3 Replies Latest reply on Oct 7, 2014 9:01 AM by levi

    Web Sense and port mirroring

    a_fuller New Member

           My customer is trying to use Web Sense to Monitor/Block internet traffic through a 1224ST. Port 24 of 1224 is the source port connected to internet access router and port 17 is the destination port hooked up to the Web Sense server (ADP provided). ADP is saying they can not collect data off Port 17 because the Adtran is tagging the packets with VLAN info. All we need to be able to monitor is VLAN 1 traffic. What do I need to do in my setup to strip the VLAN tag so Web Sense can collect the data.Current config as follows.

       

      !

      ! ADTRAN, Inc. OS version 13.08.00

      ! Boot ROM version 12.02.00

      ! Platform: NetVanta 1224ST PWR, part number 1200584L1

      !

      !

      clock timezone -5-Eastern-Time

      ip name-server 192.168.2.70 192.168.2.5

      ip default-gateway 10.2.2.254

      !

      no auto-config

      !

      event-history on

      no logging forwarding

      no logging email

      logging email priority-level info

      !

      !

      vlan 1

        name "Default"

      vlan 2

        name "Voice VLan Phone"

      vlan 3

        name "Voice VLan Servers & Switches"

      vlan 4

        name "LV3 MPLS Interface"

      vlan 5

        name "SIP Trunks"

      !

      interface eth 0/1

        no shutdown

        switchport mode trunk

      !

      interface eth 0/2

        no shutdown

        switchport mode trunk

      !

      interface eth 0/3

        no shutdown

        switchport mode trunk

      !

      interface eth 0/4

        no shutdown

        switchport mode trunk

      !

      interface eth 0/5

        no shutdown

        switchport mode trunk

      !

      interface eth 0/6

        no shutdown

        switchport mode trunk

      !

      interface eth 0/7

        no shutdown

        switchport mode trunk

      !

      interface eth 0/8

        no shutdown

        switchport mode trunk

      !

      interface eth 0/9

        no shutdown

        switchport access vlan 3

      !

      interface eth 0/10

        no shutdown

        switchport mode trunk

      !

      interface eth 0/11

        no shutdown

        switchport access vlan 5

      !

      interface eth 0/12

        no shutdown

        switchport mode trunk

      !

      interface eth 0/13

        no shutdown

        switchport mode trunk

      !

      interface eth 0/14

        no shutdown

        switchport mode trunk

      !

      interface eth 0/15

        no shutdown

        switchport mode trunk

      !

      interface eth 0/16

        no shutdown

        switchport mode trunk

      !

      interface eth 0/17

        no shutdown

      !

      interface eth 0/18

        no shutdown

        switchport mode trunk

      !

      interface eth 0/19

        no shutdown

        switchport mode trunk

      !

      interface eth 0/20

        no shutdown

        switchport access vlan 3

      !

      interface eth 0/21

        no shutdown

        switchport access vlan 3

      !

      interface eth 0/22

        no shutdown

        switchport access vlan 3

      !

      interface eth 0/23

        speed 100

        no shutdown

        switchport access vlan 4

      !

      interface eth 0/24

        no shutdown

        switchport mode trunk

      !

      !

      interface gigabit-eth 0/1

        no shutdown

        switchport mode trunk

      !

      interface gigabit-eth 0/2

        no shutdown

        switchport mode trunk

      !

      !

      interface vlan 3

        ip address  10.2.2.11  255.255.255.0

        no shutdown

      !

      !

      monitor session 1 destination interface ethernet 0/17 no-tag

      monitor session 1 source interface ethernet 0/24 both

      !

      !

      end