Maximum active span/monitor session in cisco switch

By Jason.White
in Smart Home, Network & Security

 Share

Recommended Posts

Apprentice

Jason.White

Posted
Posted

I have cisco nexus 3548 and I created a monitor session while as 10Gi source port gi1/0/1 and 10Gi destination port Gi1/0/24. So my source port has 10Gi duplex traffic while my destination is only able to receive 5Gi duplex traffic.

 

I have a scenario as I have 30 10Gi lines ie. each line will be having 10Gi tx traffic and 10Gi rx traffic, so now I want to create 30 span/monitor session such that I can do one-to-one port mirroring of each of these lines at a single instance of time.

So my present limitation is my cisco 3548 switchcan have only 2 maximum active span session at single instance of time with also the limitation of only able to mirror 5 gi taffic when traffic exceeds 5Gi.

 

So now I want to purchase a switch which can fulfill my above scenario ie. having 30 active span session at a single instance of time while able to mirror all traffic without any limitation.

Budget is not an issue so please let me know if anybody can suggest

Grand Master

+BudMan MVC

Posted
  • MVC
Posted

huh??  Why and the hell would you need 30 span sessions?

 

Also your saying you are seeing 10ge of traffic on port your spanning, but on the span your only able to see 1/2 of it??  Then I would guess you set the sampling to 2.. where you only see 1 out of 2 packets.. This is setting that can be adjusted.. Didn't think sampling was on by default so you must of turned it on.  Or your only doing 1 direction ie ingress or egress?

 

If I look here..

http://www.cisco.com/c/en/us/td/docs/switches/datacenter/nexus3548/sw/verified_scalability/6_x/b_N3548_Verified_Scalability_6_x/verified-scalability.html

 

Says it can do 4 bi-directional sessions.

 

Pretty sure you can do some really odd things if you enable the warp span licensing on those switches.  Those switches are low latency switches..

 

If your wanting to monitor traffic of 30 different ports all the same time.. Your talking using taps not the switch itself..  I know of no switch that can do that many active span sessions..

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • Spaceballs 2 / The Schwartz Awakens (2027)

      By eiffel_g · Posted

      Just hope it will not be as bad as History of the World: Part II...
    • LibreOffice closes in on Microsoft Office, leaves Windows 7/8 behind in 25.8 Beta 1

      By Jdoe25 · Posted

      +1 for LibreOffice. At least you should try it. The one from M$ is just a bloated turd at this point.
    • Windows 11 finally gets a small, but long-requested Windows 10 taskbar feature

      By monterxz · Posted

      Yeah, I've had a Recycle Bin on my taskbar since XP and till last year when I got a new laptop with Windows 11. It was especially useful for touch workflow - I could drag files into Recycle Bin from anywhere because my Taskbar is always visible, unlike desktop icons.
    • It's been four years, and I still don't have a strong enough reason to upgrade to Windows 11

      By Jaybonaut · Posted

      Not after SP1. There was a legitimate file copy issue prior.
    • Microsoft 365 security in the spotlight after Washington Post hack

      By zikalify · Posted

      Microsoft 365 security in the spotlight after Washington Post hack by Paul Hill The Washington Post has come under cyberattack which saw Microsoft email accounts of several journalists get compromised. The attack, which was discovered last Thursday, is believed to have been conducted by a foreign government due to the topics the journalists cover, including national security, economic policy, and China. Following the hack, the passwords on the affected accounts were reset to prevent access. The fact that a Microsoft work email account was potentially hacked strongly suggests The Washington Post utilizes Microsoft 365, which makes us question the security of Microsoft’s widely used enterprise services. Given that Microsoft 365 is very popular, it is a hot target for attackers. Microsoft's enterprise security offerings and challenges As the investigation into the cyberattack is still ongoing, just how attackers gained access to the accounts of the journalists is unknown, however, Microsoft 365 does have multiple layers of protection that ought to keep journalists safe. One of the security tools is Microsoft Defender for Office 365. If the hackers tried to gain access with malicious links, Defender provides protection against any malicious attachments, links, or email-based phishing attempts with the Advanced Threat Protection feature. Defender also helps to protect against malware that could be used to target journalists at The Washington Post. Another security measure in place is Entra ID which helps enterprises defend against identity-based attacks. Some key features of Entra ID include multi-factor authentication which protects accounts even if a password is compromised, and there are granular access policies that help to limit logins from outside certain locations, unknown devices, or limit which apps can be used. While Microsoft does offer plenty of security technologies with M365, hacks can still take place due to misconfiguration, user-error, or through the exploitation of zero-day vulnerabilities. Essentially, it requires efforts from both Microsoft and the customer to maintain security. Lessons for organizations using Microsoft 365 The incident over at The Washington Post serves as a stark reminder that all organizations, not just news organizations, should audit and strengthen their security setups. Some of the most important security measures you can put in place include mandatory multi-factor authentication (MFA) for all users, especially for privileged accounts; strong password rules such as using letters, numbers, and symbols; regular security awareness training; and installing any security updates in a timely manner. Many of the cyberattacks that we learn about from companies like Microsoft involve hackers taking advantage of the human in the equation, such as being tricked into sharing passwords or sharing sensitive information due to trickery on behalf of the hackers. This highlights that employee training is crucial in protecting systems and that Microsoft’s technologies, as advanced as they are, can’t mitigate all attacks 100 percent of the time.

  • Recent Achievements

    • One Month Later
      Jdoe25 earned a badge
      One Month Later
    • Explorer
      Legend20 went up a rank
      Explorer
    • One Month Later
      jezzzy earned a badge
      One Month Later
    • First Post
      CSpera earned a badge
      First Post
    • One Month Later
      MIR JOHNNY BLAZE earned a badge
      One Month Later

  • Popular Contributors

    1. 1
      +primortal
      618
    2. 2
      ATLien_0
      277
    3. 3
      +FloatingFatMan
      179
    4. 4
      Michael Scrip
      151
    5. 5
      Steven P.
      116
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!