I have a device which needs to listen to all traffic on a specific VLAN, but i also need this device to be able to communicate (at Layer 3) with some other computers in a different subnet.
I have a 4500 series and a 3560 series.
On the 4500 i used a command like this one :
monitor session 1 source vlan 15
monitor session 1 destination interface Gi5/3 ingress vlan 14 learning
and this works perfectly.
i need to do the same thing on the 3560 one but this Catalyst doesn't support the "learning" tag.
When i read the IOS documentation i can read that for a SPAN destination port :
"?When it is active, incoming traffic is disabled. The port does not transmit any traffic except that required for the SPAN session. Incoming traffic is never learned or forwarded on a destination port.
?If ingress traffic forwarding is enabled for a network security device, the destination port forwards traffic at Layer 2."
My question is i am wondering if activating the ingress parameter on my destination port will work (in fact this is certainly an english understanding problem since i am french). Unfortunatly i can't make tests like i did with the 4500 L3 Switch, this is why i ask here to be sure of how this will work when i will have to set the 3560 thing up.
(hope to be understandable)
Thanks by advance for any help