Cisco WAN :: 6500 How To Turn Off NetFlow
Apr 22, 2013
I see these errors on my 6500 router which acts as my server farm and has hundreds of servers connecting to it. I have just taken over these routers from another guy and think the errors may have been there for quiet awhile. I have another router which doen't seem to have these errors. Can you tell me how to turn off netflow? Will it cause any problems to my server farm? Is there a risk to the router if I disable something?
I ask this cause the server guys are having problems with certain servers. I am not sure if they are because of this or not. I really would like to clear the logs. [code]
View 4 Replies
ADVERTISEMENT
Sep 4, 2011
We have a Cisco 6500 running the following image;
Cisco IOS Software, s72033_rp Software (s72033_rp-IPSERVICES_WAN-M), Version 12.2(33)SXH4, RELEASE SOFTWARE (fc1)
We are attempting to configure Netflow and export to a colloector. We have the following configuration applied to the device, we can ping from within the vrf to the destination of the flow collector
ip flow-cache timeout active 1
ip flow ingress layer2-switched vlan 1,800-801,803,821-823,861-862,871,900,998,1100-1107,1121,1200,1221,1301-1302,1321-1322
mls netflow interface
mls flow ip interface-full
ip flow-export version 5(code)
however we do not receive the flows on the collector. We can see the flow for both hardware and software but cannot see them at the collowctor.
View 2 Replies
View Related
May 26, 2011
Configured 6500 and 4500 to send netflow to a stealthwatch NADS.When visited by the stealthwatch engineer found that because i didnt have NDE configaured.i wasnt actually exporting any but the initial data in the flow.Now if i have got this right the command for this is - mls nde sender version 5
This is confirmed by looking at the following out put -show mls nde.Neither of these command work on my 4500 switch -does this mean that its not outputting all the data or do i not need to configure NDE or do i need another command ?
-4500 Sup V-10GE 10GE
-6500 Supervisor Engine 720 10GE
-or Supervisor Engine 720
View 0 Replies
View Related
Mar 7, 2012
I am using a Thrid party NetFlow tool, Enabled NetFlow on the Cisco 6500 as per recommendations and getting only half amout of traffic passing thorugh the interfaces. I have verified with 3 different NetFlow based tools, everything showing the same value. Is there any bug in my Cisco 6500.
View 2 Replies
View Related
Jun 5, 2012
I tried to configure netflow without success.
Setup is the following.
Cisco Catalyst 6509 with Sup720-10GE IOS 12.2(33)SHX7. There are around 30 L3 vlans configured on the switch. I'm only interested for the traffic on one L3 vlan which is the connection to wan cloud.
I wanna see only the traffic that goes to and come from the wan. On other Catalyst where I have routed interfaces i successfully configured netflow. I read a lot in the forums and documentations but i didn't find the right one.
View 1 Replies
View Related
Mar 13, 2012
I have a problem with the 6500 not exporting netflow data. They are not exported due to no fib.I have read somewhere that this has something to do with VRF. VRF are running on the router.ip flow ingress has been applied to desired ip int.Is there anything I could do to make it export netflow data?
VSS-core-XXX-rs1#sh ip flow export
Flow export v5 is enabled for main cache
Export source and destination details :
VRF ID : Default
Source(1) xxx.xxx.83.253 (Unknown)
[code]....
View 7 Replies
View Related
Jun 9, 2013
I'm trying to configure a egress netflow in a 6500 (VSS) with VS-S720-10G supervisor. I foud some old posts and understood that netflow wasn't supported on 6500 but i found a new document and it seems that netflow is supported in Supervisor Engine 2T:[URL] Does the netflow still not supported in VS-S720-10G? It's weird because the command is supported:
#sh run int vlan 4
Building configuration...
Current configuration : 353 bytes
!
interface Vlan4
ip address X.X.X.X 255.255.0.0
[cod]....
View 1 Replies
View Related
Nov 27, 2011
We are getting log messages like
%EARL-DFC4-4-NF_USAGE: Current Netflow Table Utilization is 95%
%EARL-DFC4-4-NF_USAGE: Current Netflow Table Utilization is 99%
What this messages really means and how to get rid of these messages. We are using IOS version 12.2(33)SXJ in Catalyst 6500.
View 3 Replies
View Related
Nov 13, 2012
Catalyst 6509E Switch running IOS version 12.2. Created a new VLAN layer 2, created it layer 3 with an IP address. Issued the state active command and the no shutdown command. when doing a show vlan, shows in the list and active. When doing show int vlan xx, shows as down. Need to get it to be up, have attempted to assign a port to that VLAN in hopes it will come up, but still no go.
View 5 Replies
View Related
Mar 13, 2012
Any major difrrence between Netflow v/s Netflow-Lite?
I am trying to understand if Cisco 4948E can do the same job as Cisco 4500E or not and difference between Netflow v/s Netflow-Lite will work for me to select correct product.
View 2 Replies
View Related
Dec 21, 2011
how can we upgrade 6500 non modular ios to normal 6500 ios?
