Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1113
Views
0
Helpful
2
Replies

configure 6513 IDSM and Local SPAN failed

Go to solution
lcd_shouldit
Level 1
Level 1

‎06-25-2013 06:33 AM - edited ‎03-10-2019 05:59 AM

Hi, my catalyst 6513 IOS version is 12.2(18)SXF16 and  12.2(33)SXI5 , today I want to configure my IDSM module,

I should SPAN my vlan traffic to the IDSM, right?

commands like :

monitor session 4 source vlan 21

monitor session 4 destination intrusion-detection-module 10 data-port 1

But the switch tell me :

% Local Session limit has been exceeded

So, what should I do if I want my IDSM work.

Thank you !

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Thulasi Shankar
Level 1
Level 1

‎06-26-2013 07:18 PM

Hi,

You mayuse VACLs to pass the traffic to the IDSM2. VACL capture allows you to specify whatever vlans you would like to   have the IDSM2 monitor. 

So if you know what vlans  passing on the  etherchannels, then you may include them in the VACL configuration 

For Example :

intrusion-detection module 4 data-port 1 capture allowed-vlan   10-20,40,70

Please find the documentation to configure VACLs on the 6500 switch:

http://www.cisco.com/en/US/docs/security/ips/6.1/configuration/guide/cli/cli_idsm2.html#wp1030767

Hope that answers your query.

Thulasi Shankar

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Thulasi Shankar
Level 1
Level 1

‎06-26-2013 07:18 PM

Hi,

You mayuse VACLs to pass the traffic to the IDSM2. VACL capture allows you to specify whatever vlans you would like to   have the IDSM2 monitor. 

So if you know what vlans  passing on the  etherchannels, then you may include them in the VACL configuration 

For Example :

intrusion-detection module 4 data-port 1 capture allowed-vlan   10-20,40,70

Please find the documentation to configure VACLs on the 6500 switch:

http://www.cisco.com/en/US/docs/security/ips/6.1/configuration/guide/cli/cli_idsm2.html#wp1030767

Hope that answers your query.

Thulasi Shankar

0 Helpful

Go to solution
lcd_shouldit
Level 1
Level 1
In response to Thulasi Shankar

‎07-04-2013 04:55 AM

Hi, Sorry for late.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card