Hi there, this is all you

acazarkov · ‎07-14-2015

Hi ,

I'm trying to setup PTRG network tool for monitoring my cat6509 . But my configuration will not work properly. On PRTG I can see the statistics for one vlan. So far I have not worked with netflow if someone can help me with this

My configuracion is :

Ip flow-cache timeout active 1

ip flow ingress layer2-switched vlan 2,7,49
multilink bundle-name both
mls ip multicast flow-stat-timer 9
mls aging long 64
mls aging normal 64
no mls flow ip
no mls flow ipv6
mls nde sender version 5
mls qos
no mls acl tcam share-global
mls cef error action freeze
mls cef maximum-routes ip 239

interface GigabitEthernet1/47 /on this inteface is PRTG
switchport
switchport access vlan 7
switchport mode access
no ip address
flowcontrol send on

interface Vlan2
ip address
no ip redirects
ip flow ingress
ip route-cache flow

interface Vlan7
ip address 192.168.1.254 255.255.255.0
no ip redirects
ip flow ingress
ip route-cache flow

interface Vlan49
ip address 10.101.10.10 255.255.255.0
no ip proxy-arp
ip flow ingress
ip route-cache flow

ip flow-export source GigabitEthernet3/1 /my link to ISP
ip flow-export version 5
ip flow-export destination 192.168.1.1 255.255.255.0 9996
ip flow-aggregation cache protocol-port
cache entries 1024
cache timeout inactive 300
export destination 192.168.1.1 9996
enabled

rizwanr74 · ‎07-14-2015

Hi there,

this is all you needed.

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

ip route-cache flow

mls ip multicast flow-stat-timer 9
mls aging long 64
mls aging normal 32
mls flow ip interface-full
mls nde sender version 5

ip flow-export source Vlan49
ip flow-export version 5
ip flow-export destination 192.168.1.1 9996
ip flow ingress layer2-switched vlan x, y, z (separate each desired VLAN with a comma)
ip flow ingress

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Hope this helps.

Thanks

Rizwan Rafeek.

acazarkov · ‎07-15-2015

Thanks for reply .

does not understand why the PTRG only shows the flow of 1M in the VLAN ,when have traffic from 800M.

show version:

Cisco Internetwork Operating System Software
IOS (tm) s72033_rp Software (s72033_rp-IPSERVICESK9_WAN-M), Version 12.2(18)SXF11, RELEASE SOFTWARE (fc1)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by cisco Systems, Inc.
Compiled Fri 14-Sep-07 21:50 by kellythw
Image text-base: 0x40101040, data-base: 0x42DC0AF0

ROM: System Bootstrap, Version 12.2(17r)SX5, RELEASE SOFTWARE (fc1)
BOOTLDR: s72033_rp Software (s72033_rp-IPSERVICESK9_WAN-M), Version 12.2(18)SXF11, RELEASE SOFTWARE (fc1)

sh ip flow export
Flow export v5 is enabled for main cache
Exporting flows to 192.168.1.1 (9996)
Exporting using source interface Vlan49
Version 5 flow records
Cache for protocol-port aggregation:
Exporting flows to 192.168.1.1 (9996)
91352593 flows exported in 2990908 udp datagrams
0 flows failed due to lack of export packet
0 export packets were sent up to process level
0 export packets were dropped due to no fib
0 export packets were dropped due to adjacency issues
0 export packets were dropped due to fragmentation failures
0 export packets were dropped due to encapsulation fixup failures
0 export packets were dropped enqueuing for the RP
0 export packets were dropped due to IPC rate limiting
0 export packets were dropped due to Card not being able to export

rizwanr74 · ‎07-15-2015

did you remove your config lines and copy what I posted for you?

acazarkov · ‎07-17-2015

ip flow-cache timeout active 1

mls ip multicast flow-stat-timer 9
mls aging long 64
mls aging normal 64
no mls flow ip
no mls flow ipv6
mls nde sender version 5
mls qos
no mls acl tcam share-global
mls cef error action freeze
mls cef maximum-routes ip 239

ip flow-export source 49
ip flow-export version 5

ip flow ingress layer2-switched vlan 2,7,49
ip flow-export destination 192.168.1.1 9996

netflow 6509