Cisco :: 6509 - Basic NetFlow Setup With SolarWinds
Oct 14, 2012
I am trying to setup netflow with on 6509 and SolarWinds NetFlow Traffic Analyzer v3.10.0
The problem I have is that after configuring the basic settings of NetFlow on both side I can't see all the traffic I expected to capture in NetFlow.
The details of my problem.
I want to monitor the traffic on VLAN 20.
In the general configuration of the switch I have entered the following
ip flow-export source vlan 10
ip flow-export version 9
ip flow-export destination 132.5.200.123 8080
Where vlan 10 is the management vlan. Vlan10 can ping 132.5.200.123 no problem.
On VLAN20 interface I configured this
ip flow egress
ip flow ingress
ip route-cache flow
When I go to SolarWinds Netflow Traffic Analyzer I can see maybe 1 or 2 packets flows, like nothing of the data. If I do a capture of the traffic on VLAN 20 I can see there is loads of IP traffic on that VLAN but why is netflow not capturing the statistics of those flows and reporting it to NetFlow ?
command "ip flow-export source vlan 10" ?
View 4 Replies
ADVERTISEMENT
Dec 5, 2012
I am currently testing Netflow accuracy on my Solarwinds platform. So I have been transferring a large file across an ASA 5520, which is set up to send Netflow data to out Solarwinds server.
The problem is that the Netflow data does not show up on Solarwinds for about 2.5 hours. Once it gets there the size is correct, but the time stamp on Solarwinds is 2.5 hours behind when the transfer happened. For routers it is showing up within a few minutes.
ASA is running 8.2(5) and Solarwinds NTA 3.9.0. Firewall and Solarwinds times / timezones are the same.
View 8 Replies
View Related
Mar 30, 2011
we are using solarwinds as monitoring toll for all network devices..the solarwinds shows proper memory & cpu utilization for catalyst 3750 switches but shows hogh cpu/memory utilization values for 6509-vss...when we log into vss via cli the util & memory values are normal but same are very high on solarwinds..i have checked the solarwinds site also and fond that there was issue for 6509 related to high cpu in relase before 9.2 and 9.2 release of solarwind has resolved this issue..is anything to be checked on 6509 or as such any known bug in this regard for 6509-vss i am using software s72033-ADVIPSERVICESK9_WAN-VZ.122-33.SXI4A on my vss.
View 9 Replies
View Related
Aug 10, 2012
I came across some free bandwidth monitoring software by Solarwinds while doing some reading on other sites. I installed the software and now im stuck at setup. The Softaware is asking for...
Ip Address/Hostname
SNMP Version
Community string
I'm assuming the IP Address/Hostname would be my computers IPv4 on the network and as far as the SNMP Version goes im not sure, I can either choose from SNMP v1/2c or v3. For the community string, I'm assuming its Public but im not completely sure.When I attempt to go to the next step is says the credentials test failed So obviously something I entered is incorrect.
Note: this is on my own home network. Im using a Comcast all in one router and modem.
View 1 Replies
View Related
Apr 5, 2012
I am trying to setup Netflow to identify a problem I am having with a video conferencing system. Here are the commands that I have entered into the 6509 I am working on. I have checked this against another 6509 I have and these match. Not able to get netflow to show up on the solarwinds server. I have configured it to accept the netflow source coming from the 6509 I am working on.
ip flow-export version 9
ip flow-export destination 1.1.1.1 2055
ip flow-export sourc vlan 254
[Code].....
View 3 Replies
View Related
Jan 18, 2012
i want to enable net flow for multicast on my 6509-E with IOS s72033-advipservicesk9_wan-mz.122-33.SXI2a. I've checked the ios via software adviser to be sure that this feature is supported: Minimum Compatible Release 5 Additional Software
12.2SXJ Early Deployment View View View 512 512 N/A 12.2(33)SXJ s72033-advipservicesk9-mz.12.2-33.SXJ 12.2(33)SXJ N/A
12.2SXI Early Deployment View View View 512 512 N/A 12.2(33)SXI1s72033-advipservicesk9-mz.12.2-33.SXI1 12.2(33)SXI
I've used the command "ip multicast net flow output-counters", but that is not enough, i guess. It is required to use further interface commands like "ip multicast netflow....", isn't it? But this commands are not available:
Cisco6509(config-if)#ip multicast ?
boundary Boundary for administratively scoped multicast addresses
helper-map Broadcast to Multicast map OR Multicast to ip-address map
limit Limit multicast mroute state
[code]....
