The current available functionality on the ASA regarding NetFlow is still in its infancy. There are future plans to expand this functionality to be more in line with the function of IOS NetFlow output. In summary, the ASA does NOT provide continuous monitoring of any particular flow (again, as of yet) but will only register NetFlow events during a change in the connection status - ie connection denied, connection setup and connection teardowns. For specifics of the NetFlow events that are logged, please consider the link below:
If you feel that this is a feature that you would like to see implemented in the near future, please feel free to communicate this to your Cisco Account team. They will assist in the prioritization of features and when they will be implemented.
If this answers your questions, please be sure to mark this as answered for others' benefit.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...