Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
720
Views
0
Helpful
3
Replies

SPAN Config

kevin.atwood
Level 1
Level 1

‎10-06-2005 08:47 AM - edited ‎03-10-2019 01:40 AM

Hello,

We've got two PIX'es setup in failover mode, we had an issue a day or so ago when the secondary pix took over the IDS was dead in the water because the SPAN config on our 6500 is not duplicating both ports. Suggestions on getting the SPAN config to pass traffic in a failover mode?

Thanks,

Kevin

Labels:
0 Helpful
3 Replies 3

vkapoor5
Level 5
Level 5

‎10-13-2005 05:51 AM

From what I understand, you need to include both the PIX ports (Primary and Secondary) in the SPAN configuration on your 6500 as the SPAN source ports. With that, even after failover, your SPAN will be able to capture the packets from the active PIX.

0 Helpful

brymiller
Level 1
Level 1

‎10-17-2005 07:24 AM

The ports that the PIXs are connected to both need to be SPAN sources. If you are using a Catalyst then use the 'monitor session <#> source interface..." command is what you need.

Here's the poorly written config guide..

http://www.cisco.com/univercd/cc/td/doc/product/lan/c3550/12225sec/3550scg/swspan.htm

And a fairly good field notice...

http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a008015c612.shtml

0 Helpful

abdel_n
Level 1
Level 1

‎10-18-2005 02:34 PM

I confirm what “vkapoor5” and “brymiller” noted about ports connected to both active and standby ports that must be SPAN source ports on the switch.

Here is a simple configuration example (Cat OS and IOS).

I hope you have already resolve that issue.

Preview file
98 KB
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card