We have Cisco Catalyst 6509-V-E VSS Switch with Sup2T und IOS Version 15.0(1)SY2. We are gettin input netflow information from the gi2/3/7 but not output ... I am not sure why it does not work.
View 1 RepliesHow to get a summary of netflow statistics on NX-OS? On IOS you could do sh ip cache flow which would show what I need? Can't find a similar command on the Nexus Platform.
View 4 Replies View RelatedI am aware that the 3750 switches are not able to support Netflows, so I have created a SPAN port and spanning traffic from a specific port. I would like to create a seperate VLAN and trunk the traffic from the SPAN port down to the 6509 switch and then capture all the traffic for that VLAN on the 6509.
View 4 Replies View RelatedI have 1x Cisco 6509 with Sup2 and MSFC2 and it is running on IOS (c6k222-jk9sv-mz.122-17d.SXB11). I have following policy map :
Policy Map VOIP
Class IP PHONE
priority percent 75
and the following command on each interface: service-policy output VOIP those configuration are working fine on SUP2 with MSFC2 but last week I tried to upgrade the SUP2 to SUP32 on the switch and upgrade the IOS to the latest version (s3223-adventerprisek9-mz.122-33.SXJ4) but when I try to put service-policy output VOIP on each physical interface I am getting the following error:
"Priority command is not supported in output direction for this interface" and when I try to add service-policy output VOIP on a V LAN interface I am getting following error:
MQC features are not supported in output direction for this interface. Will I need to change something after upgrading to SUP32..
Any major difrrence between Netflow v/s Netflow-Lite?
I am trying to understand if Cisco 4948E can do the same job as Cisco 4500E or not and difference between Netflow v/s Netflow-Lite will work for me to select correct product.
Make a netflow template to get information about http code errors in a nexus 7010?
View 3 Replies View Relatedwhen using egress netflow (v9) and output marking.
The topologie : Server <-----> R1 1>-----<1 R2 2>----<2 R3
R2 is a 7200 with c7200p-adventerprisek9-mz.124-15.T11.bin What I'm doing :- R2 forwards ping packets from Server to R3. When they arrive on R2, icmp packets are marked with CS3
- I change the DSCP to CS4 on R2 before forwarding packet to R3. I'm using for that an output service-policy on the R2-2 interface like this : interface ATM2/0.36 point-to-point
ip address 192.168.1.1 255.255.255.252
ip flow ingress
ip flow egress
[Code]....
I am trying to setup Netflow to identify a problem I am having with a video conferencing system. Here are the commands that I have entered into the 6509 I am working on. I have checked this against another 6509 I have and these match. Not able to get netflow to show up on the solarwinds server. I have configured it to accept the netflow source coming from the 6509 I am working on.
ip flow-export version 9
ip flow-export destination 1.1.1.1 2055
ip flow-export sourc vlan 254
[Code].....
i want to enable net flow for multicast on my 6509-E with IOS s72033-advipservicesk9_wan-mz.122-33.SXI2a. I've checked the ios via software adviser to be sure that this feature is supported: Minimum Compatible Release 5 Additional Software
12.2SXJ Early Deployment View View View 512 512 N/A 12.2(33)SXJ s72033-advipservicesk9-mz.12.2-33.SXJ 12.2(33)SXJ N/A
12.2SXI Early Deployment View View View 512 512 N/A 12.2(33)SXI1s72033-advipservicesk9-mz.12.2-33.SXI1 12.2(33)SXI
I've used the command "ip multicast net flow output-counters", but that is not enough, i guess. It is required to use further interface commands like "ip multicast netflow....", isn't it? But this commands are not available:
Cisco6509(config-if)#ip multicast ?
boundary Boundary for administratively scoped multicast addresses
helper-map Broadcast to Multicast map OR Multicast to ip-address map
limit Limit multicast mroute state
[code]....
Below is the show ver of 6509 switch , how to enable netflow
sh ver
Cisco IOS Software, s72033_rp Software (s72033_rp-IPSERVICESK9_WAN-M), Version 12.2(33)SXI7, RELEASE SOFTWARE (fc1)
Technical Support: [URL]
Copyright (c) 1986-2011 by Cisco Systems, Inc.
Compiled Mon 18-Jul-11 05:50 by prod_rel_team
[code]....
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports
x1 NAM
x2 Sup720
Running 12.2(18)SXF3
I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis?Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
I currently have a couple of 6509 chassis (router/switches) with the following hardware blades:
x3 48 ports
x1 NAM
x2 Sup720
Running 12.2(18)SXF3.I am keeping the four Sup720 modules and have purchased new versions of the others blades including two new 6509-E chassis. Can I take my stand-by Sup720 out of the production machine and insert it into the new chassis?
