++
Inner Source IP          : 1001:11::1      
Inner Source Mask        : ffff::          
Inner Destination IP     : 2002:22::2      
Inner Destination Mask   : f::f            
Inner Protocol           : tcp             
Inner Source l4port      : 2152            
Inner Destination l4port : 2153            
Action                   : permit          
pbnoscli# 
pbnoscli# show running-config
configure terminal
gtp
interface ethernet Ethernet120
forward-error-correction rs
type network
!
interface ethernet Ethernet124
forward-error-correction rs
type tool
!
interface mgmt
ip address 10.4.4.52/24 gateway 10.4.4.1
!
flow flow01
network-ports Ethernet1/1
tool-ports Ethernet4/1
rule 1 permit gtp "teid 0x11112222 inner-sip 10.10.10.10/24 inner-dip 20.20.20.20/24 inner_protocol tcp inner_l4srcport 2152 inner_l4destport 2153" counters enable
rule 2 permit gtp ""teid 0x11112222 inner-sip 1001:11::1 inner-smask ffff:: inner-dip 2002:22::2 inner-dmask f::f inner_protocol tcp inner_l4srcport 2152 inner_l4destport 2153"
!
pbnoscli#
GTP