12-16-2010 08:20 PM - edited 03-06-2019 02:35 PM
Hi,
I want to enable netflow on a 6500 box and I believe I only need to put in these commands if I am not using a netflow collector :-
Switch(config)#mls netflow interface
Switch(config)#mls flow ip full
!
Int vlan 50
ip route-cache flow
!
!
Verification :-
Show ip cache flow
show mls netflow ip
12-17-2010 02:48 AM
Hello Sanjay,
it is not complete configuration. It is neccessary to specify destination, etc. I also recomment to set up a timing options.
Check our web page: http://netflow.caligare.com/configuration_native.htm + http://netflow.caligare.com/configuration_ios.htm
I think it will helps you.
Jan
12-18-2010 01:03 AM
Hi,
I want to enable netflow on a 6500 box and I believe I only need to put in these commands if I am not using a netflow collector :-
Switch(config)#mls netflow interface
Switch(config)#mls flow ip full
!
Int vlan 50
ip route-cache flow
!
!
Verification :-
Show ip cache flow
show mls netflow ip
I believe that the above are the essential commands to get netflow working.Do let me know if I have missed anything here.Cheers,- SN -
Hi SN,
Check out the below link for enabling Netflow in 6500:-
Hope to Help !!
Ganesh.H
Remember to rate the helpful post
12-21-2010 09:00 AM
Hello Sanjay
I have solved this issue using the following configuration:
ip flow-cache timeout active 1
!
ip flow-export source "interface"
ip flow-export version 5
!
ip flow-export destination "Collector IP address" "Port number"
!
mls qos
mls aging long 64
mls aging normal 32
mls netflow interface
mls flow ip full
mls nde sender version 5
!
!
! Level 3 interfaces
!
interface Vlan X
ip address x.x.x.x x.x.x.x
ip flow ingress
ip route-cache flow
!
!
interface G0/1
ip address x.x.x.x x.x.x.x
ip flow ingress
ip route-cache flow
Hope this helps you.
Regards,
Raphael
12-21-2010 12:55 PM
Raphael,
your configuration is OK. Only one notice, "ip route-cache flow" is deprecated command and it is
replaced by your "ip flow ingress". I recommedn don't use "route-cache" command and use only
"ip flow ingress". In your case it is redundant command and additional two lines.
The second note is "missing" ip flow-cache timeout inactive
so the default value will be used. I recommend to use value between 15 and 30 seconds.
The third note, netflow version 9 is now preferred. If you collector support netflow version 9, use it.
NetFlow version 9 usually consume less network bandwidth.
Jan
12-21-2010 07:50 PM
Hi Raphael,
I used this documentation
and it uses 'ip route cache-flow' instead of 'ip flow ingress'. I have seen configs that used the 'ip flow ingress' command.
I have did my configs based on the above URL and I am getting the information that I need.
Just wondering though if there is a free netflow utility collector ?
Cheers,
- SN -
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide