238 BigIron RX Series Configuration Guide53-1001810-01Deploying a LAG8When the deploy command is executed:For a static and dynamic LAGs, the current trunk veto mechanism is invoked to make sure the trunkcan be formed. If the trunk is not vetoed, a trunk is formed with all the ports in the LAG.For dynamic LAGs, LACP is activated on all LAG ports. When activating LACP, use active mode ifpassive is not specified; otherwise, use passive mode.For a keep-alive LAGs, no trunk is formed, and LACP is started on the LAG port.Once the deploy command is issued, all LAG ports will behave like a single port.If the no deploy command is executed, the trunk is removed. For dynamic LAGs, LACP isde-activated on all of the LAG ports.If the no deploy command is issued and more than 1 LAG port is not disabled the command isaborted and the following error message is displayed: “Error 2 or more ports in the LAG are notdisabled, un-deploy this LAG may form a loop - aborted.” Using the forced keyword with the nodeploy command in the previous situation, the un-deployment of the LAG is executed.Commands available under LAG once it is deployedOnce a LAG has been deployed, the following configurations can be performed on the deployedLAG:• Configuring ACL-based Mirroring• Disabling Ports within a LAG• Enabling Ports within a LAG• Monitoring and Individual LAG Port• Assigning a name to a port within a LAG• Enabling sFlow Forwarding on a port within a LAG• Setting the sFlow Sampling Rate for a port within a LAGConfiguring ACL-based mirroringACL-based mirroring can be configured for an individual port within a LAG using the acl-mirror-portcommand, as shown in the following.BigIron RX(config)# lag blue staticBigIron RX(config-lag-blue)# deployBigIron RX(config-lag-blue)# acl-mirror-port ethe-port-monitored 3/1Syntax: [no] acl-mirror-port ethe-port-monitored [slot/port] | named-port-monitored [name]Use the ethe-port-monitored option with the appropriate [slot/port] variable to specify a Ethernetport that you want to provide ACL mirroring for.Use the named-port-monitored option with the appropriate [slot/port] variable to specify a namedport that you want to provide ACL mirroring for.NOTEMirror (analyzer) ports cannot be assigned to the 16x10G card. You can monitor traffic on 16x10ports.