I am trying to setup netflow with on 6509 and SolarWinds NetFlow Traffic Analyzer v3.10.0
The problem I have is that after configuring the basic settings of NetFlow on both side I can't see all the traffic I expected to capture in NetFlow.
The details of my problem.
I want to monitor the traffic on VLAN 20.
In the general configuration of the switch I have entered the following
ip flow-export source vlan 10
ip flow-export version 9
ip flow-export destination 132.5.200.123 8080
Where vlan 10 is the management vlan. Vlan10 can ping 132.5.200.123 no problem.
On VLAN20 interface I configured this
ip flow egress
ip flow ingress
ip route-cache flow
When I go to SolarWinds Netflow Traffic Analyzer I can see maybe 1 or 2 packets flows, like nothing of the data. If I do a capture of the traffic on VLAN 20 I can see there is loads of IP traffic on that VLAN but why is netflow not capturing the statistics of those flows and reporting it to NetFlow ?
command "ip flow-export source vlan 10" ?
I have a WS-C6509-E (R7000) and am trying to implement some proactive monitoring for environmental alerts. What is the output from a Power Supply failure for the following “sh log” “sh environment alarm”.
View 1 Replies View RelatedI use the Switch 2960S support PoE and 10 access points cisco.I have one more question:
-- If all 10 access points cisco use copper cable to connect to 2960S, 5 access points use power adapter and 5 access points use power from Switch. How Switch 2960S will provide power for 10 AP or switch 2960S will understand and only provide power for 5 APs?
What is the inrush current (AC Input Surge Current) for the Cisco 2851 router? Is it the same as the router 2801?
View 1 Replies View RelatedLooking at the following output (show interface status) from one of our 4507s I see gig interfaces 3/2 to 3/6 are all trunked (dot1q). When I look at a show run they do not show as trunked. They should indicate switchport trunk encapsulation dot1q and switchport mode trunk (as does interface gig4/2). I have seven other 4507s all running the same IOS: 12.2(25)EWA8 and they all show the same information in show run and show interface status (as far as trunked goes). This is not a problem as I know the interfaces are trunked and working properly I am just puzzled as to why I see this difference.
Here is the sho int gig3/2 trunk. It looks like you are correct. I did not realize some were set to trunk mode on and others were not. I would think the running config would still show the port using dot1q but I guess not.
is there a command that gives me the model and serial number of the GBIC modules inside the modules of the Cisco 6500 (IOS)?
View 7 Replies View RelatedI have a SR520 just deployed at a remote site with Internet Access.
Working Environment:
Remote sites have SR520 with IPSEC VPN back to HQ and netflow v.5 works through the VPN back to our PRTG server.
Non-Working:
I cannot get Netflow data to our PRTG with this first SR520 implemented with Zone Base Security. I am not able to get my netflow traffic out. VPN is up and running. Internet is a dialer0 interface. I have a Kron job that does the copy run to tftp backup daily to the same PRTG server and it works fine.
Both my source interface and address on the TFTP command and the netflow commands are the same interfaces (VLAN75) and IP. The Destination ip is the same too (through the VPN tunnel).
Snipped:
flow exporter prtg
destination x.x.x.x
source Vlan75
[Code]....
I am trying to figure out the Flexible Net-flow on Cat 4510R+E Switch running IOS-XE code. My Neflow flow software is manageengine 7.X. I am able to see the netflow interfaces but the traffic itself is not displayed. On the Switch I can see the netflow exporter statistics counter being incremented thereby confirming as being exported.
View 2 Replies View RelatedI come across to use the Catalyst Switch 2955 and it has two Relay Connector with one Major (MAJ) and one Minor (MIN) as below picture.There is command line to trigger these two Relay Connectors. As below command to set the Relay Connector to minor for monitoring the power supply: alarm facility power-supply relay minor
1. My questions are when there is power-supply faulty, the Minor Relay Connctor (right picture) will be short-circuited, right?
2. If we connector the two ports (ports 4 & 5 at the left picture) with a normal cable to drive an Alram Bell (in short-circuiled or closed loop situation), do we need an external power supply to the Alram Bell? Or there will be power supply from Catalyst 2955 to the Alram Bell as well?
I need to extract the serial numbers of SFPs which are plugged in a SG-200-18.For information, SG-200 doesn't have a CLI ... only a Web GUI.I just find this information : [URL]
View 2 Replies View RelatedI have 2 NEXUS switches in VPC. When I create/delete a VLAN gets updated in the same switch, but the VLAN information does not get propagated to the neighboring switch. Revision number remains the same even if I modify the VLAN. Had also tried changing the VTP status to transparent mode & reverting it to client mode but no luck.Have double confirmed on the VTP domain names & password. However the same setup in different location which works perfectly fine.
