Manualshelf

Specifications

ManualsBrandsCisco ManualsComputer equipmentWS-X6380-NAM= - Network Analysis Module
41424344454647484950
3-9
Catalyst 6500 Series Switch and Cisco 7600 Series Router Network Analysis Module Installation and Configuration Note
78-16413-01
Chapter 3 Getting Started
Configuring Traffic Sources for Capturing NAM Traffic
Note If you are using the switch CLI to configure SPAN as a traffic source to NAM-1, set the destination port
to 3. If you are configuring SPAN as a traffic source to NAM-2, set the SPAN Port to destination port 7.
Destination port 8 is not available in this NAM release although switch and hardware support is
available.
Note You cannot use NAM ports as SPAN source ports.
The NAM can analyze Ethernet traffic from Ethernet, Fast Ethernet, Gigabit Ethernet, trunk ports, or
Fast EtherChannel SPAN source ports. You also can specify an Ethernet VLAN as the SPAN source.
For more information on configuring SPAN and RSPAN, refer to the switch software configuration
guide.
To set the NAM as a SPAN destination port, perform this task in privileged mode:
This example shows how to set SPAN VLAN 1 to a NAM-2 that is located in slot 5:
Console> (enable) set span 1 5/7
Using a LAN VACL as a Traffic Source
Unlike WAN VACLs, which can be used to capture inbound or outbound VLAN packets, Catalyst
operating system VACLs can only be used to capture VLAN packets as they are initially routed or
bridged into the VLAN on the switch.
This example shows how to create a VACL that captures all the IP packets that are bridged or routed into
VLAN 1 on the switch to the NAM-1 data port 6/3:
Console> (enable) set security acl ip LANCAPTURE permit ip any any capture
Console> (enable) commit
Console> (enable) set security acl map LANCAPTURE 1
Console> (enable) set security acl capture 6/3
This example shows how to create a VACL that captures a specific VLAN 1 conversation:
Console> (enable) set sec acl ip LANCAPTURE permit ip host 172.20.122.70 host
172.20.122.226 capture
Console> (enable) set security acl ip LANCAPTURE permit ip any any
Console> (enable) commit
Console> (enable) set security acl map LANCAPTURE 1
Console> (enable) set security acl capture 6/3
Task Command
Set the NAM as a SPAN destination
port.
set span {src_mod/src_ports | src_vlans | sc0} {dest_mod |
dest_port} [rx | tx | both] [inpkts {enable | disable}]
[learning {enable | disable}] [multicast {enable | disable}]
[filter vlans...] [create]