Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

IP FLOW EGRESS - Cisco 6506's??

Hi Guru's!

We have a Cisco 6506 and we have IP NetFlow configured on the LAN/WAN interfaces (both are gigbitethernet ports). We have "ip flow ingress" on the LAN interface which is sending the stats back to our server.

However if we configure "ip flow egress" on the WAN port, it stops sending the stats back to our server completely. Is there a hardware issue on the 6506's related to NetFlow? Or a bug? I've done a bug search on the platform and there is nothing obvious related to what we are seeing.

We know it's not our configuration because we have a duplicate configuraion on a Cisco 6524 and that one has no issues and is sending the stats to our server with no issues.

This is the IOS we are using:

bootdisk:s72033-advipservicesk9_wan-mz.122-33.SXH.bin

The version we're using is:

ip flow-export version 5

2 REPLIES
Silver

Re: IP FLOW EGRESS - Cisco 6506's??

Verify that the egress NetFlow accounting operation is as you expected.

STEPS

1. show ip cache flow

2. show ip cache verbose flow

3. show ip flow interface

For further information click this link.

http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124cg/hnf_c/ch05/nfb_bega.htm#wp1046239

Community Member

Re: IP FLOW EGRESS - Cisco 6506's??

This is resolved.

More importantly Cisco said (TAC) that the egress command is redundant.

Thanks for your mail. Yes, removing 'ip flow egress' should not make any

difference for hardware switched flows. There is a difference in NetFlow

configuration since 12.2(33)SXH IOS and later - now 'ip flow ingress' is

required (and enabled by default when you configure NetFlow globally) as

we can now do interface specific NetFlow. In the past there was no way

to collect PFC switched flows for a subset of interfaces.

Is my understanding correct that all flows are now exported as expected,

but missing the TOS field?

If you check 'sh mls netflow ip detail nowrap', do you see any non-zero

values logged under the QoS field?

Another email:

Unfortunately, egress NetFlow is not supported in hardware on any PFC3*

system - only software switched flows will be collected by this

configuration. Equally, 'ip flow ingress' only applies for software

switched flows. By default, all hardware switched flows will be

collected on the PFC - you can verify this with 'sh mls netflow ip'.

1296
Views
0
Helpful
2
Replies
CreatePlease to create content