cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2514
Views
0
Helpful
4
Replies

IDS on Switch

rayroyalmontana
Level 1
Level 1

How must a switch and IDS be configured, to allow all traffic on the switch to be monitored by the IDS?

1 Accepted Solution
4 Replies 4

rhermes
Level 7
Level 7

If you want to just monitor the traffic passing throught a switch, attach your sensor to interface GigE0/1 and use these commands:

monitor session 1 source interface Fa0/1 - 24 rx

monitor session 1 destination interface Gi0/1

If you want to be able to send TCP Resets back into the switch you'll need to add the "ingress" command on the end of your destination command.

Farrukh Haroon
VIP Alumni
VIP Alumni

Can you be more specific in your query?

Regards

Farrukh

rhermes, can you provide a link to some discussion about this issue?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: