Home
Support
Product Support
Routers
Cisco 8000 Series Routers
Configuration Guides

Traffic Mirroring Configuration Guide for Cisco 8000 Series Routers, Cisco IOS XR Release

View all Saved Content

PDF

Is this helpful?

Helpful Unhelpful

Feedback

Thank you for your feedback. Your response has been recorded.

Ask about this document

Cisco Configuration Guide, Release 4.2

Table of contents

Expand all sections

About this document

Preface

Using YANG Data Models

Getting Started with Traffic Mirroring

Traffic mirroring
Configuration guidelines for traffic mirroring
Restrictions for traffic mirroring
Traffic mirroring terminology
Traffic mirroring types
How traffic mirroring works

ACL-based traffic mirroring

ACL-based traffic mirroring
How ACL-based traffic mirroring works
Configure ACLs for traffic mirroring
Configure layer 3 ACL-based traffic mirroring
Attach a source interface
Multiple SPAN ACL sessions for MPLS

Local SPAN

Local SPAN
Configuration guidelines for local SPAN
Restrictions for local SPAN
Configure local SPAN
Local SPAN with ACLs
Local SPAN rate limit

ERSPAN

ERSPAN
Configuration guidelines for ERSPAN
Restrictions for ERSPAN
Supported ERSPAN sessions
ERSPAN over GRE
Partial packet capture for ERSPAN
ERSPAN with flexible CLI
ERSPAN rate limit
ERSPAN rate-limit per destination
Traffic mirroring with DSCP
Monitor ERSPAN sessions with SPAN and security ACLs
Selective packet capture for protocol and drops

SPAN to file

SPAN to file
Always-On SPAN to file with periodic write
SPAN to file with unique capture

Mirror forward-drop packets

Mirror forward-drop packets
Guidelines for mirroring forward-drop packets
Restrictions for mirroring forward-drop packets
Configure forward-drop packets

Mirror buffer drop packets

Mirror buffer drop packets
Guidelines for mirroring buffer drop packets
Configure buffer drop packets mirroring for SPAN to file
Configure buffer drop packets mirroring for ERSPAN

File Mirroring

File mirroring
Restrictions for file mirroring
Configure file mirroring

How to troubleshoot traffic mirroring

Troubleshoot traffic mirroring issues
Additional debug commands

Local SPAN

Updated: February 5, 2026

Overview

Learn how to set up and manage local SPAN to mirror traffic for network analysis on a single router. This chapter covers general configuration, filtering with ACLs, rate limiting, and provides essential guidelines and restrictions for implementation.

It explains how Local SPAN copies traffic from source interfaces or VLANs to a destination port on the same device for analysis.

Local SPAN

This section explains Local SPAN, a basic traffic mirroring feature that copies traffic between source and destination interfaces on the same router. It provides a definition of the feature and includes a history of supported hardware and software releases.

Configuration guidelines for local SPAN

This section provides key guidelines for local SPAN, including supported traffic types, interface requirements, and session limits. It outlines how to effectively use the feature for ingress traffic mirroring across various physical and bundle interface configurations.

Restrictions for local SPAN

This section provides the generic and ACL-specific restrictions for implementing local SPAN, such as limitations on egress mirroring and interface types. Understanding these constraints ensures proper configuration and avoids unsupported setups.

Configure local SPAN

Use this procedure to configure a local SPAN session by defining a destination interface and attaching it to specific source interfaces. It also describes how to verify the session status and view internal statistics to ensure successful traffic mirroring.

Local SPAN with ACLs

This section explains how local SPAN uses Access Control Lists (ACLs) to filter and mirror ingress traffic based on specific capture criteria. It details the benefits of selective mirroring for both permitted and denied packets to enhance network monitoring and security.

Local SPAN rate limit

This section explains the local SPAN rate limit feature, which enables rate limiting at the session level using traffic classes.

Need help?

Open a support case

(Requires a Cisco Service Contract)

Bias-free language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.