I am capturing w/ SPAN the ingress and egress traffic for a fiber trunk link. I have noticed that I am not seeing any STP, VTP, or UDLD packets. I'm using Wireshark.
It is acting like the Cisco switch is not passing these layer 2 management protocols to the SPAN port.
I've found the following paragraph in C3750 config guide:
The default configuration for local SPAN session ports is to send all packets untagged. SPAN also does not normally monitor bridge protocol data unit (BPDU) packets and Layer 2 protocols, such as Cisco Discovery Protocol (CDP), VLAN Trunk Protocol (VTP), Dynamic Trunking Protocol (DTP), Spanning Tree Protocol (STP), and Port Aggregation Protocol (PAgP). However, when you enter the encapsulation replicate keywords when configuring a destination port, these changes occur:
â¢Packets are sent on the destination port with the same encapsulation-untagged, Inter-Switch Link (ISL), or IEEE 802.1Q-that they had on the source port.
â¢Packets of all types, including BPDU and Layer 2 protocol packets, are monitored.
So you need to add this option to the destination port.
Be aware that if you are using Remote Span this is not enough to see BPDUs
Hope to help