78-9
Cisco ASA 5500 Series Configuration Guide using the CLI
Chapter78 Configuring NetFlow Secure Event Logging (NSEL)
Configuring NSEL
What to Do Next
See the “Delaying Flow-Create Events” section on page78-9.
Delaying Flow-Create Events
To delay the sending of flow-create events, enter the following command:
What to Do Next
See the “Disabling and Reenabling NetFlow-related Syslog Messages” section on page 78-9.
Disabling and Reenabling NetFlow-related Syslog Messages
To disable and reenable NetFlow-related syslog messages, perform the following steps:
Command Purpose
flow-export delay flow-create seconds
Example:
hostname (config)# flow-export delay flow-create 10
Delays the sending of a flow-create event by the specified
number of seconds. The seconds argument indicates the
amount of time allowed for the delay in seconds. If this
command is not configured, there is no delay, and the
flow-create event is exported as soon as the flow is created. If
the flow is torn down before the configured delay, the
flow-create event is not sent; an extended flow teardown event
is sent instead.
Command Purpose
Step1 logging flow-export-syslogs disable
Example:
hostname(config)# logging flow-export-syslogs
disable
Disables syslog messages that have become
redundant because of NSEL.
Note Although you execute this command in
global configuration mode, it is not stored in
the configuration. Only the no logging
message xxxxxx commands are stored in the
configuration.
Step2 logging message xxxxxx
Example:
hostname(config)# logging message 302013
Reenables syslog messages individually, where
xxxxxx is the specified syslog message that you want
to reenable.
Step3 logging flow-export-syslogs enable
Example:
hostname(config)# logging flow-export-syslogs enable
Reenables all NSEL events at the same time.