Cisco Switching/Routing :: How Many VLANs Can Span In Monitor Session On Nexus 7K

Mar 3, 2013

rsbd7k01-p-vdca(config)# monitor session 2
rsbd7k01-p-vdca(config-monitor)# source vlan ?
<1-3967> 
rsbd7k01-p-vdca(config-monitor)# source vlan 1 - 3967
ERROR: vlan 33-3967: Number of source vlans exceeds maximum
rsbd7k01-p-vdca(config-monitor)#

View 3 Replies


ADVERTISEMENT

Cisco Switching/Routing :: Monitor Session Local SPAN Small Output With 7606

Aug 22, 2012

I am having difficulties with getting SPAN traffic over my WS-X6704-10GE (CFC).
 
CISCO7606
ios 12.2(33)SRE6, SUP720-3BXL
 
Trying to use the span feature, put the commands listed below in and they entered successfully, but the port is not being mirrored.
 
interface TenGigabitEthernet1/1
description PUBLIC
dampening
mtu 9216
ip address x.x.x.x x.x.x.x
 [Code]....

View 1 Replies View Related

Cisco Switching/Routing :: NEXUS 7k Span Session Getting Twice Data To Port

Jun 9, 2013

I'm setting up a montitor session on a NEXUS 7K as below.we are receiving in 150M of data and 0 data going out port 9/25.but port 4/24 shows 300M to the span port?

View 1 Replies View Related

Cisco Switching/Routing :: 6513 Span Session Limit?

Jul 12, 2012

I have a need to capture some traffic but my core 6513's are already using the limit of 2 span sessions. I can't edit any of the sessions either because I want to source traffic from vlans and you can only do one or the other. Is using a VACL with 'switchport capture' on the destination interface an option ? E.g. I want to source traffic from vlan 10,20,30,40 and send the all to interface Gi10/10 ? Is there any caveats ? I dont need to be too granular with the ACL's but just capture all traffic in those vlans.

View 2 Replies View Related

Cisco Switching/Routing :: Catalyst 6500 - Cannot See Return Traffic On SPAN Session?

Jan 31, 2012

On a Catalyst 6500, we configured a SPAN session with VLAN 300 as a source. We configured the session bi-directional ("both" keyword). We connect a sniffer on the SPAN destination port.
 
Strangely enough, we only see the traffic from the VRF to the firewall, but not the reverse traffic ! What can be the problem ?

View 2 Replies View Related

Cisco Switching/Routing :: CAT6500 / Duplicate Multicast Packets On A Span Session Port?

Apr 17, 2013

If I monitor a trunkport on the rootbridge in both directions  I get Duplicate Multicast Packets on the perticular VLAN.   The first guess is, that this is worked as designed and not a IOS Bug (Platform CAT6500 SUP720 IOS 12.2(33)SXI9 ) Until know I only found an old Cisco press link from 2002 with this subject.

View 2 Replies View Related

Cisco Switching/Routing :: Set Up A Monitor Session With 3750 Stack

Aug 20, 2012

i have just set up a monitor session with a 3750 stack .Simple enough task you would think.But i only seem to be seeing broadcast packets !!Now there is definitely unicast traffic being used on the host i am monitoring.I have done the basic commands

-monitor session 1 dest int fas 5/0/24

-monitor session 1 src int fas 5/0/34

View 1 Replies View Related

Cisco Switching/Routing :: Nexus 7000 Span Limitation

Apr 18, 2012

I've learned recently that the Nexus 7000 only allows the configuration of a maximum of 2 Monitor sessions for spanning traffic. I only have one monitor session left and I need to do the following. 2 Core Nexus 7000 boxes with 2 different traffic probes/sniffers to each nexus( eg Sniffer 1 connects to Switch A on interface eth 1 and to Switch B on eth 1 ; Sniffer 2 connects to Switch A on eth 2 and to Switch B on eth 2.) My plan was to setup a standard session with multiple sources and destinations then on the interfaces connecting to the sniffers run a trunk and do 'sw trunk allowed xxxxx' and filter what I need to go to each sniffer box. However I've recently found out that some of my source traffic is coming from Port-Channel interfaces. Is there a way I can get around this and still do the filtering within only 1 monitor session ?

View 1 Replies View Related

Cisco Switching/Routing :: 6509 - Nexus And Span Sessions

Oct 24, 2011

I am in the early planning stages for a 6509 to Nexus 7K migration. Based on my experience with the 7K's at a previous company where we ran into a lot of issues, I am trying to be very careful.
 
