Buy or Renew
Buy or Renew
NOTICE: The community will be in READ-ONLY Sept. 6 – 9 to add Umbrella release notes and announcements. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1360
Views
12
Helpful
25
Replies

FMC Netflow Question

benolyndav
Level 4
Level 4

‎06-22-2024 04:34 AM

Hi

Recently upgraded to 7.0.6.2-65 and Netflow has stopped working any ideas why and if so Is there some instructions you can share for me to put this right again.??

 

Thankyou

0 Helpful
25 Replies 25

Rob Ingram
VIP
VIP
In response to benolyndav

‎07-24-2024 07:51 AM

@benolyndav yes, I see no reason why there should be any impact. Obviously if you are concerned, deploy OOH in a change window.

benolyndav
Level 4
Level 4
In response to benolyndav

‎07-25-2024 11:07 AM - edited ‎07-25-2024 11:09 AM

@Rob Ingram 
Made the changes and I see the flow exporter and the packets sent counter is incremenring nicely but still no difference on our Monitoring system, Any ideas.?

benolyndav_0-1721930801299.png

 

0 Helpful

Rob Ingram
VIP
VIP
In response to benolyndav

‎07-25-2024 11:17 AM

@benolyndav the interface you've configured the netflow destination can reach your NMS? Any ACL/Firewall inline that could block the traffic being received? If you took a packet capture on the NMS or switch, can you see communication on port 2055?

benolyndav
Level 4
Level 4
In response to Rob Ingram

‎07-25-2024 12:09 PM

@Rob Ingram 

It was working fine untill after the upgrade. I dont think its actually sending but says it is.

another thing in the link you sent to configure NSEL step 2 is to configure an extended access list, but there isnt one and on our other FTDs that are working ok for Netflow there is no extended ACL on them. any  more thoughts on the issue

Thanks

0 Helpful

Rob Ingram
VIP
VIP
In response to benolyndav

‎07-25-2024 12:34 PM

@benolyndav I had a quick look at the bugs list, maybe this https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd60024

If not are you able to log a call with TAC?

Are you able to check to see whether netflow is at least sent to the NMS?

benolyndav
Level 4
Level 4
In response to Rob Ingram

‎08-06-2024 01:02 PM

@Rob Ingram 

In the Cisco NSEL doc it says to configure an extended access list, Do i need this in version 7.0.6 ??

Thanks

0 Helpful

Rob Ingram
VIP
VIP
In response to benolyndav

‎08-06-2024 10:14 PM

@benolyndav if it was working fine before the upgrade and other FTDs are working without using an extended access list, its possibly a bug. You can try using an extended access list and see if that resolves the issue, but as the issue has been going on for a long time I would recommend a TAC call or consider upgrade to 7.4.x as you do not need to use flexconfig, netflow is built into the GUI now.

0 Helpful

MHM Cisco World
VIP
VIP
In response to benolyndav

‎07-23-2024 11:34 AM

As a rule any flexconfig stop work after upgrading start search about if this op add to fmc ot not

I think this op add to fmc so no need more flexconfig and that why it stop

https://www.cisco.com/c/en/us/support/docs/security/secure-firewall-management-center-virtual/221612-htz-01-2024-configure-netflow-in-fmc.html

MHM

MHM Cisco World
VIP
VIP
In response to benolyndav

‎06-24-2024 01:57 AM

when you click it do you see the config or it disappear ?
MHM

benolyndav
Level 4
Level 4
In response to MHM Cisco World

‎06-24-2024 05:36 AM

Hi

Yes its there still

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card