Can not remote access WFilter with cisco switch 2900S

General discussion about WFilter ICF features, problems, configuration issues etc.

Moderators: imfirewall, gengw2000

Tiff
Posts: 2
Joined: Tue Oct 12, 2010 7:14 pm

Can not remote access WFilter with cisco switch 2900S

Postby Tiff » Fri Nov 12, 2010 7:05 pm

We have a Cisco 2900S switch. I have enabled the SPAN port and connected the Wfilter machine NIC to that port. I can monitor the devices connected to the network now but I cannot see the wfilter machine remotely.

Is there some configuration I need to do on the NIC or do I require a second Nic?

gengw2000
Posts: 281
Joined: Mon Sep 07, 2009 11:11 pm

Can not remote access WFilter with cisco switch 2900S

Postby gengw2000 » Fri Nov 12, 2010 7:41 pm

Cisco switch does not allow outgoing traffic on the mirroring port by default.

To make WFilter remote access and blocking feature work, you have two solutions:

1. Enable the "ingress" parameter to allow outgoing traffic on the mirroring port. However, this is only supported by some cisco switches. I am not sure the 2900S supports it. You need to check the cisco manual.

Also please check the WFilter deployment of cisco 2950 for more details: cisco 2950 deployment

2. Add a secondary NIC. This solution is more simple. Using a secondary NIC is recommended when you're monitoring more than 100 computers, even the switch allowes outgoing traffic in the mirroring port.


Return to “WFilter ICF”

Who is online

Users browsing this forum: No registered users and 41 guests