cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
733
Views
0
Helpful
1
Replies

Basic NetFlow questions for ASA

Eric Snijders
Level 1
Level 1

It's the first time i'm actually configuring NetFlow. I've read the instructions how to configure NetFlow but i'm having 2 questions.

1. I just want to export traffic from one interface, but we already have a TCP-Bypass Policy Map on that interface. Can i just add the NetFlow rule under that one? Will it have impact on traffic currently running through when applying that rule/policy map?

2. Maybe a stupid question, but if i specify "any any" as source and destination within the Policy rule, will the inbound ACL on the interface still be applied? So let's say i have a inbound interface ACL to deny HTTP traffic, but the policy rule has "any any", i won't see any HTTP traffic on the analyzer, right?

 

Thanks in advance and have a nice day!

1 Accepted Solution

Accepted Solutions

Q1. No impact and you can have TCP-state-bypass with Netflow in same
policy. Both will work

Q2. No you won't see HTTP traffic in the analyzer because you won't have
http flows. All of them will be dropped by ACL.

View solution in original post

1 Reply 1

Q1. No impact and you can have TCP-state-bypass with Netflow in same
policy. Both will work

Q2. No you won't see HTTP traffic in the analyzer because you won't have
http flows. All of them will be dropped by ACL.
Review Cisco Networking for a $25 gift card