Fluke Recording Equipment Appendix 1 Device Configuration, Ip cef, Ip flow-export source loopback

Page 74

User’s Guide – version 3.1.3

NetFlow Tracker

Appendix 1: Device Configuration

This is a brief guide to setting up NetFlow on various types of device. Note that if your device isn’t listed here it does not mean it is not supported by NetFlow Tracker; please ask your device vendor for a guide to enabling NetFlow.

Enabling NetFlow Export/NDE on a Cisco Router or Layer 3 Switch

For more information on this subject, visit http://www.cisco.com/go/netflow. We recommend that only people with experience in configuring Cisco devices follow these steps. If in doubt, contact your network administrator or Cisco consultant. Note that if you are running hybrid mode on a layer 3 switch you must configure IOS on the MSFC and CatOS on the Supervisor Engine. Native IOS also requires extra commands; these are documented below.

Enabling Netflow Export on an IOS Device

In configure mode on the router or MSFC, issue the following to enable NetFlow Export:

ip cef

This enables Cisco Express Forwarding, which is required for NetFlow in most recent IOS releases.

ip flow-export destination <address> 2055

Use the address of your NetFlow Tracker machine and one of the ports configured in the Listener Ports settings page. Port 2055 is monitored by default.

ip flow-export source loopback 0

The source interface is used to set the source IP address of the NetFlow exports sent by the router. NetFlow Tracker will make SNMP requests of the router on this address. If you experience problems you can set the source interface to an Ethernet or WAN interface instead of the loopback.

ip flow-export version 5 [peer-as origin-as]

or

ip flow-export version 9 [peer-as origin-as]

This sets the export version. Version 5 and Version 9 both support all of the features NetFlow Tracker is capable of using; if you have a Native IOS switch you may need to use version 9 to work around a bug – this is described below. If your router uses BGP, you can specify that either the origin or peer ASs are included in exports – it is not possible to include both.

Note that enabling or disabling NetFlow version 5 or version 9 (not version 1) on a 12000 series router causes packet forwarding to stop for a few seconds while the route processor and line card CEF tables are reloaded. To avoid interruption of service to a live network, apply this command during a change window, or include it in the startup-config file to be executed during a router reboot.

74

Page 73 Page 75
Image 74
Page 73 Page 75
Contents NetFlow Tracker Software License Agreement Grant of Licence and Payment of FeesCopyright Customer Remedies Confidential Information and Security User’s Guide version NetFlow Tracker Definitions Undertakings by You Support ServicesSupport Charges Supplier’s UndertakingsTermination Limitation of Liability and indemnityIntellectual Property Rights Confidential Information and Security MiscellaneousResponse Times Exceptions to Support ServicesSupport Hours Contents LONG-TERM Reports Appendix 2 CSV File Format Features and Benefits What is NetFlow?What is NetFlow Tracker? IntroductionUser’s Guide version NetFlow Tracker Minimum System Requirements InstallationPre-installation Checks Operating System SupportInstallation on Microsoft Windows Installation on Solaris and Linux Post-installation Tasks Configure your routers and switches Set up Snmp community stringsSet up web front-end security Add listener portsUsing NetFlow Tracker Device traffic meters InterfacesChart legend Working with ChartsChanging the displayed chart Per-AS dataZooming View a standard chart as a pie chartView a standard chart as a tabular report Zooming outWorking with Pie Charts Working with Tabular Reports User’s Guide version NetFlow Tracker Session Reports Report TemplatesAddress Reports Interface Reports QoS ReportsNetwork Reports Other Reports Creating Filtered ReportsTraffic Identification Reports Report TemplateStart Time Sample SizeSource Data End TimeVPN Out InterfaceIn/Out Interface Out VPNToS Recognised ApplicationIdentified Application DiffServSource Mask Destination SubnetSource/Destination Subnet Destination MaskPer-device and Per-interface Long-term Reports Long-term ReportsDevices and Interfaces Filter EditorUser’s Guide version NetFlow Tracker Executive Reports Report Format Parameters Report URL FormatGeneral Form 0024 Chart0023 0025False NumberTrue Heading128 FeaturesSections 256Time Range Parameters Week HourDay MonCalendar-based advanced Day1-day2/time1-time2 HHmmApplying a time-of-day mask to the time range 100 110105 113140 115120 125Minute 285300 DailyFilter Parameters Port/number NamePort/name Prec%20tos PrecTos Addr/mask CodeByte Security Parameters PasswordPassword Null Management Portal Access Control ParametersSecret Aclid specifies a permitted long-term report Features Disk Speed Performance TuningDatabase Server Settings Query SizeLicensing Configuration GuideSnmp Settings Listener PortsDevice List Device SettingsDevice Settings Identified Applications ArchivingTraffic Classes Deleting a Device Security SettingsVPNs Management Portal Settings Report Settings Executive Reports Saved FiltersLong-term Reports Span class=repdesctextTest/span Sub-reports Nelements=5 and chartWidth=400Content User’s Guide version NetFlow Tracker DiffServ Names Hostname Resolution SettingsIP Application Names Subnet Names Database SettingsAS Names User’s Guide version NetFlow Tracker Backup ArchivingMemory Settings Performance CountersMissed Flows Unprocessed FlowsetsInterface Scans Missed ExportsIp cef Appendix 1 Device ConfigurationEnabling Netflow Export on an IOS Device Ip flow-export destination addressShow ip flow export Ip flow-cache timeout activeIp flow-cache timeout inactive Show ip cache flow Show ip cache verbose flowMls nde sender version Ip route-cache flow infer-fieldsMls netflow Mls aging longUser’s Guide version NetFlow Tracker Set system name name Set mls bridged-flow-statistics enable vlanlistSet mls nde enable Set mls nde addressFlow-sampler-map allflows mode random one-out-of 1 exit Enabling Flow Detail Records on a Packeteer DeviceEnabling NetFlow on an Enterasys Device Using sflowtool to Convert sFlow Records to NetFlow AddressTabular report CSV format Chart CSV formatAppendix 2 CSV File Format Appendix 3 Third Party Software Components
Top Page Image Contents