Re: VACL's for 6509 router

stickhg · ‎08-26-2004

I am a newbie. Need syntax help creating access list to forward & capture all data hitting layer3 from multiple Vlans 2,3-6,7. Need syntax help creating a capture port (Gig 3/3) to send the capture data to a Cisco 4325 sensor. Does the capture port need trunking? Is there a white paper or doc. which would help with this request? Is it better to use a standard or extended access list? Is there a cookbook configuring VACL's for forward & capture data to a capture port? Are there any issues to be aware of when setting this scenario up?

jsivulka · ‎09-02-2004

To capture data from a port and forward it to another, you'll need to configure SPAN. To configure SPAN and VSPAN on 650 series sqitches, you could refer to http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_guide_chapter09186a008007fb25.html.

With reference to your question on things to look out for, well, I believe SPAN sessions are rather heavy on the system resources they require, so gotta be careful there.

jsivulka · ‎09-09-2004

To capture data from a port and forward it to another, you'll need to configure SPAN. To configure SPAN and VSPAN on 650 series sqitches, you could refer to http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_guide_chapter09186a008007fb25.html.

With reference to your question on things to look out for, well, I believe SPAN sessions are rather heavy on the system resources they require, so gotta be careful there.