I'm wondering what others do to get NetFlow-like information from the routers outside their perimiter firewalls.
As far as I can tell, my ASA has no NetFlow-exporting features. I could puch a hole in the firewall so the external router can send to the NetFlow collector, but what are my alernatives?
Websense will tell me about my outgoing TCP traffic, but what about incoming? An IPS will alert me to anomolous traffic, but what if I just want to see how our incoming bandwidth is being used?
I'd like to hear people's thoughts.