Configured port mirroring in Cisco 6509E, but unable to see and capture trafffic of protocols like ssh, telnet, ftp, tftp and so on.
The setup is like this configured source on the port of 6509 switch connecting to asa and going outside( port gig2/24), destination at inside one port of the switch and using webscense app for capturing (port gig2/14).
This is the IOS we are using -- s72033_rp Software (s72033_rp-IPSERVICESK9_WAN-VM), Version 12.2(33)SXH5.
The below are the confoiguration used.
1. monitor session 1 source int giga ethernet 2/24
2. monitor session 1 destination giga ethernet 2/14
Kindly help me resolving the problem.
Thanks & regards
Suresh Kumar Balakrishnan
Using websense app for a destination? You're probably going to want to look at wccp..
*** Please rate all useful posts ***
Hi Mr. John,
You mean to say port mirroring will not work.
Also if wccp is the solution, kindly request sample configuration or link for that.
Thanks & Regards
It depends on what you are trying to do. If you are trying to redirect http traffic to a proxy server for example then WCCP is the way to go although i have never used it before.
If you simply want to see what traffic is leaving the gi2/24 port towards the ASA then port mirroring is the answer but you need to use a packet capturing tool to see the traffic.
So which do you actually want to do ?
I want to see the traffic ( using webscense) using port mirroring.
But in my case i am not able to see the traffic like telnet, ssh, ftp, tftp and others using the above two line commands which i mentioned above.
Is there any other specific configuration, kindly help me out.
Thanks & Regards
Not familiar with Websense but did a quick search and it seems like it supports tcpdump at the command line.
Is this what you are using ?