Hey King, Did you limited the trunk for vlan 1 and 23? You may want to take off all other non-used from vlan 1 besides Client and IPS trunk for testing purposes.
The command you wrote should be make that for you On Mon, Apr 18, 2011 at 9:50 AM, Tyson Scott <[email protected]> wrote: > Kingsley, > > > > I don't know about the below question. Not without testing but I am > guessing it doesn't like you using VLAN 1. But would need to test to > confirm. > > > > Regards, > > > > Tyson Scott - CCIE #13513 R&S, Security, and SP > Managing Partner / Sr. Instructor - IPexpert, Inc. > Mailto: [email protected] > Telephone: +1.810.326.1444, ext. 208 > Live Assistance, Please visit: www.ipexpert.com/chat > eFax: +1.810.454.0130 > > > > IPexpert is a premier provider of Self-Study Workbooks, Video on Demand, > Audio Tools, Online Hardware Rental and Classroom Training for the Cisco > CCIE (R&S, Voice, Security & Service Provider) certification(s) with > training locations throughout the United States, Europe, South Asia and > Australia. Be sure to visit our online communities at > www.ipexpert.com/communities and our public website at www.ipexpert.com > > > > *From:* [email protected] [mailto: > [email protected]] *On Behalf Of *Jim Terry > *Sent:* Monday, April 18, 2011 7:51 AM > *Cc:* [email protected] > *Subject:* Re: [OSL | CCIE_Security] Inline vlan pair with vlan 1 > > > > Hi all, > > > > I am not familiar with this command: vlan dot1q tag native and the 3560 > config Guide does not explain it in words that I can comprehend. What does > it do? > > > > JT > > > > > > > > On Sat, Apr 16, 2011 at 11:01 AM, Kingsley Charles < > [email protected]> wrote: > > Hi all > > I tried to configure inline vlan pair on a sensor pairing vlan 1 and 23. I > enabled 2004 and 2000 signatures.Traffic from 23 was coming in but not from > vlan 1 i.e., it was unidirectional. Since vlan 1 is the native vlan, it > should have been sent untagged and hence the sensor didn't swap it. Hence I > tried configuring* vlan dot1q tag native *and changing the native vlan to > some other vlan other than 1, still I faced the same issue. > > What could be the problem? > > > With regards > Kings > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > -- Bruno Fagioli (by Jaunty Jackalope) Cisco Security Professional
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and Looking for a Job check out www.PlatinumPlacement.co