I am more at home with the 6500 chassis and know what I can do with them.  I remember running into a limitation on the Nexus that involved their not supporting span sessions like the 6500's do.  Is that still the case ? 
 
If that isnt an option in the short term, I will need to look at a substantial investment in ethernet tap's to replace the lost span functionality because the security group's heavy use of span sessions.

View 1 Replies View Related

Cisco Switching/Routing :: Unable To Clear Monitor Session From 6500

Mar 6, 2013

I tried to clear monitor session on 6500 and keep on getting the following error:
 
 %Another session parameters or permit-list is being configured %Please wait for another configuration to complete.
 
how i can go about clearing the monitor session.

View 9 Replies View Related

Cisco Switching/Routing :: Couldn't Clear Monitor Session From 6500

Nov 21, 2011

I tried to clear monitor session on 6500 and keep on getting the following error:
  
%Another session parameters or permit-list is being configured %Please wait for another configuration to complete.
 
how i can go about clearing the monitor session.

View 1 Replies View Related

Cisco Switching/Routing :: Nexus 7K (6.x) / SPAN To Multiple Destinations Does Not Work

May 18, 2013

I have a single Nexus 7K (6.x) with only F2 modules and I would like to SPAN the same source interfaces and vlans to mulitple destination servers (interfaces).  When configuring SPAN to a single destination traffic gets replicated successfully but when I add an additional destination to the same SPAN session then none of the destination interfaces receive any traffic.  As soon as modify the SPAN to include only a single destination interface it works again.  I'm guess this is a limitation of the Nexus 7K 6.x code or the F2 modules. 

View 4 Replies View Related

Cisco Switching/Routing :: Monitor Session In 4948 Don't Show Input Traffic

Jan 9, 2012

I have a switch 4948, with version 12.2.31.sga4 ( I dont found bug about monitor session)  and we try to made port mirroring with a monitor session from a VLAN and port belong at this VLAN have traffic input and output, but in the destination port, I always see it output traffic..
 
Global command 
Red-127#sh run | in moni
monitor session 1 source vlan 1127

[Code].....

View 3 Replies View Related

Cisco WAN :: 871 SPAN Want To Monitor The Wan Port Using Span

Apr 4, 2011

I am having some problems creating a SPAN port on my Cisco 871 (running IOS 12.4-11T).  My 871 is connected to a DSL modem, and uses "IP Negotiated" to get its dynamic ip address.I want to monitor the WAN port (FastEthernet4) using SPAN, but when I type "monitor session 1 source interface FastEthernet4" into the cli, it is rejected.  I can successfully use any of the other FastEthernet ports, as well as Vlan1 as a source for the SPAN session. I have tried to use Dialer0 instead of FastEthernet4, but it still doesnt work.

View 5 Replies View Related

Cisco Switching/Routing :: Port Mirroring 2651 To Create Monitor Session From Source

May 20, 2013

I have cisco 2651. It contains two FastEthernet interfaces: Fa0/0, Fa0/1.Fa0/1 has an ip address. Fa0/0 hasn't an ip address.I need to create monitor session from source Fa0/1 to destination Fa0/0. Then i want to connect my notebook to Fa0/0 to analyze some traffic from port Fa0/1

View 2 Replies View Related

Cisco Switching/Routing :: 6513 Monitor Session Source Vlan And Lost Packets At Destination

Feb 20, 2012

We have 2 6513 switches with SUP720/PFC3A and various POE modules and a 6748-GE-TX  facing our servers.  Additionally, we have a 4Gbps portchannel trunk interconnecting the switches.    We have approximately 300 Nortel IP 1140e phones in use between the two switches.For the purpose of call recording, we've attempted to mirror the voice vlan using various approaches and have been met with limited success.  We mirrored the VLAN using tx, rx, and both.  When using both we appear to get duplicate packets at the destination interface.We seem to lose packets completely going in one direction or another for a given call. Packets are lost before they get to the destination interface?

View 2 Replies View Related

Cisco Switching/Routing :: Nexus 7010 Span Picking Up Multiple Device Uni-cast Packets

May 29, 2013

I want to monitor our backup server (commvault) as it is saying it's library (Data Domain) is going off line.[code] The issue is I am seeing a lot of unicast traffic (on Wireshark) that has nothing to do with the server on E2/11.  Some of it is from different VLANs... There is way too much data (multi-Mbps) to keep wireshark running very long to capture our intermitten problem.

