catalyst 4507 and IPS

Unanswered Question
Apr 3rd, 2007

I have a backbone switch (4507)and ips sensor 4215 which is connected to port 6/4 on the BB switch and i want to make the ips sensor to monitor all the ports on the BB . i found that i must create source span ports on the BB and the port 6/4 must be the destination port.The command that must be used is the

monitor session command which is compatable with the BB.is it possible to put all the ports of the BB in a single monitoring session or i must create more than one session???

please send me the correct configuration for the source ports.

Note:

IPS sensor has one monitoring interface so it acts as an IDS.

waiting for your replies

best regatrds

Attachment: 
I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
pmccubbin Mon, 04/09/2007 - 12:50

Don't you really mean to say you want all of your VLAN information sent to the monitoring port? If so, you want to be sure not to overwhelm the IPS with too much traffic. You need to filter the VLANs sent to the SPAN port or else the IPS will drop the packets above its stated threshold.

(For vlan-IDs, the range is 1 to 4094; do not enter leading zeros.)

Hope this helps.

Actions

This Discussion