07-17-2012 01:52 AM - edited 03-07-2019 07:48 AM
Hi all,
I'm trying to configure an ACL for my erspan session, but it doesn't seem to work. Im curious as to what I'm doing wrong. I followed the instructions described here:
My configuration is as follows:
IP access list match_oas01
10 permit ip X.X.X.X/32 any
vlan access-map erspan_filter 5
match ip address match_oas01
action forward
monitor session 1 type erspan-source
erspan-id 5
vrf default
filter access-group erspan_filter
destination ip X.X.X.X
source vlan 601 both
When viewing the resultant capture I still get all traffic in vlan 601 while I only wanted to see the traffic from/destined to oas01.