View 5 Replies
View Related
Apr 17, 2013
I have configured the netflow to gathering flow from my cisco 2800 as below:
interface GigabitEthernet0/0
description ### To VNPT_FTTH_20M ###
no ip address
ip flow egress
ip route-cache flow
[Code]...
But i still not see users addresses(each individual hosts will go though) What and where i am configured wrong? I also attached here the map network.
View 5 Replies
View Related
Jan 8, 2013
configured the monitor and exporter on the wcs 5508 running 7.4.100.0 and it is not working.
View 1 Replies
View Related
Mar 1, 2012
How NetFlow works when NAT is enabled in the Cisco Router? ...the translation of IP addresses is done before or after save the packets in the flow caches?
View 3 Replies
View Related
Jan 9, 2013
i just came to know Assurance feature license doesn't come for free when upgrading from LMS4.2 or NCS1.1. It has to be purchased. Before buying this license, i would like to know if IPv6 netflow is supported.
View 0 Replies
View Related
Feb 5, 2013
I have an issue with Netflow that I have been unable to solve. I have an ASA5510 that is sending netflow data to a FogLight NMS and it works fine until I reboot the server. After the server is rebooted, the flows no longer are received until I reload the ASA. Once the ASA is rebooted, flows work fine. I can remove and reconfigure the netflow configuration on the ASA and that will start the netflow again, but that is painful.
Is there any way to easily stop/restart or re-initiate the netflow from the ASA easily?
View 2 Replies
View Related
May 22, 2013
I was trying to get Netflow setup on one of my 7K VDCs and ran into a problem. While netflow data was reaching the collector, IP src/dst information was not appearing in the analyzer tool. I could not see any information about conversations. So I contacted the company that makes the collector/analyzer and the directed me to a blog on their site and told me to setup the 7K exactly as it is described in the blog post. I did and a bit later the ip src/dst address information appeared. So the only difference between the two configurations was that in the first case I tried to define a record and in the second case, no record was defined and instead the orginial-netflow parameter was used in the "flow monitor" section. [code]
I referenced the document "Cisco Nexus 7000 Series NX-OS System Management Configuration Guide,Release 6.x", Chapter 19 - Configuring NetFlow.It's clear to me that I didn't do something right in defining my own record since that's really the only difference between the config that worked vs the config that didn't. However, the documentation I referenced doesn't really provide useful information about how to create a record (above and beyond what I can already see by typing '?' at the CLI).
For example, the "match" command makes no sense to me. Usually when you have a match command it is accompanied by some sort of ACL. In the "flow record" section a match command would be something like "match ipv4 source address" but that's it. What does that mean? Match anything that has a IPv4 source address?? That doesn't make much sense. The collect commands are equally as bewildering. If I want to define my own record (and not use the original-netflow parameter) what do I need to do in the "flow record" sub-configuration to get Nexus to send ip src/dst information to the collector (which, I would think, is basic information to send - what good is netflow data without it)?
View 1 Replies
View Related
Feb 7, 2010
I have a question regarding netflow and NAT. I have read some documentation (on ASR1000) regarding monitoring NAT process on Cisco ASR1000 that can be done using netflow version 9 (the term was called netflow event logging a.k.a NEL). The problem is, I have not found the netflow collector that can do that. I have queried several software such as manage engine "Netflow Analyzer" and Lancope, but they said their software can not do that.
View 11 Replies
View Related
Jan 10, 2011
We have a 1841 router and would like to enable netflow. Will this degrade the router's CPU and memory performance.
1841>sh verCisco IOS Software, 1841 Software (C1841-IPBASE-M), Version 12.4(1c), RELEASE SOFTWARE (fc1)Technical Support: [URL] Copyright (c) 1986-2005 by Cisco Systems, Inc.Compiled Tue 25-Oct-05 17:10 by evmiller
ROM: System Bootstrap, Version 12.4(13r)T, RELEASE SOFTWARE (fc1)
1841 uptime is 1 day, 4 hours, 47 minutesSystem returned to ROM by power-onSystem restarted at 11:04:25 MYT Mon Jan 10 2011System image file is "flash:c1841-ipbase-mz.124-1c.bin"
Cisco 1841 (revision 7.0) with 114688K/16384K bytes of memory.Processor board ID FCZ113311Y62 FastEthernet interfacesDRAM configuration is 64 bits wide with parity disabled.191K bytes of NVRAM.31360K bytes of ATA CompactFlash (Read/Write)
Configuration register is 0x2102
View 5 Replies
View Related
Apr 5, 2012
I am trying to setup Netflow to identify a problem I am having with a video conferencing system. Here are the commands that I have entered into the 6509 I am working on. I have checked this against another 6509 I have and these match. Not able to get netflow to show up on the solarwinds server. I have configured it to accept the netflow source coming from the 6509 I am working on.
ip flow-export version 9
ip flow-export destination 1.1.1.1 2055
ip flow-export sourc vlan 254
[Code].....
View 3 Replies
View Related
Dec 13, 2010
how I configure netflow on a cisco 877 router.
I have an interface e0/4 that is 172.1.1.1 on router one (network one) which links to another router (onnetwork two) which has an interface of e0/4 172.1.1.2 which allows two networks to communicate. Network one is 192.168.0.0 /24 and network two is 10.255.255.0 /24.
