Tuesday, February 26, 2013

VACL on switch WS-C3750X-24T-L

We are trying to configure VACL capture on switch WS-C3750X-24T-L (IOS Code – c3750e-universalk9-mz.150-1.SE2.bin).

ip access-list extended IDS

permit ip any any


vlan access-map IDS-map

action forward capture                                   <<< not available

match ip address IDS

vlan filter IDS-map vlan-list 100


interface Gi1/0/3

description IDS-Monitor-Port

            switchport capture                                        <<< not available

            switchport capture allowed vlan 100            <<< not available

Please advice if this is a IOS code issue or these commands are not at all supported on this switch model. 

Unfortunately no. The VACL capture concept is unique to the 6500/7600 architecture hardware ASICs.   For a 3750x,  you have to use the monitor session/Local SPAN type configuration for packet mirroring."

Citation - This blog post does not reflect original content from the author. Rather it summarizes content that are relevant to the topic from different sources in the web. The sources might include any online discussion boards, forums, websites and others.

