Fluke Computer Accessories manual Appendix 1 Device Configuration, Ip cef

Page 78

User’s Guide – version 3.5

NetFlow Tracker

Appendix 1: Device Configuration

This is a brief guide to setting up NetFlow on various types of device. Note that if your device isn’t listed here it does not mean it is not supported by NetFlow Tracker; please ask your device vendor for a guide to enabling NetFlow.

Enabling NetFlow Export/NDE on a Cisco Router or Layer 3 Switch

For more information on this subject, visit http://www.cisco.com/go/netflow. We recommend that only people with experience in configuring Cisco devices follow these steps. If in doubt, contact your network administrator or Cisco consultant. Note that if you are running hybrid mode on a layer 3 switch you must configure IOS on the MSFC and CatOS on the Supervisor Engine. Native IOS also requires extra commands; these are documented below.

Enabling Netflow Export on an IOS Device

In configure mode on the router or MSFC, issue the following to enable NetFlow Export:

ip cef

This enables Cisco Express Forwarding, which is required for NetFlow in most recent IOS releases.

ip flow-export destination <address> 2055

Use the address of your NetFlow Tracker machine and one of the ports configured in the Listener Ports settings page. Port 2055 is monitored by default.

ip flow-export source loopback 0

The source interface is used to set the source IP address of the NetFlow exports sent by the router. NetFlow Tracker will make SNMP requests of the router on this address. If you experience problems you can set the source interface to an Ethernet or WAN interface instead of the loopback.

ip flow-export version 5 [peer-as origin-as]

or

ip flow-export version 9 [peer-as origin-as]

This sets the export version. Version 5 and Version 9 both support all of the features NetFlow Tracker is capable of using; if you have a Native IOS switch you may need to use version 9 to work around a bug – this is described below. If your router uses BGP, you can specify that either the origin or peer ASes are included in exports – it is not possible to include both.

Note that enabling or disabling NetFlow version 5 or version 9 (not version 1) on a 12000 series router causes packet forwarding to stop for a few seconds while the route processor and line card CEF tables are reloaded. To avoid interruption of service to a live network, apply this command during a change window, or include it in the startup-config file to be executed during a router reboot.

78

Page 77 Page 79
Image 78
Page 77 Page 79
Contents NetFlow Tracker Contents LONG-TERM Reports Appendix 2 CSV File Format Software License Agreement Grant of Licence and Payment of FeesCopyright Customer Remedies Confidential Information and Security User’s Guide version NetFlow Tracker Definitions Undertakings by You Support ServicesSupport Charges Supplier’s UndertakingsLimitation of Liability and indemnity Intellectual Property RightsTermination Confidential Information and Security MiscellaneousExceptions to Support Services Support HoursResponse Times Features and Benefits What is NetFlow?What is NetFlow Tracker? IntroductionUser’s Guide version NetFlow Tracker Minimum System Requirements InstallationPre-installation Checks Operating System SupportInstallation on Microsoft Windows Installation on Linux Post-installation Tasks Configure your routers and switches Set up Snmp community stringsSet up web front-end security Add listener portsUsing NetFlow Tracker Device traffic meters InterfacesChart legend Working with ChartsChanging the displayed chart Per-AS dataZooming View a standard chart as a pie chartView a standard chart as a tabular report Zooming outPrint the chart Alter the filter applied to a standard chartExport a chart to another application Open the chart in a new windowWorking with Pie Charts Working with Tabular ReportsSort a tabular report Examine a single rowReport Templates Address ReportsSession Reports QoS Reports Network ReportsTraffic Identification Reports Creating Filtered ReportsInterface Reports Other ReportsSource data Report templateSample size Start timeInterface Time zoneSource device Out interfaceDest port ProtocolSource port Src/dest portSource AS DiffServTraffic class Dest ASPer-device and Per-interface Long-term Reports Long-term ReportsDevices and Interfaces Filter EditorUser’s Guide version NetFlow Tracker Reports Report URL Format General FormReport Format Parameters 0025 00230024 0026Number ChartPie True128 FeaturesSections 256Time Range Parameters Day MillisHour WeekTime range will extend for this number of units Calendar-based advancedHHmm Applying a time-of-day mask to the time rangeDay1-day2/time1-time2 100 110105 113140 115120 125Minute 285300 DailyFilter Parameters Name Addr1-addr2Port1-port2 Port1-port2/name Port/namePort/number Port1-port2/numberPrec%20tos PrecTos CodeAddr/mask MaskPassword Security ParametersUsername Management Portal Access Control Parameters SecretNull VPN Out VPN Filter Editor button, if applicable Chart scrollbarChart selection headers Refresh and Resolve All buttons, if applicableDisk Speed Performance TuningDatabase Server Settings Query SizeLicensing Configuration GuideSnmp Settings Listener PortsDevice Settings Device SettingsDevice List Sampled Data Scaling Security Settings VPNsHttp//tracker1/report.jsp?portalsecret=secret&aclif= Management Portal SettingsHttp//proxy/tracker1/report1 Http//proxy/tracker1/report.jsp?portalacl=RewriteRule /tracker1/.*$ http//1.2.3.4/$1 P,L,QSA Using Apache as a Portal ServerRewriteEngine On ProxyPassReverse /tracker1/ http//1.2.3.4Report Settings General SettingsReal-time Reports Saved Filters Scheduled ReportsLong-term Reports Executive Reports Span class=repdesctextTest/span Nelements=5 and chartWidth=400 ContentSub-reports User’s Guide version NetFlow Tracker Hostname Resolution Settings IP Application NamesDiffServ Names Database Settings AS NamesSubnet Names Backup Memory Settings ArchivingPerformance Counters Ignored Flows NetFlow Data ReceivedTraffic Described Unprocessed FlowsetsAbout No In InterfaceIp cef Appendix 1 Device ConfigurationEnabling Netflow Export on an IOS Device Ip flow-export destination addressShow ip flow export Ip flow-cache timeout activeIp flow-cache timeout inactive Show ip cache flow Show ip cache verbose flowMls nde sender version Ip route-cache flow infer-fieldsMls netflow Mls aging longUser’s Guide version NetFlow Tracker Set system name name Set mls bridged-flow-statistics enable vlanlistSet mls nde enable Set mls nde addressFlow-sampler-map allflows mode random one-out-of 1 exit Enabling Flow Detail Records on a Packeteer DeviceEnabling NetFlow on an Enterasys Device Appendix 2 CSV File Format Chart CSV formatPie chart CSV format Tabular report CSV formatAppendix 3 XML Format Chart XML formatPie chart XML format Tabular report XML formatAppendix 4 Third Party Software Components JspSmartUpload Quartz
Top Page Image Contents