Page 1 of 1

Can not remote access WFilter with cisco switch 2900S

Posted: Fri Nov 12, 2010 7:05 pm
by Tiff
We have a Cisco 2900S switch. I have enabled the SPAN port and connected the Wfilter machine NIC to that port. I can monitor the devices connected to the network now but I cannot see the wfilter machine remotely.

Is there some configuration I need to do on the NIC or do I require a second Nic?

Can not remote access WFilter with cisco switch 2900S

Posted: Fri Nov 12, 2010 7:41 pm
by gengw2000
Cisco switch does not allow outgoing traffic on the mirroring port by default.

To make WFilter remote access and blocking feature work, you have two solutions:

1. Enable the "ingress" parameter to allow outgoing traffic on the mirroring port. However, this is only supported by some cisco switches. I am not sure the 2900S supports it. You need to check the cisco manual.

Also please check the WFilter deployment of cisco 2950 for more details: cisco 2950 deployment

2. Add a secondary NIC. This solution is more simple. Using a secondary NIC is recommended when you're monitoring more than 100 computers, even the switch allowes outgoing traffic in the mirroring port.