port span vlan

- M
- mmark751969
  
  Contact options for registered users
posted
15 years ago

Tue, May 20, 2008 12:59 AM

Just wondering, can i port span a vlan from any switch in the network, and sniff that vlan. If the vlan is sniffed, is all traffic except encrypted traffic vulnerable. Thanks

- N
- networkzman
  
  Contact options for registered users
Vote on answer
posted
15 years ago

Tue, May 20, 2008 8:40 AM

Mark

Ofcourse you could configure vlan based span and monitor the traffic on dest port or you could do that as port based span as well. hope this link would be of help

formatting link

Thanks

- T
- Trendkill
  
  Contact options for registered users
Vote on answer
posted
15 years ago

Tue, May 20, 2008 9:54 AM

Yes and I would consider using VACLs instead which are more scalable than spans. Although also depends what type of hardware/gear you are running. Spanning can be very intensive, and for smaller switches, I would stick to port spanning. Spanning trunks is perhaps the most dangerous for overrunning your hardware/memory.