SPAN problems

smezache · ‎06-07-2004

When I do SPAN session on one of my switch, the destination port, where the PC capturing the data is plugged in, is locked out of the network, and I can no longer access the switch via a telnet session from any other PCs. I can still ping the switch and get into it via a console session but not via telnet.

Any clue why a SPAN session would do this?

As far as not being able to telnet, I am suspecting that my VTY lines are max out by a computer(s) that is/are either already connected to the switch or trying to connect, which leads to the following question:

Besides AAA, is there a way to find out who is telneting (or trying to telnet) into a switch or router from a PC (not from router or switch)?

I would really appreciate if could give me some pointers about why this is happening?

Thanks for the help

david.bradley · ‎06-07-2004

Hi,

When you create a SPAN session the monitor port stops working as a normal port, all it can do it view traffic that is mirrored.

If you have a Cat OS based switch you can use the 'inpkts' option in the set span command, this allows the port to also function as a standard port.

I think the same feature is available in IOS based switches in version 12.1

Dave

david.bradley · ‎06-07-2004

oops! posted twice..

degg · ‎06-08-2004

if you do a 'show users' you should see what IP's are logged into which session.

smezache · ‎06-08-2004

Thanks for the tip. I see the sessions being idle, and some of them point to computer that are no longer on the network. Is there a way to reset the idle connections without restarting the switch?

smezache · ‎06-08-2004

Thanks for the tip. I see the sessions being idle, and some of them point to computer that are no longer on the network. Is there a way to reset the idle connections without restarting the switch?

degg · ‎06-08-2004

the command is 'clear line' and then whatever line you want to clear ie vty 1, vty 4 , etc.