View 3 Replies
View Related
Jan 21, 2013
Below is the show ver of 6509 switch , how to enable netflow
sh ver
Cisco IOS Software, s72033_rp Software (s72033_rp-IPSERVICESK9_WAN-M), Version 12.2(33)SXI7, RELEASE SOFTWARE (fc1)
Technical Support: [URL]
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Mon 18-Jul-11 05:50 by prod_rel_team
[code]....
View 2 Replies
View Related
Jun 4, 2013
We have Cisco Catalyst 6509-V-E VSS Switch with Sup2T und IOS Version 15.0(1)SY2. We are gettin input netflow information from the gi2/3/7 but not output ... I am not sure why it does not work.
View 1 Replies
View Related
Nov 27, 2012
basic configuration for setting up cisco ASA 5510 for NAT and DMZ.
View 9 Replies
View Related
Aug 6, 2012
I am aware that the 3750 switches are not able to support Netflows, so I have created a SPAN port and spanning traffic from a specific port. I would like to create a seperate VLAN and trunk the traffic from the SPAN port down to the 6509 switch and then capture all the traffic for that VLAN on the 6509.
View 4 Replies
View Related
Feb 9, 2012
I am trying to configure the FE8 (WAN port) to connect to the Internet. We're swtiching ISP'ssoon so this router was set up at my office and has since been deployed at the client site. So far it is just plugged in and powered, with a console cable attached but no LAN cabling since this router will replace an existing one using the same addressing (except the WAN settings of course). So for now I am just focused on working on the WAN side since I have the ISP's cable modem attached . I had intiially used CP Express to config the wan port with an IP and mask and the various port forwarding options I intend to use. Now, connected via console cable, I tried pinging the IP of the wan port, which works. Beyond that, can't ping anyting (8.8.8.8 - a Google IP), also can't resovle any DNS names which makes sense with no apparent connectivity. Likely my config is just imcomplete. Nowhere in sh run do I see a Default Gateway, yet this ISP did specify one so I assume I need to enter it. Not sure what's the right way - I get confusing results on searches telling me either to use ip default-gateway or ip default-network. I want to think that it's as simple as entering in the IP but so far I've learned with the IOS that you never do anythign without knowing all the possible implications, which I don't. Also while I am at it, I don't know what I should have for DNS entries. This router will not be a DNS server for any internal systems that function will be managed by the two Windows 2008 R2 DNS machines. The ISP has also provided two IP's for their DNS servers. I thought it would be a simple matter of just adding two entrires via ip name-server command, which I did. So now I have four entries, first the two internal servers (inaccessible currently due to no LAN cabing to this router), and the two ISP servers. Can't ping those either, but again there's no default gateway.
View 39 Replies
View Related
Jul 23, 2011
How to set up more than 40 pc's with out internet connection using linksys switch.
View 3 Replies
View Related
Apr 13, 2010
I' ve three 4900M switches equipped with the WS-X4920-GB-RJ45 module and the WS-X4908-10GE module. Now I'm started to setup these switches in our lab environment for the first time. They behave a little bit strange in comparison with the C3750 series which I used before and which I will replace by these powerful machines.
I tried to setup these switches to be managed through the management port. I configured IP address, default route in the management vrf, set the source-interface for tftp,ssh,ftp and tacacs to use the management port. Ping using the manangement port was successful. After finishing theses steps I configured the TACACS and AAA settings accordingly the informations I found on CCO. I tested the settings with "test aaa group authentication" command- without success. On my Cisco ACS no request was received and the switch told me he could't reach the tacacs server. Other switches in the same IP subnet are working without failure, so firewall or server should not be the problem.
View 5 Replies
View Related
Jul 31, 2012
My daughter is on an Army Base in the South Pacific. They have Dial up internet on their home telephone not DSL. They have high speed wireless at the base community center/coffee shop. I will be going there in 9 days to install the dir-615. She has a Dell Desktop with Vista Basic SP1, laptop with XP, IPAD2 and a NOOK Tablet. The dir-615 HVE1 with firmware 5.00na on the bottom sticker. She said she was able to go to web address, login, change the user name and password, started on the wireless configuration and she paniced. My question is basically this. by using a cat5 cable from the desktop to the dir-615 with dialup internet connected can the router be setup using the automatic method as opposed to manual. Our first priority is to be able transfer files to the 2 tablets without being connected to the internet like a switch and secondly If possible go on to the internet from a Tablet or the Laptop. I assume the second option would reuire internet sharing option when setting up the network and performance would be ugly.
