Do I not need to add the netflow commands at all to any interface? Is the following enough ?

ip flow-export version 5
ip flow-export destination x.x.x.x 2055
 

Disclaimer

The Author of this posting offers the information contained within this posting without consideration and with the reader's understanding that there's no implied or expressed suitability or fitness for any purpose. Information provided is for informational purposes only and should not be construed as rendering professional advice of any kind. Usage of this posting's information is solely at reader's own risk.

Liability Disclaimer

In no event shall Author be liable for any damages whatsoever (including, without limitation, damages for loss of use, data or profit) arising out of the use or inability to use the posting's information even if Author has been advised of the possibility of such damage.

Posting

You also need to "activate" it, per interface.

Overview found here: http://www.cisco.com/c/en/us/td/docs/ios/netflow/configuration/guide/12_2sr/nf_12_2sr_book/get_start_cfg_nflow.html

NB: note "how" can vary per IOS version.

PS:

Access to Netflow MIB described here: http://www.cisco.com/c/en/us/td/docs/ios/netflow/configuration/guide/12_2sr/nf_12_2sr_book/cfg_snmp_mib_mon_nf.html

Do you guys have any experience of using Netflow if there is a Riverbed Steelhead at each end of the site?

I'm thinking if I pull stats from the Interface, all it's going to see is the conversation between Site A Riverbed and Site B Riverbed and not the actual real conversations taking place.

Hi,

this is the default Riverbed tunnel mode.

But the Riverbeds are capable to work in transparent mode, keeping the source/destination IP addresses and ports withing the packet header unchanged.

And it should be also possible to get NetFlow from Riverbeds directly, I guess.

Best regards,

Milan