Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

IDSM2 VACL configuration

We have Cisco 6500 catalyst running on native IOS 12.1(13) and recently purchased a IDSM2 (5.1). I have succesfully tested it to run on promiscous mode, but I having problem on applying a VACL configuration. I want apply VACL so I could have a control on VLAN. I followed the config on the configuration manual on cisco site but still unsuccesfull. Anyone could help me on this? Hope someone could give sample config for this. Thanks

Configuration Done:

intrusion-detection module 5 data-port 1 capture allowed-vlan 1

intrusion-detection module 5 data-port 1 capture

.

.

.

vlan access-map CAPTURE 10

match ip address MATCH

action forward capture

.

.

.

ip access-list extended MATCH

permit ip any any

cat6500:

Slot 1 : Sup2/MSFC2

Slot 3 : 48 Ports / RJ45

Slot 5 : IDSM2

note: Port 3/1 - 5 is member of Vlan 1

- Succeful detecting in Span Port

- VACL not succesful

3 REPLIES

Re: IDSM2 VACL configuration

can you please show me the config of you Cat 6500 where you are defining the capturing ports and also where you are applying the filter CAPTURE to VLAN 1.. NOTE: IDSM2 uses ports 7 and 8 on the respective module ..

New Member

Re: IDSM2 VACL configuration

Hi Fernando,

Above is the exact configuration I used. Plus ports 3/1 & 3/2 of as switcport access.

Thanks,

New Member

Re: IDSM2 VACL configuration

Add the following to have the VLAN access-map only look at traffic on VLAN 1.

vlan filter CAPTURE vlan-list 1

167
Views
0
Helpful
3
Replies