Can get I get this router to work this way with just dialup to set it up
View 5 Replies
View Related
Sep 25, 2011
how to configure the ASA to support netflow V9, either in ASDM or CLI mode as welcome.
i follow the PRTG guide it doens't seem success to make the detection on netflow activity
View 1 Replies
View Related
Jan 14, 2008
I have been trying to change my password and all the settings on my WRT54G V8 router today because I forgot the password, and I can't seem to navigate the Basic Setup page. I can log in (most of the time) after resetting the router, but whenever I try to click on a different tab (like "Wireless", or "Security") it comes up with the page saying "This Page Cannot Be Displayed." I'd like to be able to put a password on it (which I have successfully done before on this router) because I live in a college dorm and would like to keep my internet from being bogged down by other people using it.
View 9 Replies
View Related
Mar 13, 2012
Any major difrrence between Netflow v/s Netflow-Lite?
I am trying to understand if Cisco 4948E can do the same job as Cisco 4500E or not and difference between Netflow v/s Netflow-Lite will work for me to select correct product.
View 2 Replies
View Related
Apr 9, 2013
Monitoring H.323? I've got a 3925 running15.1(3)T with 9 PRI's. Because of our volume, syslogging is not the desired solution. We want something that we can potentially graph over an 8 hour period, so while the RTMT is accurate, either it won't store the data for 8 hours, or we aren't using it correctly (plus, mgmt may want access to the stats/graphs, and we're not keen on granting them access). So far, we've used: [code] None of these seem to accurately portray utilization. cdsp Active Channels seems to get the closest, so perhaps I have to tweak it a little bit, but so far, nothing accurate.
View 3 Replies
View Related
Jan 15, 2013
Has created a device poller on Solarwinds Orion NPM for the ASA5580-40?
View 1 Replies
View Related
Dec 9, 2012
We have recently upgraded oor LAN and we are using couple of Nexus5548UP switches in the core with 2960 stacks as access switches. Each access switches stack is connnected to both core switches with link being port-chanels and VPCs. All is working fine, but our SolarWinds management platform (NPM) is being flooded with "Physical Address changed" events. Here is an example of messages:
NSW_Core_2 - Ethernet1/7 Physical Address changed from 000000003811 to 73616D653811
NSW_Core_2 - Ethernet1/7 Physical Address changed from 200B82B43811 to 000000003811
For each interface I have messages like these repeating.I am not sure what those messages means or if there is actually anything wrong. Performance of the network is good, there are no errors on any interfaces and I do not see anything related in the switch loggs.
View 4 Replies
View Related
Aug 19, 2011
I would like to setup multiple DMZs for our hosting servers. Currently there is a single DMZ in which our reverse proxy servers are connected using a public IP address. The idea is to have the reverse proxy forward the request from the Internet to the hosting servers in another DMZ. The purpose of the hosting DMZ is to protect it from the outside as well as from the inside. There will also be a development DMZ where we can test content prior to going live with the website.
Network: We currently have two Cisco 6509's (Core) with a FWSM in each running active/stanby configuration. There is a 10Gb Fiber connection between each Cisco switch to two Cisco 4948s (Top of Rack Switches). I can either setup OSPF or Trunking between the core and top of rack switches. The Cisco 4948s will support VLAN 7 (hosting DMZ 10.0.7.0/24) and VLAN 8 (development DMZ 10.0.8.0/24). Each webserver is connected to both Cisco 4948 for redundancy.
Question: If I have a single interface connecting both VLANs 7 and 8, either through Layer 2 or 3, then how can pass both DMZ traffic to the appropriate servers? The reason why the servers are in the same rack connected to the same two switches is that we are using Blade Servers and VMWare.
View 3 Replies
View Related
Oct 25, 2011
I need to setup a vlan between the 6509 and 2621 router. This needs to be a VLAN (200) the runs between the devices that uses DOT1Q trunking. The end result is all the networks (vlans) on the 6509 can talk to the LAN on the 2600 (10.133.22.0 / 23) and visa versa.
Device 1
6509 with CatOS / IOS
Config I did on the MSFC:
Interface Vlan 200
ip address 10.10.10.1 255.255.255.248
[code]....
View 13 Replies
View Related
Feb 22, 2012
I recently posted this same issue the other day, using TFTPd32. Now i am pretty close to fixing it. I do have a different setup; my pc ethernet port is broken so I am using an ethernet/usb adapter. I am attempting to backup my IOS from a 3550 switch to my PC.
This is the error I am getting. Code...
View 5 Replies
View Related
May 9, 2011
I am familiar with the PIX and ASA's. We have two Cisco 6509's with a FWSM installed in both. Our network is shown in the diagram. We use Blue Coat Packetshapers and Barracuda Proxy appliances. I plan on setting up HSRP on both 6509's for traffic coming from our ISP Cisco 2811's as well as use HSRP for our DMZ and internal network. I would like to setup the firewalls for statefull failover. We will be using PAT for our internal users and one-to-one static NAT for our DMZ.
