Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
428
Views
0
Helpful
2
Replies

Monitor session using an integrated IOS

michael.spence
Level 1
Level 1

‎06-03-2005 10:17 AM - edited ‎03-02-2019 11:00 PM

We are using a third party software to block users from certain internet websites, or block internet access all together. After upgrading from CatOS we are unable to block anyone from the internet at all. I know that the port will not do ingress traffic. We enabled a second network adapter and it appears to be working; however, we are stil not able to block internet access. Help!!!

Labels:
0 Helpful
2 Replies 2

sachinraja
Level 9
Level 9

‎06-05-2005 03:26 AM

are u using a proxy server for browsing ? in that case, you can load the third party server on the proxy and control access from this server. not sure why do u want to control the access on the switch ?? its tough....

Do let us know...

Raj

0 Helpful

osbjmg
Level 1
Level 1

‎06-05-2005 05:21 PM

Michael,

I presume you are using a SPAN session to copy traffic from one port to this internet monitoring application server? CatOS allows for ingress packets and mac-address learning on a SPAN session destination. IOS will allow for ingress packets only when using the ingress keyword as seen in this command(12.2 only I believe):

Switch(config)# [no] monitor session destination interface

[encapsulation {isl | dot1q}] [ingress [vlan vlan_ID]]

In this case, the ingress functionality will allow a packet to be sent from your server out to stop the HTTP transfer or whatever it needs to do, but this will not work for management puroses as mac learning is still not available.

Please see this bug to find out more info on the mac learning issue: CSCee33474

0 Helpful
Customers Also Viewed These Support Documents