SPAN  Switched Port Analyzer &单臂路由

SPAN  Switched Port Analyzer 交换端口分析器

一、实验目的:PC0监控fa0/1流量

sw1关键配置

monitor session 1 source int fa0/1

monitor session 1 destination remote vlan 100 refector-port fa1/5

vlan 100

remote-span

 

sw2关键配置

vlan 100

remote-span

monitor session 1 source remote vlan 100

monitor session 1 destination int fa0/2

show monitor session 1   //查看镜像的配置

*****************************************************

二、VLAN30VLAN40互访,单臂路由实现

1. SW1&SW2 Trunking

2. 确保SW1VLAN30VLAN40

3. SW1&R1 Trunking

4. R1创建子接口并封装

*****************************************************

三、Vlan acl, pc0不能访问PC1

R2(config)#access-list 5 permit 192.168.30.10       PC1:192.168.30.10

vlan access-map test-vacl

match ip address 5

action drop     //默认action是forward

vlan filter test-vacl  vlan-list 100     //VLAN下调用