04-16-2010 04:13 AM
Hello,
is possible configuring netflow on interfaces trunk?
thanks in advanced.
Solved! Go to Solution.
04-19-2010 08:26 AM
Hello,
really on L2 etherchannel or on 802.1q trunk you cannot configure NetFlow,
but flows that are going throught etherchannel or trunk ar counted via "mls".
MLS works globally, it includes all L2 interfaces. This includes all trunks
and etherchannels. In the netflow export you will see source/destination VLAN
for L2 ports. You will see physical interfaces for L3 ports (i.e Gigabit1/3).
It is not possible to find a physical port for L2 data flow. So you
cannot identify if flow is comming from ehterchannel, you will see that a
flow income from VLAN 3 and going to VLAN 5.
You can configure "ip flow ingress" or "ip route-cache flow" commands on
L3 etherchannel.
In other words: For proper configuration use "ip flow ingress" on all L3 ports
(show ip interfaces brief | excl unassigned)
and also configure mls (see the url that I sent you in the last entry).
Sorry for my English. I hope that my comment is comprehensible.
Kind regards,
Jan Nejman
Caligare, co.
04-16-2010 05:20 AM
Hello,
you need to configure a flow only for L3 interfaces. For L2 interfaces, please,
configure mls flow ... You can also enable intra-vlan traffic.
See http://support.caligare.com/kb/entry/43/
to get more information accounting intra vlan traffic.
For getting information from trunk ports, see
http://netflow.caligare.com/configuration_native.htm
for more information about 'mls' configuration.
Please, feel free to contact me if you have more questions.
Kind regards,
Jan Nejman
Caligare, co.
04-16-2010 10:19 AM
Hello Jan,
thank you very much for the response, but I read in other sites that is not possible configure netflow on interfaces trunk or etherchannel, is this possible??
04-19-2010 08:26 AM
Hello,
really on L2 etherchannel or on 802.1q trunk you cannot configure NetFlow,
but flows that are going throught etherchannel or trunk ar counted via "mls".
MLS works globally, it includes all L2 interfaces. This includes all trunks
and etherchannels. In the netflow export you will see source/destination VLAN
for L2 ports. You will see physical interfaces for L3 ports (i.e Gigabit1/3).
It is not possible to find a physical port for L2 data flow. So you
cannot identify if flow is comming from ehterchannel, you will see that a
flow income from VLAN 3 and going to VLAN 5.
You can configure "ip flow ingress" or "ip route-cache flow" commands on
L3 etherchannel.
In other words: For proper configuration use "ip flow ingress" on all L3 ports
(show ip interfaces brief | excl unassigned)
and also configure mls (see the url that I sent you in the last entry).
Sorry for my English. I hope that my comment is comprehensible.
Kind regards,
Jan Nejman
Caligare, co.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide