Cisco Infrastructure :: Using Netflow On Cat 6500s With The NAM-2 As The Collector?
Feb 17, 2004Using Netflow on Cat 6500s with the NAM-2 as the collector?
View 7 Replies
ADVERTISEMENT
Cisco Firewall :: Flow Export From ASA5505 To Netflow Collector
Mar 21, 2013I have three ASA5505, two firewalls connected to central VPN hub. the central inside network is 192.168.0.0/24,Network A is 192.168.1.0/24,Network B is 192.168.2.0/24,In one of this site (central), I have server with NetFlow collector.,I will collect the traffic information from all ASA at the my one serverCan I configure source IP address (or source interface - inside) for NetFlow packet, originate from ASA? (for example from site A)If it is not possible I think, I can rewrite my access lists and permit udp traffic from outside interface to server IP like this:access-list VPNACL permit udp host <Outside IP site A> host <Inside IP the Server> eq 9996,But I do not understand, what port I must be use in access list on Central site ASA. ,access-list VPNACL_A permit udp host <Inside IP the Server> host <Outside IP site A> eq 9996 ? or, in this place, must be source port in the udp netflow packet?
View 2 Replies View RelatedCisco :: Can ASA 5510 Be Configured As Bridge Mode And Still Send Netflow Info To A Collector
Dec 4, 2012Can ASA 5510 be configured as bridge mode and still send Netflow info to a collector?ie have a PIX connect internal network to internet. Because PIX does not support NetFlow, as a temporary solution, we were thinking of putting an ASA 5510 between the PIX and internet gateway, and configure it as a bridge so that there will be no routing issues, and the ASA can still send Netflow info to a collector.
View 2 Replies View RelatedCisco :: Can ASA 5510 Be Configured As Bridge Mode And Still Send Netflow Info To Collector
Dec 4, 2012Can ASA 5510 be configured as bridge mode and still send Netflow info to a collector?We have a PIX connect internal network to internet. Because PIX does not support NetFlow, as a temporary solution, we were thinking of putting an ASA 5510 between the PIX and internet gateway, and configure it as a bridge so that there will be no routing issues, and the ASA can still send Netflow info to a collector.
View 1 Replies View RelatedCisco Infrastructure :: GSR 12000 Series / Can MPLS Aware Netflow Version 9 Be Enabled On Catalyst Switches
Jun 9, 2003I'm working for KOREA TELECOM, and currently providing MPLS VPN.We're planning to provide our customer with traffic report using NetFlow..
I read some documents which reads Netflow ver.9 can be enabled on Cisco GSR 12000 Series, but no mention about catalyst switches. Netflow ver 9 can be activated on catalyst 6500 series.. because the point where switch is located already have mpls encapsulated packet ( mpls vpn packet).
Cisco Switching/Routing :: 4948 - Difference Between Netflow / Netflow-Lite
Mar 13, 2012Any major difrrence between Netflow v/s Netflow-Lite?
I am trying to understand if Cisco 4948E can do the same job as Cisco 4500E or not and difference between Netflow v/s Netflow-Lite will work for me to select correct product.
Cisco WAN :: Port-Channel Supported On 6500s -w- SUP-2T?
Nov 2, 2012are port-channel interfaces supported in 6500s -w- SUP-2T?
Inquiring if able to bundle a couple of 10GB ports on a 6908 via port-channeling.
12.33 IOS doesn't it, but haven't completely confirm whether 15.1 IOS does.
Cisco :: DCNM V5.2(2) / S104 Discovery For 6500s Very Slow
Jan 2, 2012It's been discovering a 6513 for over 90 minutes. Is this an expected duration or is something likely malfunctioning or is it just the sheer # of interfaces that it must process? The Nexus 5k's that it has discovered progressed fairly quickly.
View 1 Replies View RelatedCisco Switching/Routing :: 6500s / VLANs - Where To Put Promiscuous Port
Apr 25, 2013We have a typicaly environment, access, distribution, core, all switches are 6500s.I have a lab environment where machines should not talk to each other, so I think private vlans would be good for this. The problem is that the access connects to the distribution with a 802.1q trunk, while the distribution connects to the core with an 802.1q trunk. See the attached image for reference.
In this case, I would configure the primary vlan (888) on the two access switches, as well as the isolated (886) and the community (887), and set the associations.
vlan 886
name Isolated_PVLAN
private-vlan isloated
vlan 887
name Community_PVLAN
private-vlan community
vlan 888
private-vlan primary
private-vlan association 886,887
exit
The host ports would be set as such.
interface g3/40
switchport mode private-vlan host
switchport private-vlan host-association 888 886
My question is where to I put the promiscuous port? Is it on the uplink between the access and distribution? And If I configure it as I have below, what about the other VLANs that are needed at the access switch? Do they still pass through the trunk as normal, even with the private-vlan configuration? Or would every other VLAN need to be configured as a secondary private-vlan on the promiscuous port?
interface g5/1
switchport mode private-vlan promiscuous
switchport private-vlan mapping 888 886,887
Also, would VLAN access-lists be a better method for controlling this traffic?
Cisco :: VRF Collector Job Failing (LMS 4.0)
Nov 29, 2012My VRF Collector job has started failing. I have attached the contents of the vnmcollector.log file after setting debug level to DEBUG.
View 1 Replies View RelatedAAA/Identity/Nac :: ACS 5.1 Log Collector Freezing
Oct 19, 2011I've noticed a problem with log collector on the secondary acs server. It suddenly stopped to collect logs.So, current acs version is 5.1.0.44.3 and all processes were running. During this time, ACS sent a couple of authentication reports in the monitoring system.But they can not be viewed through ACS Monitoring&Report system. The problem was solved by rebooting the server.
View 0 Replies View RelatedCisco :: LMS 4.2 Syslog Collector Doesn't Work
May 21, 2013my LMS 4.2, syslog collector on LMS doesnt working even service syslog collector running normaly and also i saw in syslog_info is working to collect syslog from all router but not show up in dashboard monitoring.I have setting on every router to logging (ip address LMS) but on LMS no any syslog from router can collect.i did a selftest from LMS there are all PASS except nslookup fail, it is has relation with syslog not show up on dashboard?
View 5 Replies View RelatedCisco :: CiscoWorks LMS 4.0.1 And Remote Syslog Collector
Nov 11, 2012I'm using CiscoWorks LMS 4.0.1 and I need to activate a remote syslog collector.Installation occur without errors and the test subscription is fine but syslog reports are always empty!These two servers need to communicate through a firewall.I'm not able to define a correct rule, a "permit ip any any" does not work also!
View 1 Replies View RelatedCisco :: Integrate Remote Syslog Collector With LMS 4.1
Jul 7, 2012We have LMS 4.1 in our network. We had recently installed Remote Syslog Collector on a new Server to collect logs from all the devices. How can we integrate the Remote Syslog Collector with the LMS Server?
View 3 Replies View RelatedCisco AAA/Identity/Nac :: Upgrade To ACS 5.4 - Authentication Server And Log Collector
Jan 28, 2013We got 2 Cisco ACS 5.2.0.26.10.Primary server as authentication server and log collector.Secondary server as authentication server. Replication is configured. url..."There are some exceptions to this usual setup, which you can handle as described below: If the ACS 5.3 primary server also functions as a log collector in your 5.3 deployment, you should promote any one of the secondary servers as primary server in the deployment. See Promoting a Secondary Server to Primary "
This exception matches with my case. I have to promote my secondary server as primary.I would have :Secondary server as authentication server and log collector.Primary server as authentication server. I think I have to deregister secondary from primary server..According to the guide, I have to upgrade the log collector server. "Step 1: Choose any secondary server to become a log collector:" I dont have another secondary server..
Cisco :: LMS 4.2 Syslog Collector For Windows Server 2008SR2?
Jan 16, 2013Is there an .ISO file for installing on Windows Server20888SR2 ?
View 1 Replies View RelatedCisco :: No Source Devices In Wizard To Create Collector For LMS 3.2
Dec 29, 2011I'm trying to create a LMS 3.2 IPM Collector, but no source devices appears in the wizard.I have the Auto Mode Enable in the Auto Allocation Settings, and in IPM Devices I can see all my devices. ¿
View 2 Replies View RelatedCisco Application :: CSM Active / Active In 2 Redundant 6500s
May 7, 2007our application team is mandating, that the solution we should come up with for SLB, should support Active/Active mode of SLB operation.
