Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
669
Views
0
Helpful
1
Replies

Netflow export to remote server on a different subnet

Cesar Alvarado
Level 1
Level 1

‎12-08-2011 01:29 PM - edited ‎03-04-2019 02:34 PM

Hello All,

I´m wondering if anyone of you have configured Netflow export to a remote analyzer on a different subnet. Basically what I´m trying to do is export the statistics of one of my routers to the public IP of my local router and then NAT those statistics to my local Analyzer. I don´t know if NAT will do the job for me but looks like the server is not receving the statistics cache from the remote router

TOPOLOGY 

ROUTER1(Netflow export) ------------->ROUTER2------------->Analizer

Remote1:

ip flow-cache entries 52000

ip flow-cache timeout active 1

ip flow-export source Cable-Modem0/0/0

ip flow-export version 5

ip flow-export destination (remote router WAN IP) 9997

ip flow-top-talkers

top 50

sort-by bytes

cache-timeout 5000

WAN port

interface Cable-Modem0/0/0

description ***Primary link ISP1**

ip address dhcp

ip flow ingress

ip nat outside

ip inspect ATM out

ip virtual-reassembly

load-interval 30

no fair-queue

crypto map clientmap

!

Router2

interface FastEthernet0/0/0

ip address (WAN IP)

description OUTSIDE

ip dhcp client route track 456

ip address dhcp

ip nat outside

ip virtual-reassembly

load-interval 30

duplex auto

speed auto

end

ip nat inside source static tcp (Analizer IP) 9997 (WAN IP) 9997 extendable

ip flow-cache entries 52000

ip flow-cache timeout active 1

ip flow-export source FastEthernet0/1

ip flow-export version 5

ip flow-export destination (Analyzer IP) 9997

ip flow-top-talkers

top 50

sort-by bytes

cache-timeout 5000

Any good documents or configs related to this

Thank you

Labels:
0 Helpful
1 Reply 1

Don Jacob
Level 1
Level 1

‎12-08-2011 11:01 PM

Hi,

I see that you have "ip nat inside source static tcp (Analizer IP) 9997 (WAN IP) 9997 extendable". But NetFlow packets are UDP. Can you try changing it to UDP? It should work provided the NATing occurs as expected.

Regards,

Don Thomas Jacob

www.netflowanalyzer.com

NOTE: Please rate posts and close questions if your query has been answered

Regards, Don Thomas Jacob http://www.solarwinds.com/netflow-traffic-analyzer.aspx Head Geek @ SolarWinds NOTE: Please rate and close questions if you found any of the answers helpful.
0 Helpful
Customers Also Viewed These Support Documents