Buy or Renew
Buy or Renew
NEW: Try the Beta AI Summary feature on posts in the Routing and SD-WAN forum. Click to go to the forum.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
874
Views
5
Helpful
2
Replies

Span server vlan on Catalyst 6509

pete_chirpich
Community Member

‎10-29-2009 08:23 AM - edited ‎03-06-2019 08:22 AM

Hello! We have a 6500 running Cat OS 8.8-5-8. We have a snort device that we would like to monitor our server vlan with, Vlan 101. I setup this snort on a port, 2/28, which is a GB port on a WS-X6548-GE-TX card.

We have experienced some server performance issues since I setup the span. Intermittently we cannot gain access to a server, ping is slow to respond, drops ping requests, no rdp, etc. It sure seems suspicious that it is due to this span. I moved some of the servers that were connected in the same banks as this snort port to another card and port, and they now perform fine.

My question is, am I doing this wrong? Is there a different way to accomplish this and not effect performance?

My command I ran on the switch was:

#switch port analyzer

set span permit-list disable

set span 101 2/28 both session 1 inpkts disable learning enable multicast enable

Labels:
0 Helpful
2 Replies 2

glen.grant
VIP Alumni
VIP Alumni

‎10-29-2009 09:09 AM

You could be running into something like this.

Read this. 6548's not really a good choice to run large server farms on. this sounds like what you are seeing.Seeing that you are spanning a whole vlan which is a lot of traffic.

http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a00801751d7.shtml#ASIC

pete_chirpich
Community Member
In response to glen.grant

‎10-29-2009 01:19 PM

Perfect. Now what I wanted to hear, but it explains alot! Thanks for the quick reply.

0 Helpful
Customers Also Viewed These Support Documents