View 3 Replies View Related

Cisco Switching/Routing :: Pasting Script Into Nexus 7000 Telnet Session?

Feb 27, 2013

Any issues with pasting scripts into a Nexus 7K and having the scripts get all messed up even though they are logically correct?  I've had this issue over the years with IOS devices and the console port and tweaking some of the line feed/character delays fixes the issue but that was always with the console port and not a telnet session.  Telnet has always worked flawlessly on IOS. 
 
I've determined that if I tweak my line feed delay up to 1000ms it seems to work fine, but it just doesn't make sense to me that I have to do that.I have a customer with 3300 ACL lines that need to be put into a Nexus as part of a migration from 6500 to Nexus.  And yes, I've already tried to convice them to offload these VLANs behind an ASA!

View 1 Replies View Related

Cisco Switching/Routing :: To Use Vacl To Monitor Network Traffic On Nexus 3064

Nov 15, 2011

Does one can use a Vacl to monitor network traffic on a nexus 3064 much like you can on the 6500s?  If so, any  performance tradeoffs or caveats to be aware of ?

View 2 Replies View Related

Cisco Switching/Routing :: Monitor Traffic Between Multiple Source To Destination Ports On Nexus 7k?

Nov 5, 2012

i would like to monitor traffic between multiple source ports to multiple destination ports on a nexus 7k. i lknow when you set up monitor session is between source and destination (laptop or traffic analyser) but is there a way i can set up between source and multiple destination ports and capture that traffic ?

View 3 Replies View Related

Cisco Switching/Routing :: Nexus 1000v Don't Use Private VLANs

Aug 28, 2012

We have a requirement for private VLANS for DMZ hosting within one of our datacentres. I just want to query how private VLANs would work in our environment.We have physical servers connected to fex ports (2 fex per rack for each 5k) of a 5548UP switch, virtual servers using the nexus 1000v (vmware hosts connected to fex ports) Out firewalls and load balancers are connected to an upstream pair of nexus 7ks using vPCs.My question is this, ordinarily the firewall would be in a promiscuous port but as these reside on a physically separate switch will the normal vPC trunk still be sufficient or would the "switchport mode private-vlan trunk promiscuous" be required on the vPC up to the northbound 7k.As these connections are already in production I do not want to affect the existing traffic that doesn’t use private VLANs.

View 3 Replies View Related

Cisco Switching/Routing :: Nexus 5548 - Private VLANs On FEX

Aug 13, 2012

regarding PVLANs and the Nexus, my understanding is that we cannot configure Private VLANs on a FEX trunk port with a NX-OS release older than 5.1(3)N2(1) for the Nexus5548... Is there any known workaround for this limitation (appart from performing a SW upgrade)?

View 2 Replies View Related

Cisco Switching/Routing :: Using Nexus 5548 UP As Layer 3 Router Between Vlans?

Apr 26, 2012

just a simple question. Is it possible to use a nexus 5548 UP switch as a layer 3 router between different vlans on the switch without the layer 3 card ? Or is there no 5548 as a router with the  layer 3 card ?

View 2 Replies View Related

Cisco Switching/Routing :: Nexus 5k Running Hsrp Cannot Ping Between All Vlans

Feb 26, 2012

I am at a client that I upgrade from running a single 4507 to two Nexus 5548UP switches with two Nexus 2224 fex's connected.  The other access layer switches are 2960S switches.  I implemented hsrp on the nexus 5k's for redudancy.  The issue they are having is that some networks cannot communicate with each other.  All user vlans can communicate with the server vlan, but it is not running hsrp on the vlan interface (there is a reason for that, but it not relavent for this issue).  The phone vlan, which is running hsrp, can communicate with all networks.
 
When I am connected to either 5k, they can communicate with all devices on all networks.  However, I am on vlan 10, which is a user vlan.  I can communicate fine with the server vlan (vlan 101 - not running hsrp) and the phone vlan (vlan 60 - running hsrp).  I cannot communicate with vlan 30 or 40, which are both running hsrp.  This makes absolutely no sense at all to me.  I checked out trunk ports to be sure that vlans are allowed across the networks as well.  There are no firewalls between the vlans or ACL's.

