Hi, as the title says I am trying to craft an ERSPAN filter that excludes GRE traffic. The intent is to limit the capture of other ERSPAN traffic flowing through device.
I have looked at Cisco documentation and tried to apply a filter as below but it hasn't been successful.
Has anyone made something like this already?
monitor session 20 type erspan-source filter access-group filter_gre
vlan access-map filter_gre 5 match ip address filter_gre_acl action forward
ip access-list filter_gre_acl 10 permit tcp any any 20 permit udp any any 30 permit icmp any any
No comments:
Post a Comment