View 1 Replies View RelatedI have a 370 with C3KX-NM-10G module & i want to enable NetFlow on it did the specified configs
Step 1 Flexible NetFlow Flow Recordsflow record miketestmatch datalink source-vlan-idmatch datalink dot1q prioritymatch datalink mac source-addressmatch datalink mac destination-addressmatch ipv4 versionmatch ipv4 tosmatch ipv4 ttlmatch ipv4 protocolmatch ipv4 source addressmatch ipv4 destination addressmatch transport source-portmatch transport destination-portmatch interface input physical snmpcollect interface output snmpcollect counter flowscollect counter bytescollect counter packetscollect timestamp sys-uptime firstcollect timestamp sys-uptime last flow record miketestegressmatch datalink destination-vlan-id match datalink dot1q priority match datalink mac source-address match datalink mac destination-address match ipv4 version match ipv4 tos match ipv4 ttl match ipv4 protocol match ipv4 source address match ipv4 destination address match transport source-port match transport destination-port match interface output physical snmp collect interface input snmp collect counter flows collect counter bytes collect counter packets collect timestamp sys-uptime first collect timestamp sys-uptime last Step 2 Flexible NetFlow Flow ExporterFlow exporter export-to-samplicatorDestination 10.1.1.8source Vlan1Transport udp 2055option interface-table timeout 60 Step 3 Flexible NetFlow Flow Monitors# Tie the Flow Monitor to the Flow Recordflow monitor mikektestrecord miketestexporter export-to-samplicatorcache timeout active 60flow monitor mikektestegressrecord miketestegressexporter export-to-samplicatorcache timeout active 60
& Applied it to g1/1/1 but without any luck , if netflow works on the
TenGigabitEthernet1/1/1 &
TenGigabitEthernet1/1/2
Only i have four switches stacked and nothing plugged to the
C3KX-NM-10G module
router 7200 (12.2(33)SRE1)
two interfaces with traffic going through, placed in a Data-VRF
Another physical interface and loopback interface in the global routing-table.
ip flow ingress on all physical interfaces configured
It was running for at least a year: I was getting netflow packets on my analyzer from the box. Since a couple of weeks I get no netflow-packets anymore.debug ip flow export tells me "IPFLOW: Sending export pak to ... port 2055"
But the packet is not leaving the box. By setting up an ip sla monitor udp-echo I simulated some traffic (udp/2055) which is leaving the box.
[code]...
I have 4506 with below sup, my requirement is to enable netfolw , but as i came to know that it is not supported in this sup, is there any additional option which can be explored to get the netflow working without replacing sup.
Card Type Model
-------------------------------------------------------------+-----------------------
Sup 6-E 10GE (X2), 1000BaseX (SFP) WS-X45-SUP6-E
Ive tried to configure NetFlow on layer 2 without success. I configured the recondmonitorexporter like the configuration guide said. but still i dont receive any netflow traffic. I checked the firewall on the VM and it looks fine.
i have done the command under the ethernet interface :" layer2-switch flow monitor TEST input" - for layer2 input.
Net flow on the Nexus 5596upI can't seem to find any information on the Nexus 5596 support of net flow. On Nexus 5596UP support of net flow ?
View 4 Replies View Relatedtoday I witnessed a cisco n5k that stopped playing fair. For a yet unkown reason several interfaces started to show output errors all begining within the same second. While i instantly thought this would be a wiring issue I began to ask myself what an output error actually means. Google usually brings up output drops, not regular output errors. So what is it and how can a 10G fiber interface even detect that there is a problem without receiving what it was sending?
View 2 Replies View RelatedI have a 3560-24ps, and I'm having issues with it booting. When I power the device up all the front panel lights come on like normail, and then the system light starts flashing like normal, but after 5 - 6 seconds the system light goes off. I don't get any output from the console, and the fans still run.
View 5 Replies View RelatedI'm trying to view the logs from a Cisco 857W router to a workstation running the Kiwi Syslog server. what I've done is the following:
Config term
Logging on
Logging source-interface BVI1
Logging Facility Local7 (or any other facility you want to allocate for this router.)
Logging [IP Address or Hostname of machine running Kiwi Syslog Server]
End
I see noting on the syslog server. Although I can see the log information on the router Also is there a command to stop the logging from generating or is this on by default.
If a Supervisor 6-E will support NetFlow on a Catalyst 4507R-E?If not, what are my options for NetFlow on a 4507R-E?
View 7 Replies View RelatedTo enable netflow export on ASR1001, do i need the firewall feaure license or not ?Docs are not really clear, NBAR requires FW license, but i am unsure about Netflow?
View 1 Replies View Related