Solved: Catalyst - 6506E and Netflow

subra4u · ‎05-22-2008

Hi,

I am trying to enable the Netflow on the above mentioned switch with no luck. Please find let me know what am I missing .HW and the configuration details in the attachment.

Thanks in advance,

subra

Jan Nejman · ‎05-22-2008

Hello,

which ports do you mean?

Could you set quicker timeout in the IOS:

ip flow-cache timeout active 2

ip flow-cache timeout inactive 24

Kind regards

Jan Nejman

Caligare, Co.

http://www.caligare.com/

View solution in original post

Jan Nejman · ‎05-22-2008

Hello,

I checked your configuration and the problem is in CatOS part.

remove the line:

set mls nde flow include destination 192.168.1.19/255.255.255.255

If it doesn't help, please, send me the following:

MSFC:

show ip flow export

show ip cache flow

Supervisor:

show mls nde

Kind regards,

Jan Nejman

Caligare, Co.

http://www.caligare.com/

subra4u · ‎05-22-2008

Hi,

Thanks for your immediate response.

Here is the weird part. Now I get for some of the ports(2 ports are missing) in the Vlan 1 and Vlan 80 but no Vlan 30.

GW#sh ip flow export

Flow export is enabled

Exporting flows to 192.168.1.19 (2055)

Exporting using source interface Vlan1

Version 5 flow records

2258 flows exported in 271 udp datagrams

0 flows failed due to lack of export packet

0 export packets were sent up to process level

0 export packets were dropped due to no fib

0 export packets were dropped due to adjacency issues

0 export packets were dropped due to fragmentation failures

0 export packets were dropped due to encapsulation fixup failures

0 export packets were dropped enqueuing for the RP

0 export packets were dropped due to IPC rate limiting

GW#sh ip cache flow

IP packet size distribution (12641 total packets):

1-32 64 96 128 160 192 224 256 288 320 352 384 416 448 480

.000 .547 .261 .079 .000 .000 .000 .052 .005 .000 .019 .000 .000 .000 .000

512 544 576 1024 1536 2048 2560 3072 3584 4096 4608

.000 .000 .033 .000 .000 .000 .000 .000 .000 .000 .000

IP Flow Switching Cache, 278544 bytes

10 active, 4086 inactive, 2260 added

45559 ager polls, 0 flow alloc failures

Active flows timeout in 1 minutes

Inactive flows timeout in 15 seconds

last clearing of statistics 00:59:52

Protocol Total Flows Packets Bytes Packets Active(Sec) Idle(Sec)

-------- Flows /Sec /Flow /Pkt /Sec /Flow /Flow

TCP-Telnet 7 0.0 156 40 0.3 25.8 11.9

TCP-other 49 0.0 1 48 0.0 7.1 15.4

UDP-other 1604 0.4 2 168 1.1 3.0 15.3

ICMP 602 0.1 12 67 2.0 9.5 13.1

Total: 2262 0.6 5 98 3.5 4.9 14.7

SrcIf SrcIPaddress DstIf DstIPaddress Pr SrcP DstP Pkts

Vl1 0.0.0.0 Null 255.255.255.255 11 0044 0043 6

SrcIf SrcIPaddress DstIf DstIPaddress Pr SrcP DstP Pkts

Vl1 10.22.6.25 Local 10.22.1.1 01 0000 0800 1

Vl1 10.22.7.2 Null 10.22.255.255 11 008A 008A 2

Vl1 10.22.7.2 Null 10.22.255.255 11 0089 0089 15

Vl1 10.22.5.13 Null 10.22.255.255 11 008A 008A 1

Vl30 192.168.2.72 Local 10.22.1.1 06 0788 0017 56

Vl1 10.22.2.7 Null 10.22.255.255 11 008A 008A 1

Vl30 192.168.1.101 Null 10.22.2.17 11 12E7 00A1 2

Vl30 192.168.1.101 Null 10.22.2.8 11 12E7 00A1 2

Vl80 10.24.15.12 Local 10.24.15.1 01 0000 0800 27

GW#

-------------------------------------------

CAT> (enable) sh mls nde

Netflow Data Export version: 5

Netflow Data Export enabled

Netflow Data Export configured for port 2055 on host 192.168.1.19

Secondary Netflow Data Export port/host is not configured.

Total packets exported = 47

Total Secondary packets exported = 0

Total NDE collectors configured = 1

Destination Ifindex export is enabled

Source Ifindex export is enabled

Bridged flow statistics is enabled on vlan(s) 1,30,80.

Bridged flow statistics is disabled on vlan(s) 1002-1012,1016.

Thanks again.

subra

Jan Nejman · ‎05-22-2008

Hello,

which ports do you mean?

Could you set quicker timeout in the IOS:

ip flow-cache timeout active 2

ip flow-cache timeout inactive 24

Kind regards

Jan Nejman

Caligare, Co.

http://www.caligare.com/

subra4u · ‎05-23-2008

Hi Jan,

Thanks for the help. Got it Fixed.

Regards

Subra