×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

SPAN Port on ASA 5505

Unanswered Question
Sep 24th, 2013
User Badges:

Hi all,


I would like to setup a SPAN port on my outside interface on the ASA 5505.  I would like to see all traffice whether inbound or outbound.  Setting up a SPAN port seems pretty straight forward, my question is, if a packet hits the outside interface and is dropped will a copy of the packet still be sent to the SPAN destination?  Or does the packet have to actually enter the ASA for a copy of the packet to be sent to the ASA?  I've been unable to find a clear answer to this question but I would like to know before configuring the SPAN port.  Any help is much appreciated!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Luis Silva Benavides Wed, 09/25/2013 - 11:23
User Badges:
  • Cisco Employee,

Garland,


SPAN session are only available on the Switches. If you setup an SPAN session on the port where the ASA is connected you should be able to see all the traffic that is leaving/getting to that switchport; so it doesn't matter if the ASA drops the packet; if the switch was able to send it you will see it.


There is also the capture feature on the ASA; you can capture the traffic that gets to the interface of the ASA you are troubleshooting.


http://www.cisco.com/en/US/products/ps6120/products_tech_note09186a0080a9edd6.shtml


HTH


Luis Silva

"If you need PDI (Planning, Design, Implement) assistance feel free to reach us"

http://www.cisco.com/web/partners/tools/pdihd.html

Luis Silva Benavides Wed, 09/25/2013 - 12:46
User Badges:
  • Cisco Employee,

Hmm interesting; after 5 years working with ASAs is the first time I see this feature the ASA 5505 always surprises me.


Your understanding is correct. As long as the packet arrives to the switchport you are monitoring it should appear.


Regards,


Luis Silva

"If you need PDI (Planning, Design, Implement) assistance feel free to reach us"

http://www.cisco.com/web/partners/tools/pdihd.html

Actions

This Discussion

Related Content