SPAN and RSPAN, ISL and TRUNKING

Hello,
I have some questions regarding the do's and don'ts of SPANNING. If you have for example several switches with one port, say port 48 SPANNED to another switch that collapses all the traffic to be monitored by an IDS or network analyzer.
What would be the best way to do this if you were concerned about multiple VLAN's being on the switches you were SPANNING from?
My idea was to turn each of the SPAN ports into a TRUNK PORTS and also use ISL encapsulation between the switches and the âAggregate Switchâ that everything collapses to. Then, I would have a Monitor Session âAnother SPAN taking all of those SPAN's for the other switches to a single port for monitoring.
This was because on each of the switches have TRUNKED 802.1q FIBER PORTS and are capable of receiving any VLAN. Also, although 802.1q is common, for this I was thinking of using ISL because it does not require a Native VLAN. If a port on the switch is changed to a different VLAN (Switch Port Access VLAN XX) and the Monitor âSPANâ is not set for TRUNKING, I don't think we would see that traffic from a different VLAN would we?
RSPAN could be used but there are already physical SPAN's coming from each of the switches to monitor. Is there any down side to using physically cabled SPAN's vs RSPAN?
What is the best practice for monitoring segregated networks that cannot use RSPAN? Physically cabled SPAN's with Monitor Sessions?
Am I thinking of this correctly or have I derailed?
Thanks

If you have source ports belonging to several different VLANs, or if you are using SPAN on several VLANs on a trunk port, you may want to identify to which VLAN a packet you are receiving on the destination SPAN port belongs. This is possible by enabling trunking on the destination port before configuring it for SPAN. This way, all packets forwarded to the
sniffer will also be tagged with their respective VLAN IDs.

Similar Messages

IDSM SPAN and filter on destination

Greetings
When I set up a SPAN session with a regular TP interface as a destination I am able to allow specific VLANs on the destination trunk port. This does not work for me when I try the same setup with the IDSM data port as the destination. Has anyone got this working?
I have IOS 12.2SXF5 on the 6513 and 6.0(4)E1 on the IDSM.
Regards
Fredrik

This does not work for the IDMS-2.
The trunk configuration of the IDSM-2 does NOT work in conjunction with setting the IDSM-2 as a span destination port.
The trunk setting of the IDSM-2 is only used when configuring the IDSM-2 for InLine Vlan Pairs.
For Span monitoring the IDSM-2 needs to be configured for Promiscuous mode and so the Trunk configuration is not used.

Solution for Visual composer error: 32k span and 64k byte limit

Dear friends,
I am getting the error in visual composer 32k span and 64k byte limit since last half year,
some time error will get resolved by adding layer in to model OR adding some table and form to model OR reduce the animation effect OR even by doing tab strip view for layer model, doing nested ivew.
but this solution not usefull for every time.
what should we do for this error(32k span and 64k byte limit),
is it solved by updating EP version or by EP java stack or any other updates which will solve the This VC error.
64k error i am getting is:
+Error in compiling Flex application: Error: A function in the code exceeds the 64K byte limit (actual size = '65570'). Since the problem occurs in the compiler-generated deferred instantiation code, please refactor/componentize portions of this document.
(/usr/sap/IBD/DVEBMGS10/j2ee/cluster/server0/GUIMachine_Business_Packages/Managment_cockpit11_31066/FLEX_COMPILATION_FOLEDR/AADCDM.mxml:19)
Failed to compile AADCDM.mxml+
hope to get answer form you,
Thanks and Regards,
Dushyant.

Hi,
I think it's better to post this question into the Visual Composer forum. Anyway, the 32k/64k bug is solved with the flex2 server which is already released.
Also have a look into the [Wiki page|https://wiki.sdn.sap.com/wiki/display/VC/64Kbytelimit].
Hope that helps!
Best Regards,
Marcel

How to implement row span and column span in JTable.

Hi,
How do we implement Col span and row span in JTable as in Html.
Kindly help.
Thank You

Although I suppose you could extend JTable to support column and row spans, this would involve a lot of of work and quite a few hacks. I think you will be better off either creating a new custom JComponent with an appropriate model for this purpose or using an existing solution such as [JIDE Grids|http://www.jidesoft.com/products/grids.htm] which includes a CellSpanTable.

