Manualshelf

Datasheet

ManualsBrandsCisco ManualsComputer equipment1701-K9-RF - 1701 ADSL Security Access Router
261262263264265266267268269270
Lab Collecting and Analyzing NetFlow Data
© 2013 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public. Page 3 of 13
i. Configure the IP addresses as listed in the Addressing Table.
j. Configure OSPF using Process ID 1 and advertise all networks. Ethernet interfaces should be passive.
k. Create a local database on R3 with the username admin and password cisco with the privilege level at
15.
l. On R3, enable the HTTP service and authenticate HTTP users by using the local database.
m. Copy the running configuration to the startup configuration.
Step 4: Configure PC hosts.
Step 5: Verify end-to-end connectivity.
All devices should be able to ping other deices in the topology. Troubleshoot as necessary until end-to-end
connectivity is established.
Note: It may be necessary to disable the PC firewall for pings between PCs to be successful.
Part 2: Configure NetFlow on a Router
In Part 2, you will configure NetFlow on router R2. NetFlow will capture all ingress and egress traffic on the
R2 serial interfaces and export the data to the NetFlow collector, PC-B. Flexible NetFlow Version 9 will be
used to export to the NetFlow collector.
Step 1: Configure NetFlow capture.
Configure NetFlow data capture on both serial interfaces. Capture data from ingress and egress packets.
R2(config)# interface s0/0/0
R2(config-if)# ip flow ingress
R2(config-if)# ip flow egress
R2(config-if)# interface s0/0/1
R2(config-if)# ip flow ingress
R2(config-if)# ip flow egress
Step 2: Configure NetFlow data export.
Use the ip flow-export destination command to identify the IP address and the UDP port of the NetFlow
collector to which the router should export NetFlow data. UDP Port number 9996 will be used for this
configuration.
R2(config)# ip flow-export destination 192.168.2.3 9996
Step 3: Configure the NetFlow export version.
Cisco routers running IOS 15.1 support NetFlow versions 1, 5, and 9. Version 9 is the most versatile export
data format, but is not backward-compatible with earlier versions. Use the ip flow-export version command
to set the NetFlow version.
R2(config)# ip flow-export version 9
Step 4: Verify the NetFlow configuration.
a. Issue the show ip flow interface command to review the NetFlow capture interface information.
R2# show ip flow interface
Serial0/0/0