Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
362
Views
0
Helpful
3
Replies

asa 5510 netflow

jcatalino
Level 1
Level 1

‎08-21-2014 08:33 PM - last edited on ‎03-25-2019 05:53 PM by Community Manager

Hi Guys

Can you help me how to configure the netflow on asa 5510. 

Labels:
0 Helpful
3 Replies 3

johnlloyd_13
Level 9
Level 9

‎08-21-2014 10:25 PM

hi,

you can use the command:

flow-export destination <INTERFACE> <NETFLOW COLLECTOR IP> <NETFLOW UDP PORT>

find useful link:


https://supportforums.cisco.com/document/30471/netflow-asa

0 Helpful

Karsten Iwen
VIP
VIP

‎08-22-2014 12:16 AM

In addition to the infos already posted, there is of course also the Configuration-Guide explaining it:

http://www.cisco.com/c/en/us/td/docs/security/asa/asa84/configuration/guide/asa_84_cli_config/monitor_nsel.html

0 Helpful

rizwanr74
Level 7
Level 7

‎08-26-2014 09:51 AM

Hi Jcatalino,

 

Please follow the below configs.

 

access-list acl-netflow extended permit ip any any 

class-map class-my-netflow
 match access-list acl-netflow


policy-map global_policy
 class inspection_default
  inspect dns preset_dns_map 
  inspect ftp 
  inspect h323 h225 
  inspect h323 ras 
  inspect rsh 
  inspect rtsp 
  inspect sqlnet 
  inspect skinny  
  inspect sunrpc 
  inspect xdmcp 
  inspect sip  
  inspect netbios 
  inspect tftp 
  inspect ip-options 
  inspect pptp 
 class class-my-netflow
  flow-export event-type all destination 192.168.0.1

 

You are done here, IP address 192.168.0.1 is your flow collector station.

 

Thanks

Rizwan Rafeek

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card