06-22-2024 04:34 AM
Hi
Recently upgraded to 7.0.6.2-65 and Netflow has stopped working any ideas why and if so Is there some instructions you can share for me to put this right again.??
Thankyou
Solved! Go to Solution.
07-24-2024 07:51 AM
@benolyndav yes, I see no reason why there should be any impact. Obviously if you are concerned, deploy OOH in a change window.
07-25-2024 11:07 AM - edited 07-25-2024 11:09 AM
@Rob Ingram
Made the changes and I see the flow exporter and the packets sent counter is incremenring nicely but still no difference on our Monitoring system, Any ideas.?
07-25-2024 11:17 AM
@benolyndav the interface you've configured the netflow destination can reach your NMS? Any ACL/Firewall inline that could block the traffic being received? If you took a packet capture on the NMS or switch, can you see communication on port 2055?
07-25-2024 12:09 PM
It was working fine untill after the upgrade. I dont think its actually sending but says it is.
another thing in the link you sent to configure NSEL step 2 is to configure an extended access list, but there isnt one and on our other FTDs that are working ok for Netflow there is no extended ACL on them. any more thoughts on the issue
Thanks
07-25-2024 12:34 PM
@benolyndav I had a quick look at the bugs list, maybe this https://bst.cloudapps.cisco.com/bugsearch/bug/CSCwd60024
If not are you able to log a call with TAC?
Are you able to check to see whether netflow is at least sent to the NMS?
07-25-2024 12:14 PM
check this link see if the FTD send the netflow or not
MHM
08-06-2024 01:02 PM
In the Cisco NSEL doc it says to configure an extended access list, Do i need this in version 7.0.6 ??
Thanks
08-06-2024 10:14 PM
@benolyndav if it was working fine before the upgrade and other FTDs are working without using an extended access list, its possibly a bug. You can try using an extended access list and see if that resolves the issue, but as the issue has been going on for a long time I would recommend a TAC call or consider upgrade to 7.4.x as you do not need to use flexconfig, netflow is built into the GUI now.
09-30-2024 05:44 AM
HI @Rob Ingram
Yes raised a call with TAC and they sorted
Thanks
09-30-2024 05:46 AM
Can yoh inform us the reply of TAC
Thanks a lot
MHM
09-30-2024 06:16 AM
Hi @MHM Cisco World
There was 2 Engineers on and they were adding and removing Lines in the policy I wasnt on shift at the time but my colleauge said he actually couldnt keep up with them they were trying different things, main thing is its working again.
Thanks
07-23-2024 11:34 AM
As a rule any flexconfig stop work after upgrading start search about if this op add to fmc ot not
I think this op add to fmc so no need more flexconfig and that why it stop
MHM
06-24-2024 01:57 AM
when you click it do you see the config or it disappear ?
MHM
06-24-2024 05:36 AM
Hi
Yes its there still
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide