Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
7071
Views
17
Helpful
5
Replies

Enabling netflow on a Cisco 6500 ...

sanjay.nadarajah
Level 1
Level 1

‎12-16-2010 08:20 PM - edited ‎03-06-2019 02:35 PM

Hi,

I want to enable netflow on a 6500 box and I believe I only need to put in these commands if I am not using a netflow collector :-

Switch(config)#mls netflow interface

Switch(config)#mls flow ip full

!

Int vlan 50

ip route-cache flow

!

!

Verification :-

Show ip cache flow

show mls netflow ip

I believe that the above are the essential commands to get netflow working.
Do let me know if I  have missed anything here.
Cheers,
- SN -

Labels:
0 Helpful
5 Replies 5

Jan Nejman
Level 3
Level 3

‎12-17-2010 02:48 AM

Hello Sanjay,

  it is not complete configuration. It is neccessary to specify destination, etc. I also recomment to set up a timing options.

Check our web page: http://netflow.caligare.com/configuration_native.htm + http://netflow.caligare.com/configuration_ios.htm

I think it will helps you.

Jan

0 Helpful

Ganesh Hariharan
VIP Alumni
VIP Alumni

‎12-18-2010 01:03 AM 

Hi,
I
want to enable netflow on a 6500 box and I believe I only need to put
in these commands if I am not using a netflow collector :-
Switch(config)#mls netflow interface
Switch(config)#mls flow ip full
!
Int vlan 50
ip route-cache flow
!
!
Verification :-
Show ip cache flow
show mls netflow ip
 
I believe that the above are the essential commands to get netflow working.
 
Do let me know if I  have missed anything here.
 
Cheers,
- SN -

Hi SN,

Check out the below link for enabling Netflow in 6500:-


http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_example09186a0080721701.shtml


Hope to Help !!

Ganesh.H

Remember to rate the helpful post

raphaelgroult
Level 1
Level 1

‎12-21-2010 09:00 AM


Hello Sanjay

I have solved this issue using the following configuration:

ip flow-cache timeout active 1

!

ip flow-export source "interface"

ip flow-export version 5

!

ip flow-export destination "Collector IP address"  "Port number"

!

mls qos

mls aging long 64

mls aging normal 32

mls netflow interface

mls flow ip full

mls nde sender version 5

!

!

! Level 3 interfaces

!

interface Vlan X

ip address x.x.x.x x.x.x.x

ip flow ingress

ip route-cache flow

!

!

interface G0/1

ip address x.x.x.x x.x.x.x

ip flow ingress

ip route-cache flow

Hope this helps you.

Regards,

Raphael

Jan Nejman
Level 3
Level 3
In response to raphaelgroult

‎12-21-2010 12:55 PM

Raphael,

your configuration is OK. Only one notice, "ip route-cache flow" is deprecated command and it is

replaced by your "ip flow ingress". I recommedn don't use "route-cache" command and use only

"ip flow ingress". In your case it is redundant command and additional two lines.

The second note is "missing" ip flow-cache timeout inactive . You didn't specify it in your config

so the default value will be used. I recommend to use value between 15 and 30 seconds.

The third note, netflow version 9 is now preferred. If you collector support netflow version 9, use it.

NetFlow version 9 usually consume less network bandwidth.

Jan

sanjay.nadarajah
Level 1
Level 1
In response to raphaelgroult

‎12-21-2010 07:50 PM

Hi Raphael,

I used this documentation

http://www.cisco.com/en/US/products/hw/switches/ps708/products_configuration_example09186a0080721701.shtml

and it uses 'ip route cache-flow' instead of 'ip flow ingress'. I have seen configs that used the 'ip flow ingress' command.

I have did my configs based on the above URL and I am getting the information that I need.

Just wondering though if there is a free netflow utility collector  ?

Cheers,

- SN -

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card