<html><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div>Is it possible to mirror outbound / egress packets via ACL on an XMR with 5.1.00b?</div><div><br></div><div>I'm guessing not since I see no outbound ACL reference in the config guide and some quick testing in the lab yields unfavorable results. Thought I'd hit this mailing list in case I'm missing something simple.</div><div><br></div><div>For reference, this is not working:</div><div><font class="Apple-style-span" face="'Courier New'">!</font></div><div><div><font class="Apple-style-span" face="'Courier New'">interface ethernet 4/4</font></div><div><font class="Apple-style-span" face="'Courier New'"> ip access-group example_in in </font></div><div><font class="Apple-style-span" face="'Courier New'"> ip access-group example_out out </font></div><div><font class="Apple-style-span" face="'Courier New'"> acl-mirror-port ethernet 1/11</font></div><div><div><font class="Apple-style-span" face="'Courier New'">! </font></div><div><font class="Apple-style-span" face="'Courier New'">ip access-list extended example_in </font></div><div><font class="Apple-style-span" face="'Courier New'"> permit ip host 192.168.1.192 any mirror </font></div><div><font class="Apple-style-span" face="'Courier New'"> permit ip host 192.168.1.194 any mirror </font></div><div><font class="Apple-style-span" face="'Courier New'"> permit ip any any </font></div><div><font class="Apple-style-span" face="'Courier New'">! </font></div><div><font class="Apple-style-span" face="'Courier New'">ip access-list extended example_out </font></div><div><font class="Apple-style-span" face="'Courier New'"> permit ip any host 192.168.1.192 mirror </font></div><div><font class="Apple-style-span" face="'Courier New'"> permit ip any host 192.168.1.194 mirror </font></div><div><font class="Apple-style-span" face="'Courier New'"> permit ip any any </font></div><div><font class="Apple-style-span" face="'Courier New'">! </font></div></div></div><div><br></div><div>But there's traffic matching my mirror entries on the egress ACL:</div><div><br></div><div><div><font class="Apple-style-span" face="'Courier New'">telnet@name(config-if-e10000-4/4)#show acc account ethe 4/4 out </font></div><div><font class="Apple-style-span" face="'Courier New'"><br></font></div><div><font class="Apple-style-span" face="'Courier New'">Outbound: ACL example</font></div><div><font class="Apple-style-span" face="'Courier New'"><br></font></div><div><font class="Apple-style-span" face="'Courier New'">Collecting ACL accounting for 4/4 ... Completed successfully.</font></div><div><font class="Apple-style-span" face="'Courier New'"> 2: permit ip any any </font></div><div><font class="Apple-style-span" face="'Courier New'"> Hit count: (1 sec) 1 (1 min) 30</font></div><div><font class="Apple-style-span" face="'Courier New'"> (5 min) 156 (accum) 523</font></div><div><font class="Apple-style-span" face="'Courier New'"> 0: permit ip any host 192.168.1.192 mirror </font></div><div><font class="Apple-style-span" face="'Courier New'"> Hit count: (1 sec) 0 (1 min) 22</font></div><div><font class="Apple-style-span" face="'Courier New'"> (5 min) 110 (accum) 364</font></div><div><font class="Apple-style-span" face="'Courier New'"> 1: permit ip any host 192.168.1.194 mirror </font></div><div><font class="Apple-style-span" face="'Courier New'"> Hit count: (1 sec) 0 (1 min) 0</font></div><div><font class="Apple-style-span" face="'Courier New'"> (5 min) 0 (accum) 9</font></div><div><font class="Apple-style-span" face="'Courier New'">telnet@name(config-if-e10000-4/4)# </font></div></div></body></html>