Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1740
Views
0
Helpful
1
Replies

VACL on Nexus

normanzhang
Level 1
Level 1

‎08-19-2011 10:26 AM - edited ‎03-07-2019 01:47 AM

I'm looking to setup IPS appliance with Nexus. Say I want IPS to monitor all traffic from VLAN 100 to VLAN200 on the same Nexus. Can I use VACL to setup flow to force traffic out from VLAN 100 to a specific port uplinked to IPS then back to the same Nexus?

VLAN100 --- Nexus --- IPS --- Nexus --- VLAN200

Thanks,

Norman

Labels:
0 Helpful
1 Reply 1

dhristov
Cisco Employee
Cisco Employee

‎08-24-2011 11:00 AM

The VACL action that is used to copy traffic to IPS on 6500 is "Capture". Nexus  7000 does not support "Capture" based on the reference below. Instead of VACL Capture SPAN will give the same result.

Reference:

http://www.cisco.com/en/US/docs/switches/datacenter/sw/5_x/nx-os/security/configuration/guide/Cisco_Nexus_7000_NX-OS_Security_Configuration_Guide__Release_5.x_chapter16.html#con_1111381

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card