Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Adding VLAN to VACL for IDSM2 Blackholes that VLAN

We have a 6509 running 12.2.18SXF with an IDSM-2 (5.0(6)). We are using VACLs to capture traffic from several VLANs onto the IDSM. Today, we added another VLAN to the IDSM by creating a VACL for that VLAN with the "action forward capture" statement. As soon as the VACL was applied to that VLAN, all traffic for that VLAN was blackholed. We reproduced this problem on another VLAN. Anyone seen this?

2 REPLIES

Re: Adding VLAN to VACL for IDSM2 Blackholes that VLAN

Hello David,

not sure if your problem still exists, but make sure that you add the VLAN whose traffic you want to capture to the list of allowed VLAN´s on the capture port (´switchport capture allowed vlan´).

Do you manage do get any traffic from any other VLAN captured at all ?

If possible, can you post the config of your 6509 ?

Regards,

GNT

New Member

Re: Adding VLAN to VACL for IDSM2 Blackholes that VLAN

Howdy,

Yeah, we already have about 13 VLANs being captured to the IDSM which is why I was concerned when adding a new one caused all traffic on that VLAN to drop. I'll be doing more testing on it later this week.

Thanks,

-DW

136
Views
0
Helpful
2
Replies