Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2283
Views
5
Helpful
3
Replies

5506-X span/port mirroring?

me77
Level 1
Level 1

‎02-10-2018 10:48 AM - edited ‎02-21-2020 07:19 AM

I am trying to do something like this for the ASA 5506-X:

https://supportforums.cisco.com/t5/service-providers-documents/asr9000-xr-how-to-use-port-spanning-or-port-mirroring/ta-p/3108031

 

I found this, which states that port mirroring is possible on the 5505:

https://supportforums.cisco.com/t5/firewalling/i-want-to-know-asa-support-port-mirror/m-p/2061422/highlight/true#M98410

But the 5506-X uses BVI (I am currently running FTD 6.2, will be reimaging to ASA eventually.)

So all the ports act as a common gateway, with a common IP address. But I don't see common traffic when I sniff one port.

Labels:
0 Helpful
3 Replies 3

Dennis Mink
VIP Alumni
VIP Alumni

‎02-11-2018 04:18 AM

what dont you use tcpdump to acpture packets?

 

https://www.cisco.com/c/en/us/support/docs/security/firepower-ngfw/212474-working-with-firepower-threat-defense-f.html

Please remember to rate useful posts, by clicking on the stars below.

0 Helpful

me77
Level 1
Level 1
In response to Dennis Mink

‎02-11-2018 04:38 PM

I'm not trying to do a tcpdump solution, I'm looking for a way to mirror the port. My FTD is unlicensed so I'm looking for a long-term ASA solution with port mirroring, rather than an FTD solution.

GoScrewCisco
Level 1
Level 1
In response to me77

‎07-03-2018 06:25 AM

I get an error when I try to run the monitor session command, saying I don't have the correct license.

What is the license I should purchase for my client to get the monitor session command to work, Apex?

 

Thanks,

Jeff Bourgery

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card