Manualshelf

Specifications

ManualsBrandsCisco ManualsHome building and DecorNetwork Analysis Module 6000
51525354555657585960
© 2006 Cisco Systems, Inc.
All rights reserved.
Product Features 2-14
NAM / Traffic Analyzer v3.5 Tutorial
© 2006 Cisco Systems, Inc. All rights reserved.
Product Features 2-14
NAM / Traffic Analyzer v3.5 Tutorial
NAM-1/2 Data Sources
VACL
NAM-1/2 Data Sources
VACL
Supervisor Engine
WAN Card
NAM
Cisco
Catalyst
6500
Chassis
Data Bus
Copied
Traffic
Copied
Traffic
Example: A VLAN ACL can be
used to capture WAN traffic and
forward to the NAM as an
Ethernet frame
Example: A VLAN ACL can be
used to capture WAN traffic and
forward to the NAM as an
Ethernet frame
Multiple Uses of VLAN ACLs for Traffic Analysis
Use a VACL to analyze WAN interfaces that can not be spanned
Use a VACL if no more SPAN sessions are available for use
Use a VACL to pre-filter specific types of traffic for analysis
VACL traffic sent to NAM data port looks just like SPAN data to the
NAM
Multiple Uses of VLAN ACLs for Traffic Analysis
Use a VACL to analyze WAN interfaces that can not be spanned
Use a VACL if no more SPAN sessions are available for use
Use a VACL to pre-filter specific types of traffic for analysis
VACL traffic sent to NAM data port looks just like SPAN data to the
NAM
VACL traffic sent to
NAM Data Port
VACL traffic sent to
NAM Data Port
NAM-1/2 Data Sources - VACL
VLAN Access Control Lists or VACLs can be a valuable source of traffic for analysis by the NAM for the
Catalyst switches running Native IOS. VACLs can be used in the following three ways:
1. Since the Catalyst SPAN capability is limited to LAN ports, how can a user analyze WAN links using
the NAM-1/2? This can be done using one of two methods: VACLs and NetFlow Data Export feature,
which is described shortly. The user can use a VACL to configure the WAN port data to be captured
and forwarded to the NAM as Ethernet frames. This feature only works for IP traffic over the WAN
interface
2. Secondly, VACLs can be used with LAN ports and is useful if no more SPAN sessions are available.
3. Also, VACLs can be used to help filter on specific types of traffic for further analysis by the NAM.
To configure VACLs, the user must use the CLI of the host switch For further information on VACLs and
their configuration, refer to the NAM User Guide and chapter 5 for links to references on VACL.