Create Ingress and Egress Tunnel (Nutanix)

Traffic from the GigaVUE V Series Node is distributed to tunnel endpoints in a monitoring session. A tunnel endpoint can be created using a standard L2GRE, VXLAN, or ERSPAN tunnel.

To create a new tunnel endpoint:

  1. After creating a new monitoring session, or click Edit on an existing monitoring session, the GigaVUE-FM canvas appears.
  2. In the canvas, select New > New Tunnel, drag and drop a new tunnel template to the workspace. The Add Tunnel Spec quick view appears.
  3. On the New Tunnel quick view, enter or select the required information as described in the following table.

    Field

    Description

    Alias

    The name of the tunnel endpoint.

    Note:  Do not enter spaces in the alias name.

    Description

    The description of the tunnel endpoint.

    Type

    The type of the tunnel.

    Select ERSPAN, or L2GRE, or VXLAN, or UDPGRE to create a tunnel.

    VXLAN

    Traffic Direction

    The direction of the traffic flowing through the GigaVUE V Series Node.

    Note:  In the scenario where secure tunnels needs to be established between GigaVUE V Series and a GigaVUE HC Series , you can utilize the Configure Physical Tunnel option provided at the GigaVUE V Series Secure Tunnel page. This allows you to conveniently configure secure tunnels at your physical device . Refer to Secure Tunnels section.

    In

    Choose In (Decapsulation) for creating an Ingress tunnel, traffic from the source to the GigaVUE V Series Node.

    IP Version

    The version of the Internet Protocol. Select IPv4 or IPv6.

    Remote Tunnel IP

    For Ingress tunnel, Remote Tunnel IP is the IP address of the tunnel source.

    VXLAN Network Identifier

    Unique value which is used to identify the VXLAN. The value ranges from 1 to 16777215.

    Source L4 Port

    Port from which the connection will be established to the target. For Example, if A is the source and B is the destination, this port value belongs to A.

    Destination L4 Port

    Port to which the connection will be established from the source. For Example, if A is the source and B is the destination, this port value belongs to B.

    Out

    Choose Out (Encapsulation) for creating an Egress tunnel from the V Series node to the destination endpoint.

    Remote Tunnel IP

    For Egress tunnel, Remote Tunnel IP is the IP address of the tunnel destination endpoint.

    MTU

    The Maximum Transmission Unit (MTU) is the maximum size of each packet that the tunnel endpoint can carry. The default value is 1500.

    Time to Live

    Enter the value of the time interval for which the session needs to be available. The value ranges from 1 to 255. The default value is 64.

    DSCP

    Differentiated Services Code Point (DSCP) are the values, which network devices use to identify traffic to be handled with higher or lower priority. The values ranges from 0 to 63 with 0 being the highest priority and 63 as the lowest priority.

    Flow Label

    Unique value which is used to identify packets that belong to the same flow. A flow is a sequence of packets that need to be treated as a single entity that may require special handling. Accepted value is between 0 and 1048575

    VXLAN Network Identifier

    Unique value which is used to identify the VXLAN. The value ranges from 1 to 16777215.

    Source L4 Port

    Port from which the connection will be established to the target. For Example, if A is the source and B is the destination, this port value belongs to A.

    Destination L4 Port

    Port to which the connection will be established from the source. For Example, if A is the source and B is the destination, this port value belongs to B.

    L2GRE

    Traffic Direction

    The direction of the traffic flowing through the GigaVUE V Series Node.

    Note:  In the scenario where secure tunnels needs to be established between GigaVUE V Series and a GigaVUE HC Series , you can utilize the Configure Physical Tunnel option provided at the GigaVUE V Series Secure Tunnel page. This allows you to conveniently configure secure tunnels at your physical device . Refer to Secure Tunnels section.

    In

    Choose In (Decapsulation) for creating an Ingress tunnel, traffic from the source to the GigaVUE V Series Node.

    IP Version

    The version of the Internet Protocol. Select IPv4 or IPv6.