My question, is this mode of operation supported/accredited by Cisco, and what is the draw back from the traditional active/standby.
Cisco :: Netflow On 2800
Apr 17, 2013I have configured the netflow to gathering flow from my cisco 2800 as below:
interface GigabitEthernet0/0
description ### To VNPT_FTTH_20M ###
no ip address
ip flow egress
ip route-cache flow
[Code]...
But i still not see users addresses(each individual hosts will go though) What and where i am configured wrong? I also attached here the map network.
Cisco :: 5508 - WCS 7.4 Netflow
Jan 8, 2013configured the monitor and exporter on the wcs 5508 running 7.4.100.0 and it is not working.
View 1 Replies View RelatedCisco :: How NetFlow Works With NAT In Router
Mar 1, 2012How NetFlow works when NAT is enabled in the Cisco Router? ...the translation of IP addresses is done before or after save the packets in the flow caches?
View 3 Replies View RelatedCisco :: IPv6 Netflow Support On PI1.2?
Jan 9, 2013i just came to know Assurance feature license doesn't come for free when upgrading from LMS4.2 or NCS1.1. It has to be purchased. Before buying this license, i would like to know if IPv6 netflow is supported.
View 0 Replies View RelatedCisco :: Netflow Restart On ASA5500
Feb 5, 2013I have an issue with Netflow that I have been unable to solve. I have an ASA5510 that is sending netflow data to a FogLight NMS and it works fine until I reboot the server. After the server is rebooted, the flows no longer are received until I reload the ASA. Once the ASA is rebooted, flows work fine. I can remove and reconfigure the netflow configuration on the ASA and that will start the netflow again, but that is painful.
Is there any way to easily stop/restart or re-initiate the netflow from the ASA easily?
Cisco WAN :: 6500 How To Turn Off NetFlow
Apr 22, 2013I see these errors on my 6500 router which acts as my server farm and has hundreds of servers connecting to it. I have just taken over these routers from another guy and think the errors may have been there for quiet awhile. I have another router which doen't seem to have these errors. Can you tell me how to turn off netflow? Will it cause any problems to my server farm? Is there a risk to the router if I disable something?
I ask this cause the server guys are having problems with certain servers. I am not sure if they are because of this or not. I really would like to clear the logs. [code]
Cisco :: Setting Up Netflow On Nexus 7K
May 22, 2013I was trying to get Netflow setup on one of my 7K VDCs and ran into a problem. While netflow data was reaching the collector, IP src/dst information was not appearing in the analyzer tool. I could not see any information about conversations. So I contacted the company that makes the collector/analyzer and the directed me to a blog on their site and told me to setup the 7K exactly as it is described in the blog post. I did and a bit later the ip src/dst address information appeared. So the only difference between the two configurations was that in the first case I tried to define a record and in the second case, no record was defined and instead the orginial-netflow parameter was used in the "flow monitor" section. [code]
I referenced the document "Cisco Nexus 7000 Series NX-OS System Management Configuration Guide,Release 6.x", Chapter 19 - Configuring NetFlow.It's clear to me that I didn't do something right in defining my own record since that's really the only difference between the config that worked vs the config that didn't. However, the documentation I referenced doesn't really provide useful information about how to create a record (above and beyond what I can already see by typing '?' at the CLI).
For example, the "match" command makes no sense to me. Usually when you have a match command it is accompanied by some sort of ACL. In the "flow record" section a match command would be something like "match ipv4 source address" but that's it. What does that mean? Match anything that has a IPv4 source address?? That doesn't make much sense. The collect commands are equally as bewildering. If I want to define my own record (and not use the original-netflow parameter) what do I need to do in the "flow record" sub-configuration to get Nexus to send ip src/dst information to the collector (which, I would think, is basic information to send - what good is netflow data without it)?
Cisco :: ASR1000 Monitoring NAT Using Netflow 9
Feb 7, 2010I have a question regarding netflow and NAT. I have read some documentation (on ASR1000) regarding monitoring NAT process on Cisco ASR1000 that can be done using netflow version 9 (the term was called netflow event logging a.k.a NEL). The problem is, I have not found the netflow collector that can do that. I have queried several software such as manage engine "Netflow Analyzer" and Lancope, but they said their software can not do that.
