[c-nsp] erspan for just one IP
Mack McBride
mack.mcbride at viawest.com
Thu Jan 12 10:34:39 EST 2012
It is ugly but you can use a vlan acl to capture on a remote span session then forward out a port that is connected back to the device for ERSPAN. Not pretty but this can be used for ERSPAN or MPLS forwarding.
LR Mack McBride
Network Architect
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Andriy Bilous
Sent: Thursday, January 12, 2012 6:24 AM
To: Robert Hass
Cc: cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] erspan for just one IP
Depending on your hardware and topology you might be able to xconnect RSPAN session through your L3. RSPAN supports ACLs to filter monitored traffic.
http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.2SX/configuration/guide/span.html#wp1033684
* You can use output access control lists (ACLs) on the RSPAN VLAN in the RSPAN source switch to filter the traffic sent to an RSPAN destination.
On Thu, Jan 12, 2012 at 3:44 AM, Robert Hass <robhass at gmail.com> wrote:
> Hi
>
> Is any way to have ERSPAN (on Cat6500) where traffic is copied only
> for one IP within VLAN.
> Eg. VLAN400, IP 2.2.2.2 (where VLAN consist /16 subnet and 2k active
> hosts)
>
> Robert
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list