    Remote Tunnel IP

    For Ingress tunnel, Remote Tunnel IP is the IP address of the tunnel source.

    Key

    Identifier used to differentiate different UPDGRE/L2GRE tunnels. It is used to route the encapsulated frames to the appropriate tunnel on the remote endpoint. Enter value between 0 and 4294967295.

    Out

    Choose Out (Encapsulation) for creating an Egress tunnel from the V Series node to the destination endpoint.

    Remote Tunnel IP

    For Egress tunnel, Remote Tunnel IP is the IP address of the tunnel destination endpoint.

    MTU

    The Maximum Transmission Unit (MTU) is the maximum size of each packet that the tunnel endpoint can carry. The default value is 1500.

    Time to Live

    Enter the value of the time interval for which the session needs to be available. The value ranges from 1 to 255. The default value is 64.

    DSCP

    Differentiated Services Code Point (DSCP) are the values, which network devices use to identify traffic to be handled with higher or lower priority. The values ranges from 0 to 63 with 0 being the highest priority and 63 as the lowest priority.

    Flow Label

    Unique value which is used to identify packets that belong to the same flow. A flow is a sequence of packets that need to be treated as a single entity that may require special handling. Accepted value is between 0 and 1048575.

    Key

    Identifier used to differentiate different UPDGRE/L2GRE tunnels. It is used to route the encapsulated frames to the appropriate tunnel on the remote endpoint. Enter value between 0 and 4294967295.

    ERSPAN

    Traffic Direction

    The direction of the traffic flowing through the GigaVUE V Series Node.

    In

    IP Version

    The version of the Internet Protocol. Select IPv4 or IPv6.

    Remote Tunnel IP

    For Ingress tunnel, Remote Tunnel IP is the IP address of the tunnel source.

    Flow ID

    The ERSPAN flow ID is a numerical identifier that distinguishes different ERSPAN sessions or flows. The value ranges from 1 to 1023.

    TLS-PCAPNG

    Traffic Direction

    The direction of the traffic flowing through the GigaVUE V Series Node.

    Note:  In the scenario where secure tunnels needs to be established between GigaVUE V Series and a GigaVUE HC Series , you can utilize the Configure Physical Tunnel option provided at the GigaVUE V Series Secure Tunnel page. This allows you to conveniently configure secure tunnels at your physical device . Refer to Secure Tunnels section.

    In

    IP Version

    The version of the Internet Protocol. only IPv4 is supported.

    Remote Tunnel IP

    For Ingress tunnel, Remote Tunnel IP is the IP address of the tunnel source.

    MTU

    The Maximum Transmission Unit (MTU) is the maximum size of each packet that the tunnel endpoint can carry. The default value is 1500.

    Time to Live

    Enter the value of the time interval for which the session needs to be available. The value ranges from 1 to 255. The default value is 64.

    DSCP

    Differentiated Services Code Point (DSCP) are the values, which network devices use to identify traffic to be handled with higher or lower priority. The values ranges from 0 to 63 with 0 being the highest priority and 63 as the lowest priority.

    Flow Label

    Unique value which is used to identify packets that belong to the same flow. A flow is a sequence of packets that need to be treated as a single entity that may require special handling. Accepted value is between 0 and 1048575

    Source L4 Port

    Port from which the connection will be established to the target. For Example, if A is the source and B is the destination, this port value belongs to A.

    Destination L4 Port

    Port to which the connection will be established from the source. For Example, if A is the source and B is the destination, this port value belongs to B.

    Cipher

    Only SHA 256 is supported.

    TLS Version

    Only TLS Version1.3.

    Selective Acknowledgments

    Enable to receive the acknowledgments.

    Sync Retries

    Enter the value for number of times the sync has to be tried. The value ranges from 1 to 6.

    Delay Acknowledgments

    Enable to receive the acknowledgments when there is a delay.

  4. Click Save.

To delete a tunnel, select the required tunnel and click Delete.