Trying to setup VACL to output data on multiple VLANs to one capture port. I have 3 VLANs as part of my security ACL, and have a FreeBSD box off of that trunked capture port trunking all 3 of those VLANs. The access-list for the security ACL is 'permit ip any any'.
The problem is that I only see traffic one way for one VLAN to the other. I see multicast/broadcast traffic from all 3 VLANs with the correct 'tag' information. However, I cannot see bidirectional traffic.
So, two questions:
1. What am I missing?
2. Why do I not see anything in the 'show security acl log flow ip any any'? (Shows nothing listed, just '0')
Thanks!