Hi all When we configure signature for TCP reset, the reset is sent through the monitoring interface and the shun request through the management interface.
When switch's interface is configured for monitoring, the port doesn't take ingress traffic for which we need to add the keyword "ingress" IPS interface monitoring single vlan option 1 : We should select the vlan option and specify the vlan in which the host is present. option 2 : We should select untagged and configure that a vlan as the "native vlan". Please suggest, if dot1q, isl, untagged is relevant to this case and provide a scenario when it will be used. sw(config)#monitor session 2 destination interface f1/0/2 ingress ? dot1q ingress forwarding using dot1q encapsulation isl ingress forwarding using isl encapsulation untagged ingress forwarding using untagged encapsulation vlan Set default VLAN for untagged ingress traffic IPS interface monitoring trunk option 1 : We should select the vlan option and specify the vlan in which the host is present. option 2 : We should select untagged and configure that a vlan as the "native vlan". Please suggest, if dot1q, isl, untagged is relevant to this case and provide a scenario when it will used. monitor session 2 destination interface f1/0/2 encapsulation dot1q ingress ? dot1q ingress forwarding using dot1q encapsulation isl ingress forwarding using isl encapsulation untagged ingress forwarding using untagged encapsulation vlan Set default VLAN for untagged ingress traffic With regards Kings
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
