I’m using 7504R switch as tap aggregation mode, and want to steer/filter the traffic from tap ports to a tool ports based on source and destination IP addresses.
As the list has more than 400+ subnets (example below), steering or filtering the traffic using policy-map or class-map within a policy-map, requires applying 20,000+ rule:
As egress ACL is not compatible with 7504R switches in tap aggregation mode, I’m wondering if is there a way to steer the traffic on the tap interface then filter it in the tool interface or have a two layer of steering and filtering in the same policy-map.
Note: I was able to do it in 7150 switch, by apply steering rules in policy-map on the tap port then the ACL in the tool port.
Thanks in advance,
Post your Answer
You must be logged in to post an answer.