Is it better to setup the firewall's as transparent or routed?
Since the firewall is built into the switch, how do I insert the Barracuda proxies? I can configure them as transparent or routed proxies.
View 2 Replies
View Related
Nov 21, 2011
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports
x1 NAM
x2 Sup720
Running 12.2(18)SXF3
I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis?Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
View 2 Replies
View Related
Nov 21, 2011
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports
x1 NAM
x2 Sup720
Running 12.2(18)SXF3.I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis. Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
View 2 Replies
View Related
Oct 21, 2011
step by step ACS 5.1's basic configuration through CLI?
View 2 Replies
View Related
Dec 25, 2012
I have 2 sub net directly connected to a ASR 1002. This is the configuration
interface GigabitEthernet0/0/0
ip address 193.145.14.114 255.255.255.252
negotiation auto
[Code] ....
The interface gi0/0/0 is connected directly to 193.147.14.113/30 in another router. And the Gi0/1/1 is connected to my internal infra structure. From my router I can ping 193.145.14.113 . So. I configure my PC with default-gateway 193.147.107.3 (ASR).
From my PC
I can ping 193.147.107.3 (gi 0/1/1)
I can ping 193.145.14.114 (gi 0/0/0)
But I can not ping 193.145.14.113 (the other point connected to gi0/0/0)
Why???? It is a IP inside of a sub net directly connected to the ASR. Why the ASR is not doing routing? ip routing is enable.
View 2 Replies
View Related
Nov 27, 2011
I have a Cisco ASA5505 running the latest asdm and ios.
[I]Cisco Adaptive Security Appliance Software Version 8.4(2) Device Manager Version 6.4(5)206[/I]
I am trying to get basic web resolution and access but not having any luck. I just wanted to know if there is anything special that I needed to do with the ASA before I can do this. I've made a quick visio diagram of the network, see below: [URL]
The Vigor has a local sub net of 192.168.0.x/24 however there is also a "For routing use only" option. See below: {URL}. I'm hopeful that by configuring the "For routing use ip address" as one of my allocation of public ip's, that it should work okay. I can actually ping by IP and name from the interface of the ASA but can't do that or browse to websites from clients which have their default gateway set to 192.168.0.252. I was under the assumption web browsing should work out of the box almost as it's treated as an outgoing connection. Here is my config for you to look at: (note, I've tried to set the route outside to the local ip of the dray tek and also the "For routing usage only" IP address).
ASA Version 8.4(2)
hostname gilwoodasa
domain-name gilwood.local
enable password 9PvFytIZ2Vpy8Gon encrypted
passwd 2KFQnbNIdI.2KYOU encrypted
names
[Code]...
So, if you're still reading this - all I am after is a way to get basic web browsing working. Here are the logs which show the attempted web access. [URL]
View 7 Replies
View Related
Jan 3, 2013
I am struggling to get this working after spending many hours looking at it I am now completely stuck. We are upgrading from a 857W to this 887 VA-M I have some experience of IOS and the 800 series. Our 857W works perfectly using almost the same config. Our situation is that the router will sit in front of our firewall and act essentially as a simple router passing everything through to our Firewall. Nat is done at the Firewall.
We currently have the following configuration that seems to connect the the ISP fine but I cannot connect to the vlan2 port on the switch the firewall cannot connect to he internet or route anything via the Vlan2 port no pings etc.. I am using Fast Ethernet 0 as the Vlan2 port and the rest are V LAN 1 with a local network address to allow me to connect a laptop.
We have a block of static IP addresses, the base of which is assigned to the V LAN 2 interface and used by Dialer 0 as IP Unnumbered. Config below.
4590 out of 262136 bytes
! Last configuration change at 17:42:06 UTC Thu Jan 3 2013
! NVRAM config last updated at 17:43:00 UTC Thu Jan 3 2013
! NVRAM config last updated at 17:43:00 UTC Thu Jan 3 2013
[ code].....
View 2 Replies
View Related
Sep 30, 2011
I have an ASA running 8.2(2).I am trying to get the network on the inside interface to be able to communicate through the outside interface and on to the internet.
View 18 Replies
View Related
Apr 13, 2013
I am trying simulate the next lab on GNS3 but the ping don't work between hosts on the same VLAN.
View 2 Replies
View Related
Jul 17, 2012
I work for a company that buys used cisco equipment and we are trying to get a basic test center set up. What is the best way to perform basic router testing? We have been trying to come up with something for about 3 weeks and so far all we can do is get in the configuration and play around.
View 1 Replies
View Related
