Fortinet Document Library

Version:


Table of Contents

GCP Administration Guide

6.4.0
Download PDF
Copy Link

Creating the packet mirroring policy

This policy mirrors the contents of VPC 1 and reflects them on the mirror VPC.

To create the packet mirroring policy:
  1. Go to VPC network > Packet mirroring > CREATE POLICY.
  2. From the Region dropdown list, select the same region selected for previous resources.
  3. Under Policy enforcement, select Enabled. Click CONTINUE.
  4. Select the VPC network:
    1. Select Mirrored source and collector destination are in separate, peered VPC networks.
    2. From the Mirrored source VPC network dropdown list, select VPC 1.
    3. From the Collector destination VPC network dropdown list, select the mirror VPC. Click CONTINUE.
  5. Click Select one or more subnetworks.
  6. From the dropdown list, select VPC 1. Click CONTINUE.
  7. The collector destination must be a GCP load balancer. From the Collector destination dropdown list, select the frontend name of the load balancer that you created in To create an internal load balancer for the packet mirroring policy:. Click CONTINUE.
  8. Select Mirror all traffic. Alternatively, you can monitor traffic between specific instances using instance tags.

Creating the packet mirroring policy

This policy mirrors the contents of VPC 1 and reflects them on the mirror VPC.

To create the packet mirroring policy:
  1. Go to VPC network > Packet mirroring > CREATE POLICY.
  2. From the Region dropdown list, select the same region selected for previous resources.
  3. Under Policy enforcement, select Enabled. Click CONTINUE.
  4. Select the VPC network:
    1. Select Mirrored source and collector destination are in separate, peered VPC networks.
    2. From the Mirrored source VPC network dropdown list, select VPC 1.
    3. From the Collector destination VPC network dropdown list, select the mirror VPC. Click CONTINUE.
  5. Click Select one or more subnetworks.
  6. From the dropdown list, select VPC 1. Click CONTINUE.
  7. The collector destination must be a GCP load balancer. From the Collector destination dropdown list, select the frontend name of the load balancer that you created in To create an internal load balancer for the packet mirroring policy:. Click CONTINUE.
  8. Select Mirror all traffic. Alternatively, you can monitor traffic between specific instances using instance tags.