Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Cisco ASA 9.1(3) Netflow problem

 

Hello Everyone,

 

I have a Cisco ASA 5525-X with 9.1(3) version.

My problem is: When i send the flows to a CA NetQoS, CA cannot read the packet because the ASA doesn't send the templates(image attached).

So, how i can configure my ASA to send the templates/fields below to CA?

 

1 - IN_BYTES or 85 - IN_PERMANENT_BYTES InOctets
1 - IN_BYTES InOctets
4 - PROTOCOL Protocol
7 - L4_SRC_PORT Source port
8 - IPV4_SRC_ADDR Source Address
10 - INPUT_SNMP In interface
11 - L4_DST_PORT Dest port
12 - IPV4_DST_ADDR Dest address
14 - OUTPUT_SNMP Out interface

 

My  ASA Netflow Configuration:

flow-export destination inside X.X.X.X 9995
flow-export template timeout-rate 1
flow-export delay flow-create 5

class-map netflow-class
 match any

policy-map global_policy

 

 

 

class netflow-class
  flow-export event-type all destination 10.96.37.15

 

 

Tks!

 

2 REPLIES
Community Member

Hello Rafael, Did you set the

Hello Rafael,

 

Did you set the template timeout rate?  Go to second 20 in this Cisco ASA NetFlow Configuration video on YouTube.comThis blog explains how to do it on the CLI.

 

Please vote on my reply if it helps you.

 

Thanks

Community Member

Just updating the post.The

Just updating the post.

The problem was in CA software.

 

Thanks a lot.

 

Rafael

 

318
Views
0
Helpful
2
Replies
CreatePlease to create content