View 11 Replies View RelatedCisco WAN :: Netflow Performance On 1841
Jan 10, 2011We have a 1841 router and would like to enable netflow. Will this degrade the router's CPU and memory performance.
1841>sh verCisco IOS Software, 1841 Software (C1841-IPBASE-M), Version 12.4(1c), RELEASE SOFTWARE (fc1)Technical Support: [URL] Copyright (c) 1986-2005 by Cisco Systems, Inc.Compiled Tue 25-Oct-05 17:10 by evmiller
ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1)
1841 uptime is 1 day, 4 hours, 47 minutesSystem returned to ROM by power-onSystem restarted at 11:04:25 MYT Mon Jan 10 2011System image file is "flash:c1841-ipbase-mz.124-1c.bin"
Cisco 1841 (revision 7.0) with 114688K/16384K bytes of memory.Processor board ID FCZ113311Y62 FastEthernet interfacesDRAM configuration is 64 bits wide with parity disabled.191K bytes of NVRAM.31360K bytes of ATA CompactFlash (Read/Write)
Configuration register is 0x2102
Cisco :: Setting Up Netflow On 6509?
Apr 5, 2012I am trying to setup Netflow to identify a problem I am having with a video conferencing system. Here are the commands that I have entered into the 6509 I am working on. I have checked this against another 6509 I have and these match. Not able to get netflow to show up on the solarwinds server. I have configured it to accept the netflow source coming from the 6509 I am working on.
ip flow-export version 9
ip flow-export destination 1.1.1.1 2055
ip flow-export sourc vlan 254
[Code].....
Cisco WAN :: Configure Netflow On 877 Router?
Dec 13, 2010how I configure netflow on a cisco 877 router.
I have an interface e0/4 that is 172.1.1.1 on router one (network one) which links to another router (onnetwork two) which has an interface of e0/4 172.1.1.2 which allows two networks to communicate. Network one is 192.168.0.0 /24 and network two is 10.255.255.0 /24.
How do i configure netflow to monitor the traffic going through these interfaces?
Cisco :: Configuring The Netflow On 3560X?
Jan 12, 2011I have a WS-C3560X-24P with this SW version 12.2(55)SE1. It has several L3 Vlan interfaces.How do I enable it to send Netflow traps?It does not support the ip flow-export commands.
View 3 Replies View RelatedCisco WAN :: 7200 / Netflow On A Subinterface
Apr 19, 2012I have a 7200 router with a 12.2.(46a) IOS and I am trying to activate Netflow on a subinterface. From the documentation of Cisco, I should be able to do it since the ios 12.2.(14)S but the command is unavailable.
[URL]
I have tried also to enter the command in the subinterface directly but it doesn't recognize it.
Cisco Firewall :: Netflow On ASA 5505 8.2(1)
Aug 22, 20115505 ASA, 8.2(1) ,We can not get it to report Netflow to the collection agent at 192.168.1.34. Here is the commands I've entered:
asa# show run | i flow
access-list netflow-export extended permit ip any any
flow-export destination inside 192.168.1.34 2055
flow-export template timeout-rate 1
flow-export delay flow-create 60
class-map netflow-export-class
match access-list netflow-export
flow-export event-type all destination 192.168.1.34
policy-map netflow-export-policy
class netflow-export-class
flow-export event-type all destination 192.168.1.34
Cisco WAN :: 6500 - Netflow With VRFLite
Sep 4, 2011 We have a Cisco 6500 running the following image;
Cisco IOS Software, s72033_rp Software (s72033_rp-IPSERVICES_WAN-M), Version 12.2(33)SXH4, RELEASE SOFTWARE (fc1)
We are attempting to configure Netflow and export to a colloector. We have the following configuration applied to the device, we can ping from within the vrf to the destination of the flow collector
ip flow-cache timeout active 1
ip flow ingress layer2-switched vlan 1,800-801,803,821-823,861-862,871,900,998,1100-1107,1121,1200,1221,1301-1302,1321-1322
mls netflow interface
mls flow ip interface-full
ip flow-export version 5(code)
however we do not receive the flows on the collector. We can see the flow for both hardware and software but cannot see them at the collowctor.