Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
671
Views
0
Helpful
2
Replies

promiscuous port on a switch?

jdepies
Level 1
Level 1

‎02-24-2004 11:28 AM - edited ‎03-02-2019 01:49 PM

Hello, I want to install an IDS solution that needs to have access to all traffic on the LAN. All of my machines plug directly into a 3550 catalyst switch running IOS Version 12.1(13)EA1a.

Is there any way to have a copy of all data sent to a spicific port on the switch (almost like a mirror port). Sorry I am not sure what the appropriate terminology is.

Thanks a lot

Jeff

Labels:
0 Helpful
2 Replies 2

anu
Level 4
Level 4

‎02-24-2004 12:51 PM

Its called port monitoring for IOS based switches. Below you can find a guide for configuring SPAN on a 3550 switch.

http://www.cisco.com/en/US/products/hw/switches/ps646/products_configuration_guide_chapter09186a00801f0a55.html

0 Helpful

grunky
Level 1
Level 1

‎02-25-2004 09:59 AM

The thing to remember is that once a switchport is in destination span mode it won't forward normal traffic. ie you'll need two physical nics plugged into different switchports for a IDS box. Either that or just access the IDS box via console only.

More secure but a pain.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents