Small Switch with port mirror option?

Answered Question

Hi

I want to deploy a small, a max of 8 port switch before my firewall witha the capability of Port Mirroring where I would connect my IDS monitoring interface. I currently use Cisco's 1548 which doesn't have any management capability.

I am aware of the danger's of having management IP on a switch which is outside of my firewall but I need a management interface (console etc) so that I can mirror a port to catch all traffic coming in thru my router's inside interface.

What are my options from Cisco?

I have this problem too.
0 votes
Correct Answer by thiyagarajang about 9 years 6 months ago

Hi Fahim,

Yes, you can configure Mirror on interface you want to. Configure SPAN through CLI or use Cisco network assistant.Cisco network assistant is free downloadable.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
thiyagarajang Tue, 05/29/2007 - 22:47

Hi Fahim,

You can use cisco 500 series switch for mirroring the packets from router internal traffic to your firewall.

In this case you have to connect sniffer in the cisco 500 switch directly.

Correct Answer
thiyagarajang Mon, 06/04/2007 - 22:07

Hi Fahim,

Yes, you can configure Mirror on interface you want to. Configure SPAN through CLI or use Cisco network assistant.Cisco network assistant is free downloadable.

Actions

This Discussion