Monitor inter-vlan traffic only?

Unanswered Question
Sep 16th, 2009

Can just the L3 traffic that flows between VLANs (not within them) be monitored/mirrored in a 3750 switch or similar? How would you set it up?

Thanks.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
deyadav Thu, 09/17/2009 - 00:19

As far as I understand, there is no way to get this done over 3750. The routed traffic across Vlan's could only be monitored using Netflow which is not an available option on 3750.

It could be achieved on 4500's with Supervisor's installed with Netflow Daughter card or with 6500.

For 4500 refer to this:

http://www.ciscotaccc.com/kaidara-advisor/lanswitching/showcase?case=K14682540

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/50sg/configuration/guide/nfswitch.html

For 6500:

http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_example09186a0080721701.shtml

Regards,

Deepak Yadav

pnicolette Thu, 09/17/2009 - 09:03

Thanks, Deepak. Any idea if it can be done using VLAN ACL capture?

deyadav Thu, 09/17/2009 - 22:45

Hi Paul,

VACL capturing is a good option on cat6k platforms, unfortunately it's not supported on 3750 and other 3K switches.

For the above link there is a documentation bug filed: CSCta66401

"Cisco Catalyst Switch Guide lists VACL Capture as supported on 3750/3560"

Although it does not have any documented Release notes, however I can confirm that it is on the same document.

I searched a lot, however was not able to find any option for 3750 platform.

Actions

This Discussion