How do i configure netflow to monitor the traffic going through these interfaces?
View 1 Replies
View Related
Jan 12, 2011
I have a WS-C3560X-24P with this SW version 12.2(55)SE1. It has several L3 Vlan interfaces.How do I enable it to send Netflow traps?It does not support the ip flow-export commands.
View 3 Replies
View Related
Apr 19, 2012
I have a 7200 router with a 12.2.(46a) IOS and I am trying to activate Netflow on a subinterface. From the documentation of Cisco, I should be able to do it since the ios 12.2.(14)S but the command is unavailable.
[URL]
I have tried also to enter the command in the subinterface directly but it doesn't recognize it.
View 2 Replies
View Related
Aug 22, 2011
5505 ASA, 8.2(1) ,We can not get it to report Netflow to the collection agent at 192.168.1.34. Here is the commands I've entered:
asa# show run | i flow
access-list netflow-export extended permit ip any any
flow-export destination inside 192.168.1.34 2055
flow-export template timeout-rate 1
flow-export delay flow-create 60
class-map netflow-export-class
match access-list netflow-export
flow-export event-type all destination 192.168.1.34
policy-map netflow-export-policy
class netflow-export-class
flow-export event-type all destination 192.168.1.34
View 6 Replies
View Related
Sep 25, 2011
how to configure the ASA to support netflow V9, either in ASDM or CLI mode as welcome.
i follow the PRTG guide it doens't seem success to make the detection on netflow activity
View 1 Replies
View Related
Jan 18, 2012
i want to enable net flow for multicast on my 6509-E with IOS s72033-advipservicesk9_wan-mz.122-33.SXI2a. I've checked the ios via software adviser to be sure that this feature is supported: Minimum Compatible Release 5 Additional Software
12.2SXJ Early Deployment View View View 512 512 N/A 12.2(33)SXJ s72033-advipservicesk9-mz.12.2-33.SXJ 12.2(33)SXJ N/A
12.2SXI Early Deployment View View View 512 512 N/A 12.2(33)SXI1s72033-advipservicesk9-mz.12.2-33.SXI1 12.2(33)SXI
I've used the command "ip multicast net flow output-counters", but that is not enough, i guess. It is required to use further interface commands like "ip multicast netflow....", isn't it? But this commands are not available:
Cisco6509(config-if)#ip multicast ?
boundary Boundary for administratively scoped multicast addresses
helper-map Broadcast to Multicast map OR Multicast to ip-address map
limit Limit multicast mroute state
[code]....
View 3 Replies
View Related
Jan 13, 2012
Recently bring up a new Router connected to ISP A and the Netflow collector/server is located in different location and they are connected to ISP B. I have enabled snmp and netflow config on my router(2911) but not receiving the netflow packets are not reaching the server for due to some strange reason whereas other packets like ICMP for snmp are reaching the netflow collector.Finally,I created GRE tunnel between the two locations routers and set the route for the netflow collector/server to the tunnel other end IP. In this way the netflow traffic are reaching successfully to the server.
View 1 Replies
View Related
Apr 7, 2013
NAM2-250S v5.1.2 in a 6509 collecting netflow information from a 3845. For some reason RTP traffic is not recognized as RTP by the NAM. It shows up under unknown. I have a NME-NAM-120S in a 2811 running the same 5.1.2 code and it recognizes the RTP traffic including call information. Is that because the netflow data is different than the SPAN that the NME is receiving?
View 0 Replies
View Related
Jun 20, 2012
how to integrate NetFlow to some Ciscoworks module.
View 3 Replies
View Related
Sep 6, 2012
I have a 4510 with sup7e and I would like to deploy netflow on this switch. The network will contain the 4510 switch where there will be 4 blades installed, each blade contains a separate Zone (vlan) . These 4 zones will then trunk upto a firewall via ten gig link over sub-interfaces. There will be an ip address assigned to each vlan on the 4500 switch but there can not be routing enabled between the vlans on the switch.
View 2 Replies
View Related
Feb 17, 2004
Using Netflow on Cat 6500s with the NAM-2 as the collector?
View 7 Replies
View Related
Aug 1, 2011
Do you know if the following Cisco switches ME3600X ME3800X support Netflow? I need to collect data on interfaces and export it to an external Netflow collector installed on a server. In other word, I need to be sure that those switches support the following command (or similar):
ip flow-export destination <IP> ip flow-export source <Interface> ip flow-export version 5 ip flow-cache timeout active 1 ip flow-cache timeout inactive 15 snmp-server ifindex persist !
[Code].....
View 3 Replies
View Related
Apr 23, 2012
What are the limitations of Net flow v9 support on the 7600 platform for the SR code releases?
I know that Flexible Net flow is only available on newer releases with some newer hardware. Flexible Net flow gives you the ability to provide full support for Netflow v9 as well as IPFIX.
However, the documentation indicates that Net flow v9 is still supported in the SR code. So I am just trying to find out what are the limitations in how Net flow v9 is implemented without "Flexible Net flow". The Cisco TAC was unable to provide me any documentation about this.
View 1 Replies
View Related