View 1 Replies View Related

Cisco Switching/Routing :: Nexus 5k Adding And Removing Vlans In Port-channel (vpc)

Dec 4, 2012

I am a bit confused by the output of 'show run' and 'show run switch-profile' that pertains to a port-channel interface configured in a switch-profile. My main gaol is to find out how can I add/remove the allowed vlans the port-channel (configured as trunk) carries. The setup is like this. I have 2 N5k in vPC domain and Etherner1/11 on both switches is configured as trunk vPC that connects to a core switch. When I issue ‘show run’ for the port-channel and physical interface I get the following output. [code] From above it seems the switch-profile configuration is missing the 'switchport trunk allowed vlan' in the port-channel interface. If want I to remove vlan 30 from the allowed vlan, should I go under the switch-profile mode and remove vlan 30 from the allowed list even though the switch-profile configuration seems to be missing this.

View 2 Replies View Related

Cisco Switching/Routing :: Nexus 7000 STP Topology Change In All Connected Vlans

Jun 2, 2013

our pair of Nexus 7000 are configured with RSTP.On the Edge-Switches we have seen an STP topology change in all connected vlans.On N7k the topology has also changed what we`ve only seen in the output of the stp details [code]

I like to configure a logging for topology changes, but i havn't found a command.
 
Is there an opportunity to get this logging-messages on n7k?

View 1 Replies View Related

Cisco Switching/Routing :: Nexus 7000 Vlans Added To Port-profile Never Got Propagated

Dec 2, 2011

I'm running a couple of nexus 7000 to aggregate a building full of 3750Xs.In the past few weeks I have noticed that the vlans I added to the port-profile never got propagated.So I looked at port-profile sync information and here is what comes up: [code] Why the commands are getting cached?

View 3 Replies View Related

Cisco WAN :: SPAN Session On 2960 Switch Capturing Only Control Traffic

Nov 21, 2011

I have configured SPAN session on 2960 switch, source port being a VLAN and destination being one of the fastethernet ports. All I see in the capture is control traffic (HSRP, RIP, Syslog, DNS..etc). However I dont see any real data traffic being captured. Below is how I have SPAN configured..
 
monitor session 1 source vlan <vlan_id> both
monitor session 1 destination interface fa0/42

View 1 Replies View Related

Cisco WAN :: Monitor Session On 2921

May 8, 2011

i have a question regarding the monitor session command. I have following interfaces on my router:i want to monitor the traffic from the source interface Gi0/2 to the destination interface fa1/3,monitor session 1 source interface gigabitEthernet 0/2 brings this error message % Incomplete command.,monitor session 1 source interface gigabitEthernet 0/2?/  :  <0-2>,i don't have any ports on the Gigabit Interfaces. Any ideas how to monitor traffic?

View 1 Replies View Related

Cisco WAN :: 7606 Monitor Session Not Working?

Mar 5, 2012

I've setup and configured the following local monitor session on a 7606 but it doesnt seem to be outputing anything.  Any guess as to why, or what I might be doing wrong?  Gi1/1 is doing ~40Mb/s egress & 15Mb/s ingress.  Both source and destination ports are routed ports.
 
monitor session 10 source interface Gi1/1
monitor session 10 destination interface Gi1/10 ingress
 interface GigabitEthernet1/1
description WAN Link to *********************  ** CORE BACKBONE **
mtu 9000
ip address ************** 255.255.255.252

[code].....

View 1 Replies View Related

Cisco VPN :: Two ASA (v8.4) - IKEv1 And IKEv2 Session In ASDM Monitor?

Oct 25, 2012

I have a L2L tunnel setup between two ASA's (v8.4).  I used the wizard to set these up and selected the defaults of both IKEv1 and IKEv2, thinking that it would select one or the other.  The strange thing is that now I see a separate session between these ASA's, one for IKEv1 and one for IKEv2.  Both are passing traffic.  Is this expected behavior?  Should I disable IKEv1 to force only v2 since both are v8.

View 5 Replies View Related

Cisco WAN :: How Many Sources Can Be Supported By Monitor Session In Cat4900 (4948)

Feb 23, 2012

For the command "monitor session 1 source" in Cat4900 (e.g. 4948), how many source interfaces can be supported per monitor session?

View 1 Replies View Related

Cisco Switching/Routing :: 6509 - Doing IDS Via SPAN Ports

Dec 13, 2011

I am hoping you can provide me with some opinions, feedback, thoughts on the following. We have some Cisco 6509 switches in our environment currently hitting around 60% usage on the Router overall statistics.
 
Now we are looking at implementing an intrusion detection system but by being as least invasive as possible to the network. Our thoughts are to utilize a SPAN port on the switches to send traffic to the NIDS device but we have concerns of the following. The limitations of SPAN sessions on 6509's . The overhead on the switch of turning a SPAN session on and leaving it on permanently.

View 1 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved