Search this Blog

Monday, May 2, 2011

Netflow - Configuration query 4503 SUP


We have installed the Netflow services card in our 4503 SUP IV (Version 12.2(25)EWA10).

The commands we have used are as follows.

ip flow-cache timeout active 1
ip flow-export version 5
ip flow-export destination 10.10.0.1 9000
ip flow-export destination 10.10.0.2 9000
ip route-cache flow

When we try enabling ip flow ingress to an interface the option is not available just the ones below.

NZAKLNET(config-if)#ip ?
Interface IP configuration subcommands:
access-group Specify access control for packets
arp Configure ARP features
dhcp DHCP
igmp IGMP interface commands
verify verify

***********************************************************

It appears to be exporting data - we have not looked at the collectors configuration as yet.

NZAKLNET#sh ip flow export
Flow export v5 is enabled for main cache
Exporting flows to 10.10.0.1 (9000) 10.10.0.2 (9000)
Exporting using source IP address 10.10.0.3
Version 5 flow records
26474 flows exported in 883 udp datagrams
0 flows failed due to lack of export packet
0 export packets were sent up to process leve

**********************************************************

Do we not need to configure individual interfaces with the ip flow ingress command, it will in fact cover all interfaces by default?

For your IOS version, the netflow config enables collection on all interfaces by default.

Please click here for an overview.

Please click here for a sample configuration.

A network flow is defined as a unidirectional stream of packets between a given source and destination —both defined by a network-layer IP address and transport-layer port number. Specifically, a flow is identified as the combination of the following fields: source IP address, destination IP address, source port number, destination port number, protocol type, type of service, and input interface.

NetFlow Statistics is a global traffic monitoring feature that allows flow-level monitoring of all IPv4-routed traffic through the switch using NetFlow Data Export (NDE). Collected statistics can be exported to an external device (NetFlow Collector/Analyzer) for further processing. Network planners can selectively enable NetFlow Statistics (and NDE) on a per-device basis to gain traffic performance, control, or accounting benefits in specific network locations.

Citation - This blog post does not reflect original content from the author. Rather it summarizes content that are relevant to the topic from different sources in the web. The sources might include any online discussion boards, forums, websites and others.

No comments :

Post a Comment

 
/* Google Analytics begin ----------------------------------------------- */ /* Google Analytics end ----------------------------------------------- */