ISE - DHCP SPAN and DHCP Profiling

Hi everyone,
We're embarking on an evaluation of ISE and trying to clarify my thoughts around the DHCP based profiling probes.
If we are using DHCP SPAN and have all DHCP traffic mirrored to ISE, should we still use IP helpers and the DHCP probe?
I would expect if we're using DHCP SPAN and mirroring all the traffic then using the DHCP probe with IP helpers on floor switches is a little redundant.
Thanks,
Mark

Hi,
Just to add from my experience;
I am deploying ISE for the first time, I have around 100 sites ( I only use ISE+WLC 7.3, NO WIRED).
It's good to forward all dhcp request to ISE with IP-HELPERS before deploying.
This is what I did with one of my sites and I had no problem when they switched over as 90% of devices were already profiles using dhcp probe
Hope to help.
P.s note that WLC 7.3 does send first http packet to ISE but only if you opened up safari first after authentication, if you opened any other application that uses http protocol it will send weird strings to ise, ie VIBER and so on.
Look around i've posted a thread about it

MIBS to Monitor Etherchannel and trunks via SNMP

I would like to monitor the status of etherchannel and trunk configurations in 6500 Catalyst switches running both CATOS and IOS. I would like to understand the specific mibs/OIDS that should be monitored for etherchannels and trunks. I am trying to get a better handle on tracking the etherchannels and trunk dynamically and then understanding when the ports are having issues (up/down and errors). I need to understand how to differentiate these type of ports from regular access ports.
Thanks,
Tim

Hi Tim,
what exactly do you want to query via SNMP?
For an (PAgP) Etherchannel, the member-interfaces might be interesting:
https://supportforums.cisco.com/message/3957914#3957914
For a trunk, you could start with the operational mode, depending on the platform you can use:
vlanTrunkPortDynamicStatus (CISCO-VTP-MIB):
vlanTrunkPortDynamicStatus.49 = notTrunking
vlanTrunkPortDynamicStatus.50 = trunking
vlanPortIslOperStatus (CISCO-STACK-MIB):
vlanPortIslOperStatus.13.43 = notTrunking
vlanPortIslOperStatus.13.44 = trunking
Hope that helps
Rolf

ISCSI and trunking

Hi,
I am setting up a test environment for evaluating iSCSI and we would like to know if Sun Trunking 1.3 and iSCSI under Solaris 10 is supported, we would also like to implement jumbo frames as well.
Has anyone tried this kind of configuration?
Thank you in advance for any information!
Chris

I think you should be using dladm rather than Sun
Trunking with Solaris 10.
Also, you don't say, but if you're planning to use
Solaris iSCSI targets, then they don't exist in
Solaris 10 yet, you need OpenSolaris for target
support at the moment.Thanks for your reply.
The iSCSI target was a NetApp appliance. We actually
did find that Sun Trunking 1.3 works fine with
Solaris 10 as well as jumbo frames.
We used Sun's quad (ce) gigabit Ethernet adapter and
trunked two ports on the host end.
Thanks again.
I'll have to look into dladmMain. update 2 of Solaris 10 has native iSCSI initiator.
Works great on 3PAR's storage array.
M

Difference with cascading and trunking

Hi guys ,
What's the difference with cascading two switches and trunking two switches . I believe , you need to trunk , is because , you are carrying multiple vlans through a trunk and cascading two switches is to make two switches become virtualy one . Only management vlan , and not many vlan .
Am I correct , please advice ......

Hi, you have it right, the purpose of trunking is to allow you to extend vlans where you cannot physically install another switch for those vlans for various reasons. For example ideialy you want to have one unique vlan per department so you setup one 48port access switch for users in department-X but cannot do so for department-Y being in same location , here you you can then use trunk from a VTP server switch and a VTP client switc and pass department-Y vlan onto that switch thus having both departments in same switch but different vlans.. here it is assumed there are SVI layer 3 interfaces configured for each vlan if both VLANS need to communicate one another.
On the other hand cascading is simply interconnecting the two switches to be managed using swith cluster techology and no neccesarity need to implement trunking and have it manage through one ip address and mamagement vlan.
Rgds
Jorge
rate any helpful post if it helps!

