Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Nexus 7000 erspan ACL

Hi all,

I'm trying to configure an ACL for my erspan session, but it doesn't seem to work. Im curious as to what I'm doing wrong. I followed the instructions described here:

http://www.cisco.com/en/US/docs/switches/datacenter/sw/5_x/nx-os/system_management/configuration/guide/sm_erspan.html#wp1251568

My configuration is as follows:

IP access list match_oas01

        10 permit ip X.X.X.X/32 any

vlan access-map erspan_filter 5

        match ip address match_oas01

        action forward

monitor session 1 type erspan-source

       erspan-id 5

       vrf default

       filter access-group erspan_filter

       destination ip X.X.X.X

       source vlan 601 both

When viewing the resultant capture I still get all traffic in vlan 601 while I only wanted to see the traffic from/destined to oas01.

198
Views
0
Helpful
0
Replies
CreatePlease login to create content