Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

gdoi - traffic sourced from gm router not encrypted

Group Member(GM) router in a GDOI environment, is not having it's Netflow traffic encrypted. Netflow is sourced from the Loopback interface which is included in the Key Server ACL.

All other traffic originating from behind the GM router is encrypted.

Any help?

What debug commands might help pin point how this Netflow traffic is being treated, relative to GDOI?

Thanks in advance.

1 REPLY
New Member

Re: gdoi - traffic sourced from gm router not encrypted

Keith, netflow export traffic bypasses output features (for speed) and isn't encrypted.

You can work around this by creating a crypto tunnel to the netflow collector, and routing the netflow export through the tunnel.

122
Views
0
Helpful
1
Replies
CreatePlease to create content