Private Vlans and trunk mode

if we have a primary vlan 100 associate with it
vlan 11 over {fa0/2 work as host mode} , vlan 12 over {fa0/3 work as host mode} they work as secondry community vlan
and vlan 13 as isolated secondry vlan over {fa0/4 host mode}
How we can route between private vlans 11,12,13 and {vlan 50 fa0/5 access mode}
cloud we use the fa 0/1 which connected to L3 device as promiscouous mode and trunk mode at the same time or what ... ??
and

Private vlan's are all on the same subnet, so from what you are writing I see:
100-------------------------------
| | |
| | |
11 12 13
Fa0/2 fa/03 fa0/4
and you want to route to Vlan 50, correct?
In that case you need to trunk vlan 100 to a vlan interface and make sure that vlan 50 also has a routed interface on the same device.

SGE2010 port-channel and trunking config question

I have port-channels configured and working for the native VLAN on multiple SGE2010s. I now want to add multiple VLANs and enable trunking for the port-channel. I am not clear on the appropriate way to enable trunking as it can be enabled on the port and on the port-channel. The ports and port-channel are currently in access mode. If anyone can provide the correct configuration, I would appreciate the guidance. I also need to get the port-channels and trunking working with 3Com 4500 & 4200s. If you know of any configuration issues, again any guidance would be appreciated

Hi Jacqueline,
Sorry Juans answer needs some correction, but I am grateful for Juans participation.
The SGE2010 does not support a CLI.
There is a unsupported CLI, that someone plastered somehwere on this community, but i must admit i still like to use the GUI.
The software on the SGE2XXX was recently updated so you can find that on the cisco.com website.
I have created a link below to a recording i just made, regarding Link aggregation on the SGE2XXXX, i thnk if you see the 11 minute recording a couple of times, maybe pause it, play with your switch, it will start to make sense.
you can't breat the switch by configuring it
click here to see a recording of me creating a Link aggregation between two switches
regards Dave

How can I use Local SPAN with RSPAN ??

How can I use Local SPAN with RSPAN ??
I want to mirror traffics from ISP-A and ISP-B to Anomaly-detector module.
so I had configured like this...
C6500-A
vlan 1000
name RSPAN
remote-span
monitor session 10 source interface Gi5/1 - 2 rx
monitor session 10 destination remote vlan 1000
monitor session 20 destination anomaly-detector-module 3 data-port 1
monitor session 20 source remote vlan 1000
interface GigabitEthernet1/13
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1000
switchport mode trunk
no ip address
C6500-B
vlan 1000
name RSPAN
remote-span
monitor session 10 source interface Gi5/1 - 2 rx
monitor session 10 destination remote vlan 1000
interface GigabitEthernet1/13
switchport
switchport trunk encapsulation dot1q
switchport trunk allowed vlan 1000
switchport mode trunk
no ip address
end
but it was not working..
it wasn't any change of input packet hit count when
I'd enter a command 'show anomaly-detector module 3 data-port 1 traffic'
was upper configuration wrong..?
Can I use VACL configuration ?

try to change "monitor session 10 destination remote vlan 1000 " to "monitor session 10 destination anomaly-detector-module 3 data-port 1 " on C6500-A

Do I configure spanning-tree port type ed trunk on LACP port-channels

Hello,
Can't seem to see a clear answer and wondering if something could offer some advice please?
We are using LACP aggregation across all our 10 gig attached servers and also trunking them. We're running a VPC pair of 5596 Nexus.
For a standard trunk port I always add the spanning-tree port type edge trunk to the interface config.
However I think I should be adding this to the overiding port-channel config. At present a colleague has configured the VPC below omitting the spanning-tree port type config.
interface port-channel100
description a-server
switchport mode trunk
switchport trunk allowed vlan 100
vpc 100
The port member configs are these which do contain the spanning tree port type:
interface Ethernet1/1
description a-server(1)
switchport mode trunk
switchport trunk allowed vlan 100
spanning-tree port type edge trunk
channel-group 100 mode active
I always try to keep the overiding port channel config the same as its members and obviously for most config, you can't have disparate configs anyway.
However for the spanning tree config the NexOS allows you to have the members with spanning tree port types and not have to reflect that in the port-channel.
However I have this issue with STP:
Switch1# show spanning-tree interface po100
Vlan Role Sts Cost Prio.Nbr Type
VLAN0100 Desg BKN*200 128.4996 (vPC) Network P2p *BA_Inc
Is this due to the inconsistency with my port channel to member configs?
Any advice would be gratefully accepted.
Thanks!

