cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
508
Views
0
Helpful
5
Replies

creating RSPAN

axfalk
Level 1
Level 1

Hi..we have to create an RSPAN session to a remote switch, where the analyser is connected to. So, we'll be creating an RSPAN vlan on both, the local and remote switches. Does the source port on the local switch or the destination port on the remote switch have to be in the RSPAN vlan?

Thanks.

5 Replies 5

Jon Marshall
Hall of Fame
Hall of Fame

The RSPAN vlan is used simply to carry the traffic across multiple L2 switches. The only ports that should be configured within the RSPAN vlan are trunk ports (obviously they will be configured with all vlans transmitted across the L2 network).

Your source and destination ports are not part of the RSPAN vlan.

Jon

John Blakley
VIP Alumni
VIP Alumni

I don't believe so. When your create your RSPAN vlan, the ports that you want to monitor are sent to that vlan.

Here's what I found:

http://www.cisco.com/en/US/docs/switches/lan/catalyst3550/software/release/12.1_13_ea1/configuration/guide/swspan.html#wp1073772

HTH,

John

HTH, John *** Please rate all useful posts ***

Hello John,

a RSPAN is a layer 2 tunnel for the captured frames:

on the source switch the rspan vlan is the destination of the SPAN session

on the destination switch the RSPAN vlan is the source of the frames sent to the destination ports.

What Jon has noticed is really important: the Remote SPAN has a dangerous charasteristic: mac address learning is disabled on the remote span vlan this is the price to pay to build an efficient L2 tunnel for moving the captured frames.

if you create multiple branches in the RSPAN vlan topology you can have troubles with frames going everywhere because no mac address learning is performed

see from the link you have provided

"As RSPAN VLANs have special properties, you should reserve a few VLANs across your network for use as RSPAN VLANs; do not assign access ports to these VLANs."

In some cases you need to build a dedicated path in order to avoid to saturate the existing trunks.

Hope to help

Giuseppe

True, but it also states:

"The RSPAN VLAN is configured only on trunk ports and not on access ports. To avoid unwanted traffic in RSPAN VLANs, make sure that the VLAN remote-span feature is supported in all the participating switches. Access ports on the RSPAN VLAN are silently disabled."

This would indicate that any port that's an access port of the RSPAN vlan would be automatically either a) disabled or b) switched to a trunk port. Do you know which? I've never assigned a port to the RSPAN vlan as an access port to see what happens.

John

HTH, John *** Please rate all useful posts ***

John

It would be disabled -

"Access ports (including voice VLAN ports) on the RSPAN VLAN are put in the inactive state."

Full link -

http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.1_11_ax/configuration/guide/swspan.html#wp1073772

Jon

Review Cisco Networking for a $25 gift card