Net-flow data capture
Hello,
I'm trying to capture net-flow data on a vpn router 1811 to be exact. And I'm getting nothing "0" from this router. The code is 12.4. I called support and there saying it's our
vpn concentrator is a cisco asa running 8.0(3) code. My team of engineer are blaming the remote router. I'm leaning towards the asa, b/c it's a vpn tunnel and that's were the traffic goes back to. Also, acl are permitting traffic, and firewalls are not blocking ports. Please Help, I really would like to hear your opinion.
Thanks guys and gals.
I'm trying to capture net-flow data on a vpn router 1811 to be exact. And I'm getting nothing "0" from this router. The code is 12.4. I called support and there saying it's our
vpn concentrator is a cisco asa running 8.0(3) code. My team of engineer are blaming the remote router. I'm leaning towards the asa, b/c it's a vpn tunnel and that's were the traffic goes back to. Also, acl are permitting traffic, and firewalls are not blocking ports. Please Help, I really would like to hear your opinion.
Thanks guys and gals.
Comments
-
Netstudent
Member Posts: 1,693 ■■■□□□□□□□
From my experience, traditional versions of Netflow do not support sending flows across an IPSec VPN when the VPN endpoint is generating the flows. Try researching flexible netflow.
Flexible NetFlow - Cisco SystemsThere is no place like 127.0.0.1 BUT 209.62.5.3 is my 127.0.0.1 away from 127.0.0.1! -
cdad2000
Member Posts: 323
Thanks for the reply and the link. Flex-flow is NG and something I could bring up w/ the team, thanks Netstudent.