Hi Paul, there are some parameters you can define on individual ports and there are some of them that will be inherited from the port-channel configuration no matter what has been configured under the infidividual ports. Spanning-tree configuration is one of the inherited ones. As soon as the port joins into a port-channel, it will start to use spanning-tree settings under the port-channel. When it leaves the channel, then it can continue to use the individual configuration.
There is a nice summary here under NX-OS Interface Conf Guide > Port-Channel Conf:
http://www.cisco.com/en/US/docs/switches/datacenter/sw/6_x/nx-os/interfaces/configuration/guide/if_portchannel.html#wp1798338
Evren

C1410BR and Trunking

We are running C1410 PP links. One bridge connected to C3550, the other to a Media Converter with fiber running to another MC into a C3550 switch. Had an issue when I tried to configure VLANs on bridges, couldn't pass traffic through trunk ports on switches. Below is my switch trunk config...
switchport trunk encapsulation dot1q
switchport mode trunk
no ip address
duplex full
speed 100
spanning-tree portfast
I have the same config for my C1200 AP's, with management VLAN plus others. Not using MC though. I was assuming that MC would just pass all traffic through?

When you set up the bridges you must configure your switches on either end for trunking. Imagine the bridges arent even there, and set it up as if it we a trunk inbetween 2 switches. For the bridge config, you can only have one ssid, but you need multiple vlans. Set up the one ssid and set up every vlan you want allowed over the trunk in the bridges. I had to configure 4 vlans on my bridges. (One management VLAN, 3 user vlans that are used on the switch)
The bridges would NOT pass any vlan traffic they didnt know about, so i added every vlan that would be traveling across the trunk connection to the bridge config. Now it works. Hope that helps
For the switch config try this:
switchport trunk encapsulation dot1q
switchport trunk native vlan 5
switchport trunk allowed vlan 5,10,11,12,13
switchport mode trunk
(VLAN numbers may not match your configuration)

Email activity in BPEL: Would the email body support span and div elements

Whenever the body of the html contains span or div, I am receiving the compilation error:
Error(283): invalid xpath expression
xpath expression "string('<html> <body> Dear&nbsp;BBB Sincerely, AAA </body> </html>')" specified in <from> is not valid, because XPath query syntax error.
The syntax error occurs while parsing XPath expression string('<html> <body> Dear BBB Sincerely, AAA </body> </html>'), at position 44.
The XPath query syntax was wrong; the exception was: Expected: ).
Check the detailed root cause described in the exception message text and verify that the XPath expression named in the error message is correct. The XPath expression is defined in the BPEL process.
Make sure the expression is valid
Working:
<html>
<body>
Dear BBB
Sincerely,
AAA
</body>
</html>
Not working HTML:
<html>
<body>
Dear BBB
Sincerely,
AAA
</body>
</html>Even when I change "Cambria Math","serif" result is the same.

<html>
<head>
<style type="text/css">
span.blue {color:lightskyblue;font-weight:bold}
span.green {color:darkolivegreen;font-weight:bold}
</style>
</head>
<body>
My mother has light blue eyes and my father has dark green eyes.
</body>
</html>

Screen Spanning and external monitor

Hello,
This morning I experimented my iBook and screen spanning.
I got my resolution to 1280X1024, but- The mirrored image sat in the middle of the external screen..I don't know if this is my monitor that is doing this, or if it's some setting I can set on either the laptop or monitor.
Any ideas?
Thank you!

Did you use Screen Spanning Doctor?

SPAN and RSPAN, ISL and TRUNKING

Similar Messages

Maybe you are looking for